Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/db25e0-5143-4949-841b-4774089bd38e/1/XTSqddMcWoHW8uOxh-IJ5BNiXg0.roa
File: XTSqddMcWoHW8uOxh-IJ5BNiXg0.roa (raw, json)
Hash identifier: FqSr7kfppssNCE4nJ+InMVPDeEnEwmECNwaEpBOpr1s=
Subject key identifier: 5D:34:AA:75:D3:1C:5A:81:D6:F2:E3:B1:87:E2:09:E4:13:62:5E:0D
Certificate issuer: /CN=409ab9c0e3282134bb825d100495d142223e95ec
Certificate serial: 810E8E
Authority key identifier: 40:9A:B9:C0:E3:28:21:34:BB:82:5D:10:04:95:D1:42:22:3E:95:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJq5wOMoITS7gl0QBJXRQiI-lew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/db25e0-5143-4949-841b-4774089bd38e/1/XTSqddMcWoHW8uOxh-IJ5BNiXg0.roa
Signing time: Sat 01 Jan 2022 00:53:58 +0000
ROA not before: Sat 01 Jan 2022 00:53:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43581
IP address blocks: 46.253.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8457870 (0x810e8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=409ab9c0e3282134bb825d100495d142223e95ec
Validity
Not Before: Jan 1 00:53:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d34aa75d31c5a81d6f2e3b187e209e413625e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:89:51:c3:4b:d0:e8:f6:f3:76:94:0b:ed:c7:
ca:f4:20:ba:5e:38:2b:d7:c0:6e:11:65:0f:c9:24:
c0:15:89:c1:74:f9:6b:ef:17:21:61:fb:c4:20:bf:
a1:e2:e9:a8:74:55:82:bd:82:77:30:71:40:b6:c3:
e7:17:f5:54:c6:f5:f1:6c:dd:64:ee:78:09:57:66:
c8:f2:52:a8:c7:4c:1b:09:45:5e:0b:88:71:62:0d:
96:72:05:40:15:0b:ee:ee:4f:d2:23:e7:ec:06:83:
e1:be:e5:86:ca:ca:c7:1b:4f:41:ff:ca:46:90:15:
87:67:bd:e6:7a:0f:63:39:5f:bb:50:1b:53:9a:6d:
06:f7:3c:1d:5d:7b:05:d6:f4:fc:b2:b5:94:81:0c:
52:88:57:8c:cc:f0:f8:f9:00:75:cd:c9:bb:ba:08:
2e:c2:b6:60:2c:ae:2e:72:c0:a9:ed:3d:30:df:98:
f1:15:11:4b:2c:30:6b:cd:a4:1d:15:8a:70:37:a5:
9e:7f:e7:fe:58:4e:fa:2c:03:c2:4b:aa:57:95:04:
f2:a6:40:e8:dd:b8:52:06:e8:bd:f2:ef:1c:2e:9b:
57:54:d1:89:f9:d7:2d:67:ca:72:45:a6:6f:75:47:
4c:0a:94:29:11:ca:0b:86:9c:1b:97:92:d6:8b:7f:
1e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:34:AA:75:D3:1C:5A:81:D6:F2:E3:B1:87:E2:09:E4:13:62:5E:0D
X509v3 Authority Key Identifier:
keyid:40:9A:B9:C0:E3:28:21:34:BB:82:5D:10:04:95:D1:42:22:3E:95:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJq5wOMoITS7gl0QBJXRQiI-lew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/db25e0-5143-4949-841b-4774089bd38e/1/XTSqddMcWoHW8uOxh-IJ5BNiXg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/db25e0-5143-4949-841b-4774089bd38e/1/QJq5wOMoITS7gl0QBJXRQiI-lew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.143.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:18:f4:69:83:1a:1a:1d:27:a1:02:f8:06:93:d2:2f:ae:b8:
29:68:1b:38:c5:0f:6b:0e:40:ee:3e:72:2d:dc:37:06:ad:84:
0d:df:96:0c:20:7f:9e:20:40:a0:e7:d9:94:17:72:dc:be:e7:
a7:ee:14:6e:e1:ff:54:ad:52:e8:69:5b:5e:8d:ed:b3:01:d2:
14:44:78:d0:52:1a:e2:83:ef:85:c6:e0:1e:ab:33:12:0d:ca:
9c:e0:b3:13:5e:b0:d0:a6:1c:c9:7f:ec:ce:a6:bd:3a:04:84:
e4:70:5d:ec:5a:75:b1:8c:05:5f:c9:fc:59:d9:ca:41:35:22:
5f:96:06:28:bc:26:e0:4e:13:d1:bb:d7:79:f9:65:3d:16:68:
38:44:e9:0d:5d:62:78:88:3a:a6:13:3b:10:1b:77:61:0e:d9:
87:f2:b5:47:5c:37:18:6a:af:99:c4:4e:a3:94:28:f1:89:58:
3e:6f:ef:f0:c6:d6:a8:3a:a0:9d:7c:29:fd:50:0c:df:53:a8:
10:6a:ef:d4:88:f7:f5:5b:2c:3d:73:0b:bb:74:7f:20:05:1c:
51:5b:a2:be:da:95:13:00:d0:65:ec:44:f1:56:6a:aa:02:c4:
0f:b9:38:e2:34:66:dc:46:b9:18:b8:10:b2:fa:96:7c:e4:b3:
53:c5:fd:46
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIEOjjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MDlhYjljMGUzMjgyMTM0YmI4MjVkMTAwNDk1ZDE0MjIyM2U5NWVjMB4XDTIyMDEw
MTAwNTM1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWQzNGFhNzVkMzFj
NWE4MWQ2ZjJlM2IxODdlMjA5ZTQxMzYyNWUwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL6JUcNL0Oj283aUC+3HyvQgul44K9fAbhFlD8kkwBWJwXT5
a+8XIWH7xCC/oeLpqHRVgr2CdzBxQLbD5xf1VMb18WzdZO54CVdmyPJSqMdMGwlF
XguIcWINlnIFQBUL7u5P0iPn7AaD4b7lhsrKxxtPQf/KRpAVh2e95noPYzlfu1Ab
U5ptBvc8HV17Bdb0/LK1lIEMUohXjMzw+PkAdc3Ju7oILsK2YCyuLnLAqe09MN+Y
8RURSywwa82kHRWKcDelnn/n/lhO+iwDwkuqV5UE8qZA6N24UgbovfLvHC6bV1TR
ifnXLWfKckWmb3VHTAqUKRHKC4acG5eS1ot/HnECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRdNKp10xxagdby47GH4gnkE2JeDTAfBgNVHSMEGDAWgBRAmrnA4yghNLuC
XRAEldFCIj6V7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FKcTV3T01vSVRTN2dsMFFCSlhSUWlJLWxldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzgvZGIyNWUwLTUxNDMtNDk0OS04NDFiLTQ3NzQwODliZDM4ZS8x
L1hUU3FkZE1jV29IVzh1T3hoLUlKNUJOaVhnMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgv
ZGIyNWUwLTUxNDMtNDk0OS04NDFiLTQ3NzQwODliZDM4ZS8xL1FKcTV3T01vSVRT
N2dsMFFCSlhSUWlJLWxldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC79jzANBgkqhkiG9w0BAQsFAAOC
AQEAihj0aYMaGh0noQL4BpPSL664KWgbOMUPaw5A7j5yLdw3Bq2EDd+WDCB/niBA
oOfZlBdy3L7np+4UbuH/VK1S6GlbXo3tswHSFER40FIa4oPvhcbgHqszEg3KnOCz
E16w0KYcyX/szqa9OgSE5HBd7Fp1sYwFX8n8WdnKQTUiX5YGKLwm4E4T0bvXefll
PRZoOETpDV1ieIg6phM7EBt3YQ7Zh/K1R1w3GGqvmcROo5Qo8YlYPm/v8MbWqDqg
nXwp/VAM31OoEGrv1Ij39VssPXMLu3R/IAUcUVuivtqVEwDQZexE8VZqqgLED7k4
4jRm3Ea5GLgQsvqWfOSzU8X9Rg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org