Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/DUNZdjJVMLeu7-wSVAnGVGXngLI.roa
File: DUNZdjJVMLeu7-wSVAnGVGXngLI.roa (raw, json)
Hash identifier: RCLadv6CSFqbHWMSIeF5aBz2oF/pAuiOuTBk4ZWhiPM=
Subject key identifier: 0D:43:59:76:32:55:30:B7:AE:EF:EC:12:54:09:C6:54:65:E7:80:B2
Certificate issuer: /CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Certificate serial: 0215AD1B
Authority key identifier: D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/DUNZdjJVMLeu7-wSVAnGVGXngLI.roa
Signing time: Wed 13 Apr 2022 14:48:50 +0000
ROA not before: Wed 13 Apr 2022 14:48:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 194.31.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34975003 (0x215ad1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Validity
Not Before: Apr 13 14:48:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d435976325530b7aeefec125409c65465e780b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:80:85:c1:40:ab:07:fa:68:09:c4:4c:c7:f9:
6d:38:d2:68:8f:e2:d8:6a:a9:7a:95:73:b2:25:4b:
f8:39:9a:35:49:e6:fe:72:43:37:2f:b2:ff:81:fa:
76:91:84:c3:33:a8:f9:21:5c:26:63:f5:77:bf:c1:
1b:ad:49:0f:48:d0:cb:58:db:05:3f:a2:9c:53:4f:
1f:f8:04:47:ec:08:73:d2:a3:17:4a:1b:7d:9f:7b:
72:97:53:0b:2c:6b:67:b9:73:6a:6b:21:69:84:c2:
d0:e9:8f:5c:12:65:ed:ff:87:cd:f5:59:a1:1e:20:
14:02:7d:a0:84:a6:e1:32:63:e4:97:b4:3e:c9:0d:
c5:f5:3c:af:ed:84:04:ee:28:33:be:9a:2c:6f:f2:
7d:98:56:33:fe:b1:22:64:37:5d:e6:4f:a2:49:33:
bf:d9:65:b3:fb:cc:7a:f6:a6:6f:55:17:24:58:aa:
c8:f9:4d:09:d7:53:eb:b4:bd:1d:24:48:c6:15:3e:
aa:7c:e0:c9:16:b1:82:be:85:4f:e3:5e:3a:45:69:
63:bc:f2:ac:56:1b:aa:63:6f:b6:b9:d1:58:71:76:
02:9d:f4:e3:66:48:3d:e7:c3:c9:75:ba:cb:8d:a9:
2c:c3:8c:2a:a5:25:26:28:54:46:23:04:82:f7:76:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:43:59:76:32:55:30:B7:AE:EF:EC:12:54:09:C6:54:65:E7:80:B2
X509v3 Authority Key Identifier:
keyid:D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/DUNZdjJVMLeu7-wSVAnGVGXngLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/1BvKOYYfnDDHV2FIAfhtF-XqHks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.204.0/24
Signature Algorithm: sha256WithRSAEncryption
58:ad:27:91:6a:77:c1:10:a1:94:ed:4c:42:01:7c:be:d3:be:
53:4c:46:2f:95:b7:17:da:26:42:33:86:04:a2:e4:3a:40:26:
05:74:b4:03:e6:19:f4:46:92:e9:88:27:03:a7:aa:81:60:b7:
3e:19:7c:57:00:09:68:e9:45:05:98:9e:38:95:78:b8:cc:fd:
ea:60:9f:ae:f5:5a:60:88:de:1d:72:19:c4:6d:78:a2:3c:fe:
b5:c9:60:58:4c:cd:99:e4:a2:c8:a0:96:ef:5a:d8:64:34:a4:
0a:f6:7b:7a:63:81:b6:08:04:0d:e7:79:6b:14:74:94:5d:df:
09:7c:a2:4c:29:22:fa:15:32:60:04:d3:9c:9b:85:04:c1:b3:
08:88:18:09:6b:c9:22:e2:e5:b7:9d:43:7b:38:a9:a0:ba:34:
df:65:dc:15:71:86:fe:c8:8c:f7:7a:12:bb:43:90:8f:24:85:
4c:c0:c5:7a:f9:7b:7c:4d:9a:64:32:af:a3:ec:9a:62:c2:c9:
e4:2a:7d:0d:ce:44:60:a7:14:8f:32:06:86:c6:a1:0f:21:17:
a6:55:ce:ec:65:5e:ca:26:69:e6:eb:5c:08:a6:8a:92:a2:16:
88:1e:fb:8b:a2:92:4e:ea:dd:c3:35:65:53:ad:0c:0e:c9:50:
3f:31:75:9a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAhWtGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDFiY2EzOTg2MWY5YzMwYzc1NzYxNDgwMWY4NmQxN2U1ZWExZTRiMB4XDTIyMDQx
MzE0NDg1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGQ0MzU5NzYzMjU1
MzBiN2FlZWZlYzEyNTQwOWM2NTQ2NWU3ODBiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJGAhcFAqwf6aAnETMf5bTjSaI/i2GqpepVzsiVL+DmaNUnm
/nJDNy+y/4H6dpGEwzOo+SFcJmP1d7/BG61JD0jQy1jbBT+inFNPH/gER+wIc9Kj
F0obfZ97cpdTCyxrZ7lzamshaYTC0OmPXBJl7f+HzfVZoR4gFAJ9oISm4TJj5Je0
PskNxfU8r+2EBO4oM76aLG/yfZhWM/6xImQ3XeZPokkzv9lls/vMevamb1UXJFiq
yPlNCddT67S9HSRIxhU+qnzgyRaxgr6FT+NeOkVpY7zyrFYbqmNvtrnRWHF2Ap30
42ZIPefDyXW6y42pLMOMKqUlJihURiMEgvd2sJMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQNQ1l2MlUwt67v7BJUCcZUZeeAsjAfBgNVHSMEGDAWgBTUG8o5hh+cMMdX
YUgB+G0X5eoeSzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFCdktPWVlmbkRESFYyRklBZmh0Ri1YcUhrcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvNTk4NjQyLWUzNmYtNGM1Yy1hOGUwLWEwYjUxNDI0OWMwNi8x
L0RVTlpkakpWTUxldTctd1NWQW5HVkdYbmdMSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
NTk4NjQyLWUzNmYtNGM1Yy1hOGUwLWEwYjUxNDI0OWMwNi8xLzFCdktPWVlmbkRE
SFYyRklBZmh0Ri1YcUhrcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIfzDANBgkqhkiG9w0BAQsFAAOC
AQEAWK0nkWp3wRChlO1MQgF8vtO+U0xGL5W3F9omQjOGBKLkOkAmBXS0A+YZ9EaS
6YgnA6eqgWC3Phl8VwAJaOlFBZieOJV4uMz96mCfrvVaYIjeHXIZxG14ojz+tclg
WEzNmeSiyKCW71rYZDSkCvZ7emOBtggEDed5axR0lF3fCXyiTCki+hUyYATTnJuF
BMGzCIgYCWvJIuLlt51DezipoLo032XcFXGG/siM93oSu0OQjySFTMDFevl7fE2a
ZDKvo+yaYsLJ5Cp9Dc5EYKcUjzIGhsahDyEXplXO7GVeyiZp5utcCKaKkqIWiB77
i6KSTurdwzVlU60MDslQPzF1mg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-ams.rpki-client.org