Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3fc2fb-d24e-41cc-835b-91f3e38d0535/1/74QoIMgWE4PP7cz0m33uMYSL-Y4.roa
File: 74QoIMgWE4PP7cz0m33uMYSL-Y4.roa (raw, json)
Hash identifier: pJB1B6Jknd93sQ4sxH7/ojJITnnfCOH4dLFspbSUGhw=
Subject key identifier: EF:84:28:20:C8:16:13:83:CF:ED:CC:F4:9B:7D:EE:31:84:8B:F9:8E
Certificate issuer: /CN=a518fe89f78527304023f8c5f05ab2e3a3d6d9f2
Certificate serial: 0185711E2FE89423B5329A5E23779303DB5E
Authority key identifier: A5:18:FE:89:F7:85:27:30:40:23:F8:C5:F0:5A:B2:E3:A3:D6:D9:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pRj-ifeFJzBAI_jF8Fqy46PW2fI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3fc2fb-d24e-41cc-835b-91f3e38d0535/1/74QoIMgWE4PP7cz0m33uMYSL-Y4.roa
Signing time: Mon 02 Jan 2023 06:14:41 +0000
ROA not before: Mon 02 Jan 2023 06:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 176.126.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:2f:e8:94:23:b5:32:9a:5e:23:77:93:03:db:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a518fe89f78527304023f8c5f05ab2e3a3d6d9f2
Validity
Not Before: Jan 2 06:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef842820c8161383cfedccf49b7dee31848bf98e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e4:17:1f:29:b0:20:12:c3:69:fd:06:2f:d7:
dd:8a:e8:b6:89:28:94:b3:7a:9e:51:d2:99:7c:aa:
3c:f4:09:71:91:98:5e:70:46:b7:bb:c1:1d:6a:4d:
31:6c:00:59:b5:ae:42:f3:12:d8:88:f1:26:44:d5:
87:a5:65:ad:42:ed:f0:a6:dc:92:50:6d:e3:ce:05:
1a:c0:14:b0:69:4f:8c:23:40:a9:ff:8f:79:b5:b0:
bd:08:17:65:86:1e:e0:b4:bb:7f:45:3a:6b:2c:b6:
bf:df:8b:76:bd:f3:a9:83:68:d3:80:05:a6:a0:40:
ef:0a:2e:69:f1:ca:7b:69:97:83:d9:88:d7:5c:81:
f6:c1:77:66:bc:b7:92:ea:a5:f5:b7:91:ae:b5:dd:
a2:38:40:04:fc:36:fd:16:fe:bb:78:51:d8:e0:ee:
49:9f:f2:4c:36:73:c9:4a:19:f2:8a:60:52:b3:5c:
8d:38:7a:68:3c:fd:62:a7:77:99:84:0b:75:24:fb:
a8:45:d1:1f:dd:78:2f:14:1d:43:60:f6:64:a5:de:
bc:24:f6:8d:37:2f:c0:6b:84:48:ad:b8:81:3f:da:
cb:ac:cb:73:5a:fc:c4:a3:44:4b:88:d7:08:6c:91:
30:0f:ca:f3:26:39:99:63:f2:e4:b6:08:66:05:71:
dc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:84:28:20:C8:16:13:83:CF:ED:CC:F4:9B:7D:EE:31:84:8B:F9:8E
X509v3 Authority Key Identifier:
keyid:A5:18:FE:89:F7:85:27:30:40:23:F8:C5:F0:5A:B2:E3:A3:D6:D9:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pRj-ifeFJzBAI_jF8Fqy46PW2fI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3fc2fb-d24e-41cc-835b-91f3e38d0535/1/74QoIMgWE4PP7cz0m33uMYSL-Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3fc2fb-d24e-41cc-835b-91f3e38d0535/1/pRj-ifeFJzBAI_jF8Fqy46PW2fI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.101.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:7f:86:d1:9a:96:92:47:5d:4b:13:0c:87:57:1d:36:25:98:
d0:db:b2:3c:ec:43:8d:6e:21:91:0b:42:ee:65:68:ba:e3:f8:
f3:e8:39:c4:19:28:b0:c6:66:c1:e3:03:6c:c4:bd:c4:7b:b1:
15:06:cd:70:f8:e0:a3:aa:4f:56:4a:16:26:3d:1e:75:4e:04:
19:95:e9:4c:10:98:16:2a:68:f2:19:c9:0d:49:94:0e:f1:5c:
31:1b:a5:62:f2:22:db:20:86:05:30:19:7e:23:f6:d3:83:7b:
03:4e:a1:18:6c:2d:a4:c5:e0:a5:66:0b:98:63:ae:f4:76:65:
92:92:db:ee:1a:94:24:76:17:c9:2f:79:c4:bb:7b:48:e2:2c:
33:4a:30:4e:0e:28:7d:8c:5d:e1:6c:ba:2c:5e:9e:86:fc:93:
b2:6d:35:be:0f:99:7a:68:29:f4:72:e6:3b:19:0e:3d:90:26:
93:20:62:3d:a8:a8:32:90:c9:35:af:7d:f9:d1:18:a0:7a:71:
bc:86:59:79:73:9e:8a:42:f8:9e:3f:a3:cb:79:c6:67:23:e0:
aa:a2:08:7c:db:8f:36:68:69:54:21:60:12:14:15:d2:5b:e9:
cc:96:d0:1d:11:67:57:1b:31:c1:66:fa:29:4e:37:7e:be:1b:
f6:9f:95:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxHi/olCO1MppeI3eTA9teMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MThmZTg5Zjc4NTI3MzA0MDIzZjhjNWYwNWFiMmUzYTNk
NmQ5ZjIwHhcNMjMwMTAyMDYxNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjg0MjgyMGM4MTYxMzgzY2ZlZGNjZjQ5YjdkZWUzMTg0OGJmOThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuQXHymwIBLDaf0GL9fdiui2iSiU
s3qeUdKZfKo89AlxkZhecEa3u8Edak0xbABZta5C8xLYiPEmRNWHpWWtQu3wptyS
UG3jzgUawBSwaU+MI0Cp/495tbC9CBdlhh7gtLt/RTprLLa/34t2vfOpg2jTgAWm
oEDvCi5p8cp7aZeD2YjXXIH2wXdmvLeS6qX1t5Gutd2iOEAE/Db9Fv67eFHY4O5J
n/JMNnPJShnyimBSs1yNOHpoPP1ip3eZhAt1JPuoRdEf3XgvFB1DYPZkpd68JPaN
Ny/Aa4RIrbiBP9rLrMtzWvzEo0RLiNcIbJEwD8rzJjmZY/LktghmBXHc2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO+EKCDIFhODz+3M9Jt97jGEi/mOMB8GA1UdIwQY
MBaAFKUY/on3hScwQCP4xfBasuOj1tnyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFJqLWlmZUZKekJBSV9qRjhGcXk0NlBXMmZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8zZmMyZmItZDI0ZS00MWNjLTgzNWIt
OTFmM2UzOGQwNTM1LzEvNzRRb0lNZ1dFNFBQN2N6MG0zM3VNWVNMLVk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8zZmMyZmItZDI0ZS00MWNjLTgzNWItOTFmM2UzOGQwNTM1
LzEvcFJqLWlmZUZKekJBSV9qRjhGcXk0NlBXMmZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsH5lMA0G
CSqGSIb3DQEBCwUAA4IBAQBKf4bRmpaSR11LEwyHVx02JZjQ27I87EONbiGRC0Lu
ZWi64/jz6DnEGSiwxmbB4wNsxL3Ee7EVBs1w+OCjqk9WShYmPR51TgQZlelMEJgW
KmjyGckNSZQO8VwxG6Vi8iLbIIYFMBl+I/bTg3sDTqEYbC2kxeClZguYY670dmWS
ktvuGpQkdhfJL3nEu3tI4iwzSjBODih9jF3hbLosXp6G/JOybTW+D5l6aCn0cuY7
GQ49kCaTIGI9qKgykMk1r3350RigenG8hll5c56KQvieP6PLecZnI+Cqogh82482
aGlUIWASFBXSW+nMltAdEWdXGzHBZvopTjd+vhv2n5Vg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:26 2024 by rpki-client on console-fra.rpki-client.org