Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/CMpwvjkuiclc4d1mUMKWru0Y9z8.roa
File: CMpwvjkuiclc4d1mUMKWru0Y9z8.roa (raw, json)
Hash identifier: wHP2P7chk81skvWCQsbblcjGUn6+oyrHxpEXF/CSI7E=
Subject key identifier: 08:CA:70:BE:39:2E:89:C9:5C:E1:DD:66:50:C2:96:AE:ED:18:F7:3F
Certificate issuer: /CN=28e1f42c53f31d75d16156adba0fae02bf917a44
Certificate serial: 093B7053
Authority key identifier: 28:E1:F4:2C:53:F3:1D:75:D1:61:56:AD:BA:0F:AE:02:BF:91:7A:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KOH0LFPzHXXRYVatug-uAr-RekQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/CMpwvjkuiclc4d1mUMKWru0Y9z8.roa
Signing time: Sat 01 Jan 2022 04:00:59 +0000
ROA not before: Sat 01 Jan 2022 04:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57922
IP address blocks: 212.78.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154890323 (0x93b7053)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28e1f42c53f31d75d16156adba0fae02bf917a44
Validity
Not Before: Jan 1 04:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08ca70be392e89c95ce1dd6650c296aeed18f73f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:33:20:f8:df:b9:a0:ab:dc:8d:f3:7a:f8:5e:
cb:b2:33:71:79:90:75:20:84:58:78:19:3c:c4:07:
f6:a0:4b:f1:ab:d7:48:31:75:ca:a7:8d:0e:7a:c9:
9f:5b:ff:0e:53:e3:b4:b1:b3:11:7d:bb:ca:0a:e8:
38:f1:5c:d0:fa:4b:f8:0a:b7:4c:2e:d5:de:e6:50:
93:36:e9:97:95:09:85:a3:ef:14:e0:3a:0c:f6:72:
a1:29:94:27:43:13:ae:32:63:2e:62:42:12:93:05:
27:3e:8c:d6:13:b8:b0:5f:82:09:67:ba:49:51:60:
e7:6a:74:b9:93:71:a9:53:15:2d:b9:2a:d6:c0:8b:
3c:89:f3:db:cb:59:ff:90:19:96:ef:b0:c7:d8:6f:
7b:82:9f:f3:da:15:ca:6d:3c:8e:9c:ab:f6:22:e4:
b9:76:5f:9e:98:fb:3b:de:8f:46:67:44:3f:1d:67:
27:13:05:ea:fe:5c:e7:6c:3f:aa:77:4e:52:1c:c9:
29:12:74:48:a1:87:85:80:58:a1:0d:a6:39:27:af:
83:3a:81:4d:9b:79:8f:ca:ac:e4:d4:45:e1:0f:c3:
79:a3:dc:c6:6f:bc:a9:29:dd:14:81:5d:77:8f:17:
16:bb:e3:24:6a:49:7b:76:97:5a:83:81:b6:65:88:
b3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CA:70:BE:39:2E:89:C9:5C:E1:DD:66:50:C2:96:AE:ED:18:F7:3F
X509v3 Authority Key Identifier:
keyid:28:E1:F4:2C:53:F3:1D:75:D1:61:56:AD:BA:0F:AE:02:BF:91:7A:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KOH0LFPzHXXRYVatug-uAr-RekQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/CMpwvjkuiclc4d1mUMKWru0Y9z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/KOH0LFPzHXXRYVatug-uAr-RekQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.78.30.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4d:ae:8d:99:62:ca:c7:5e:48:ad:4a:2f:8b:d0:64:5d:32:
5b:2a:41:64:a6:d5:de:35:0f:2b:fc:e9:09:b9:fa:38:a8:40:
d3:5b:ec:62:9c:08:b6:6d:00:86:b9:10:25:d5:d3:28:c7:b1:
b7:4c:87:98:67:c7:1e:40:74:e7:06:d7:fb:86:14:ad:1e:3f:
fc:a0:1c:36:6e:ac:a1:39:05:3c:dd:e8:09:ae:f9:24:70:a8:
6c:96:9a:bd:be:17:2a:97:c6:66:6c:90:03:73:59:3b:68:3e:
b3:5a:3d:b0:a4:73:d3:51:52:67:64:81:27:29:87:e6:5b:a0:
21:c4:6b:8f:cd:b8:e6:66:7a:34:17:89:f9:c2:9b:5a:ce:50:
ab:57:0f:70:e4:6b:78:8b:f9:6e:a4:70:7a:72:9e:66:86:f7:
46:df:de:b7:3d:b4:03:c4:6b:08:2d:16:d3:cc:09:6d:1c:02:
c9:25:c2:7a:ce:5a:77:62:34:6d:ca:7f:b8:73:6a:72:f6:ad:
4f:44:0b:8d:d4:a0:70:d8:ba:4d:46:b6:aa:c3:fb:54:cb:3b:
34:4e:ef:88:49:8f:4a:9e:e3:55:31:9d:33:b2:58:15:96:9d:
25:e5:5f:ab:98:06:9e:2a:51:ba:9d:a8:9c:6e:c0:a1:3a:96:
5e:17:49:87
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECTtwUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OGUxZjQyYzUzZjMxZDc1ZDE2MTU2YWRiYTBmYWUwMmJmOTE3YTQ0MB4XDTIyMDEw
MTA0MDA1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDhjYTcwYmUzOTJl
ODljOTVjZTFkZDY2NTBjMjk2YWVlZDE4ZjczZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKQzIPjfuaCr3I3zevhey7IzcXmQdSCEWHgZPMQH9qBL8avX
SDF1yqeNDnrJn1v/DlPjtLGzEX27ygroOPFc0PpL+Aq3TC7V3uZQkzbpl5UJhaPv
FOA6DPZyoSmUJ0MTrjJjLmJCEpMFJz6M1hO4sF+CCWe6SVFg52p0uZNxqVMVLbkq
1sCLPInz28tZ/5AZlu+wx9hve4Kf89oVym08jpyr9iLkuXZfnpj7O96PRmdEPx1n
JxMF6v5c52w/qndOUhzJKRJ0SKGHhYBYoQ2mOSevgzqBTZt5j8qs5NRF4Q/DeaPc
xm+8qSndFIFdd48XFrvjJGpJe3aXWoOBtmWIsyUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQIynC+OS6JyVzh3WZQwpau7Rj3PzAfBgNVHSMEGDAWgBQo4fQsU/MdddFh
Vq26D64Cv5F6RDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tPSDBMRlB6SFhYUllWYXR1Zy11QXItUmVrUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzcvZTJjYzkwLTk3MWYtNDk1Ny1hZTM5LTllNzJhMjlkZTllMi8x
L0NNcHd2amt1aWNsYzRkMW1VTUtXcnUwWTl6OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcv
ZTJjYzkwLTk3MWYtNDk1Ny1hZTM5LTllNzJhMjlkZTllMi8xL0tPSDBMRlB6SFhY
UllWYXR1Zy11QXItUmVrUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANROHjANBgkqhkiG9w0BAQsFAAOC
AQEAGE2ujZliysdeSK1KL4vQZF0yWypBZKbV3jUPK/zpCbn6OKhA01vsYpwItm0A
hrkQJdXTKMext0yHmGfHHkB05wbX+4YUrR4//KAcNm6soTkFPN3oCa75JHCobJaa
vb4XKpfGZmyQA3NZO2g+s1o9sKRz01FSZ2SBJymH5lugIcRrj8245mZ6NBeJ+cKb
Ws5Qq1cPcORreIv5bqRwenKeZob3Rt/etz20A8RrCC0W08wJbRwCySXCes5ad2I0
bcp/uHNqcvatT0QLjdSgcNi6TUa2qsP7VMs7NE7viEmPSp7jVTGdM7JYFZadJeVf
q5gGnipRup2onG7AoTqWXhdJhw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:31 2024 by rpki-client on console-fra.rpki-client.org