Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/Xmgtgv0HIRQBjgmrjdN9PgW-u2I.roa
File: Xmgtgv0HIRQBjgmrjdN9PgW-u2I.roa (raw, json)
Hash identifier: 2A/x/reVzIfQ2EZi8AcqtutxSgZhM21R/530HadbkeE=
Subject key identifier: 5E:68:2D:82:FD:07:21:14:01:8E:09:AB:8D:D3:7D:3E:05:BE:BB:62
Certificate issuer: /CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Certificate serial: 01840EC21AEE53B9375DBBC704D30F70A9B2
Authority key identifier: D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/Xmgtgv0HIRQBjgmrjdN9PgW-u2I.roa
Signing time: Tue 25 Oct 2022 10:48:32 +0000
ROA not before: Tue 25 Oct 2022 10:48:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132969
IP address blocks: 194.31.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:c2:1a:ee:53:b9:37:5d:bb:c7:04:d3:0f:70:a9:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Validity
Not Before: Oct 25 10:48:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e682d82fd072114018e09ab8dd37d3e05bebb62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:52:eb:04:4f:18:da:6a:e5:19:44:bd:a6:4b:
ec:36:7c:b0:ef:c8:82:ec:c1:4d:1f:61:32:da:c9:
1e:b9:02:67:77:3a:47:bd:0b:40:10:e7:93:35:7f:
da:a5:a9:70:f6:55:c8:35:07:fb:a5:4c:86:41:eb:
20:06:1d:40:89:f2:86:bd:1a:b3:cf:8a:59:54:0c:
ac:de:9d:bc:8d:f9:05:7e:2a:52:4f:c9:12:df:0e:
68:0a:fa:c9:f1:b0:0a:b3:bf:52:05:aa:a0:ee:25:
34:80:51:6d:09:76:c2:ed:a7:f8:64:59:05:2a:f4:
9a:ab:7a:50:66:f1:11:f8:28:57:96:3b:d4:fa:8e:
7d:32:e5:01:f1:01:1e:dd:66:00:4e:45:8c:63:0d:
20:cf:f2:04:f3:28:ac:9c:70:48:df:96:0e:c8:fc:
96:18:79:47:c6:00:f8:26:c9:8d:c0:13:ee:68:73:
2c:1b:15:e6:1d:94:4a:e8:62:15:6c:bc:84:b6:07:
b5:ae:93:d5:48:a3:9b:9d:68:07:26:54:9c:99:f4:
98:60:61:38:a3:5d:c8:cd:f0:bd:bd:ab:51:00:74:
85:0d:92:1a:a3:be:f3:44:77:5e:e8:6f:ca:68:a2:
03:b2:bc:25:b2:56:db:71:4d:86:cf:f0:a5:6c:81:
5b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:68:2D:82:FD:07:21:14:01:8E:09:AB:8D:D3:7D:3E:05:BE:BB:62
X509v3 Authority Key Identifier:
keyid:D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/Xmgtgv0HIRQBjgmrjdN9PgW-u2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/1BvKOYYfnDDHV2FIAfhtF-XqHks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.222.0/24
Signature Algorithm: sha256WithRSAEncryption
92:15:98:84:68:2d:81:56:06:2d:39:a7:6f:42:b5:5c:2a:bc:
90:f6:f8:ab:18:a1:6e:56:e3:25:a4:c8:d5:99:69:79:6e:54:
f3:a7:f6:eb:33:35:20:8d:59:40:b8:77:6c:91:55:4c:66:98:
fc:d2:79:86:24:77:84:10:0d:ec:ef:ee:52:7f:28:f5:d8:37:
8a:1e:b6:a1:bb:1f:72:e5:4c:e4:5b:60:c2:ba:7c:e3:26:b7:
c0:cb:9d:2a:7a:38:4c:90:c7:64:75:4e:c2:4c:dc:57:bd:34:
30:42:c5:25:7b:48:43:72:7f:d0:58:2e:d3:9f:91:ff:3e:b5:
37:34:cd:33:6d:8f:fb:0e:88:af:80:b7:c7:b0:cc:2e:35:37:
f3:d8:2e:c1:a8:47:13:f4:6a:07:40:03:2c:7c:e5:45:5e:4b:
77:a2:a8:9c:8b:65:40:ec:78:75:2a:15:2f:c7:50:1c:e3:43:
f4:ad:08:f2:dc:cf:ee:5d:f5:d1:a3:ff:15:0b:56:a9:3c:c1:
a0:71:75:d8:b3:58:bf:bc:4b:b5:a9:04:51:44:6d:a0:98:8d:
b6:74:d7:a6:88:e4:15:2b:02:3e:32:33:dc:07:0f:f3:37:43:
14:ac:30:53:e9:f2:72:39:17:38:a3:54:6d:cc:74:4f:3a:c9:
57:1f:5c:6c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQOwhruU7k3XbvHBNMPcKmyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MWJjYTM5ODYxZjljMzBjNzU3NjE0ODAxZjg2ZDE3ZTVl
YTFlNGIwHhcNMjIxMDI1MTA0ODMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTY4MmQ4MmZkMDcyMTE0MDE4ZTA5YWI4ZGQzN2QzZTA1YmViYjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFLrBE8Y2mrlGUS9pkvsNnyw78iC
7MFNH2Ey2skeuQJndzpHvQtAEOeTNX/apalw9lXINQf7pUyGQesgBh1AifKGvRqz
z4pZVAys3p28jfkFfipST8kS3w5oCvrJ8bAKs79SBaqg7iU0gFFtCXbC7af4ZFkF
KvSaq3pQZvER+ChXljvU+o59MuUB8QEe3WYATkWMYw0gz/IE8yisnHBI35YOyPyW
GHlHxgD4JsmNwBPuaHMsGxXmHZRK6GIVbLyEtge1rpPVSKObnWgHJlScmfSYYGE4
o13IzfC9vatRAHSFDZIao77zRHde6G/KaKIDsrwlslbbcU2Gz/ClbIFbFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF5oLYL9ByEUAY4Jq43TfT4FvrtiMB8GA1UdIwQY
MBaAFNQbyjmGH5wwx1dhSAH4bRfl6h5LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUJ2S09ZWWZuRERIVjJGSUFmaHRGLVhxSGtzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS81OTg2NDItZTM2Zi00YzVjLWE4ZTAt
YTBiNTE0MjQ5YzA2LzEvWG1ndGd2MEhJUlFCamdtcmpkTjlQZ1ctdTJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS81OTg2NDItZTM2Zi00YzVjLWE4ZTAtYTBiNTE0MjQ5YzA2
LzEvMUJ2S09ZWWZuRERIVjJGSUFmaHRGLVhxSGtzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwh/eMA0G
CSqGSIb3DQEBCwUAA4IBAQCSFZiEaC2BVgYtOadvQrVcKryQ9virGKFuVuMlpMjV
mWl5blTzp/brMzUgjVlAuHdskVVMZpj80nmGJHeEEA3s7+5Sfyj12DeKHrahux9y
5UzkW2DCunzjJrfAy50qejhMkMdkdU7CTNxXvTQwQsUle0hDcn/QWC7Tn5H/PrU3
NM0zbY/7DoivgLfHsMwuNTfz2C7BqEcT9GoHQAMsfOVFXkt3oqici2VA7Hh1KhUv
x1Ac40P0rQjy3M/uXfXRo/8VC1apPMGgcXXYs1i/vEu1qQRRRG2gmI22dNemiOQV
KwI+MjPcBw/zN0MUrDBT6fJyORc4o1RtzHRPOslXH1xs
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:15 2024 by rpki-client on console-ams.rpki-client.org