Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/31fa62-cd40-4045-8692-ffea5bcc8d72/1/YHNc0EF__UWgrlwAnaeOer6zsj4.roa
File: YHNc0EF__UWgrlwAnaeOer6zsj4.roa (raw, json)
Hash identifier: 4J6qXopRs7ZfSN806CDCp2DlM26ivH07TMgXt2wgKjo=
Subject key identifier: 60:73:5C:D0:41:7F:FD:45:A0:AE:5C:00:9D:A7:8E:7A:BE:B3:B2:3E
Certificate issuer: /CN=80d061fe362811dce764e69a7a99b8f6be5f2a03
Certificate serial: 018A237B541FDCF792047B59E2CCDCA24FEA
Authority key identifier: 80:D0:61:FE:36:28:11:DC:E7:64:E6:9A:7A:99:B8:F6:BE:5F:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gNBh_jYoEdznZOaaepm49r5fKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/31fa62-cd40-4045-8692-ffea5bcc8d72/1/YHNc0EF__UWgrlwAnaeOer6zsj4.roa
Signing time: Wed 23 Aug 2023 17:39:59 +0000
ROA not before: Wed 23 Aug 2023 17:39:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 176.126.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:23:7b:54:1f:dc:f7:92:04:7b:59:e2:cc:dc:a2:4f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80d061fe362811dce764e69a7a99b8f6be5f2a03
Validity
Not Before: Aug 23 17:39:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60735cd0417ffd45a0ae5c009da78e7abeb3b23e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f6:04:0e:c7:da:67:5b:56:fc:40:52:8c:ff:
1d:48:1e:c3:9e:d7:b7:90:b4:50:e3:3d:fd:9f:4b:
a6:92:30:40:63:24:22:6e:c3:63:d6:76:9a:b1:fd:
08:24:eb:56:9d:bc:89:18:f5:ca:9b:09:59:ce:59:
bb:39:00:83:0f:72:85:e1:08:ed:e8:2d:d4:0d:78:
ce:7c:88:10:6c:77:a1:a7:0b:34:33:57:27:b4:97:
95:4f:c2:a7:48:aa:7f:74:ec:5a:eb:41:a1:eb:ef:
0f:41:75:f1:ee:a0:ae:cc:3c:20:04:37:50:88:05:
95:03:70:02:c9:f0:9e:86:fc:af:c0:50:1a:a9:81:
31:32:27:9f:f7:95:8f:c1:5f:ba:83:9c:b7:ab:42:
0b:6a:c7:c9:aa:31:64:65:1d:57:53:10:e8:2e:a4:
03:41:f7:b5:3e:99:5f:fe:cc:58:83:c5:2f:32:3f:
61:b9:e2:9a:7f:2f:7a:b8:69:75:44:5b:b7:36:a3:
72:a7:92:05:dd:c6:fb:3f:21:85:b2:28:b4:e5:42:
56:b0:7f:7f:36:ab:cb:c1:06:5e:e5:bf:dc:48:9f:
a2:96:1e:e9:f1:e0:a2:b9:3c:8f:3d:9a:5c:88:36:
d9:0d:0a:20:e3:2a:9c:fc:ea:ec:e1:d1:ac:6a:ae:
80:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:73:5C:D0:41:7F:FD:45:A0:AE:5C:00:9D:A7:8E:7A:BE:B3:B2:3E
X509v3 Authority Key Identifier:
keyid:80:D0:61:FE:36:28:11:DC:E7:64:E6:9A:7A:99:B8:F6:BE:5F:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNBh_jYoEdznZOaaepm49r5fKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/31fa62-cd40-4045-8692-ffea5bcc8d72/1/YHNc0EF__UWgrlwAnaeOer6zsj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/31fa62-cd40-4045-8692-ffea5bcc8d72/1/gNBh_jYoEdznZOaaepm49r5fKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.106.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d0:56:22:a1:e2:cf:f5:92:e1:17:af:fc:6a:c7:d4:c6:7c:
ff:99:b3:a6:dd:b6:b1:29:2f:b2:79:63:59:9f:86:8f:ae:1b:
6a:17:72:f7:90:7e:f4:9b:10:29:73:de:72:92:8c:0f:53:1e:
ac:cc:c1:26:31:f9:4e:e5:5f:a9:92:eb:eb:f7:5b:bf:aa:20:
5c:a1:f1:15:07:33:34:6a:6f:29:4b:26:cd:80:7c:e9:54:ec:
c8:95:ad:72:61:3b:d6:ac:dd:45:18:ab:a8:33:b8:07:56:1d:
08:b4:a5:44:1c:a8:8e:ee:35:f9:31:b4:29:3e:b0:57:62:e5:
60:eb:e5:cc:d2:08:15:35:4c:d7:71:77:b2:51:b4:b9:92:5e:
02:56:a1:02:cc:6c:aa:a9:90:f9:ee:0f:48:92:36:07:5b:ab:
df:9f:dc:da:af:6f:fc:b3:e2:29:b5:00:b1:60:90:9f:bf:f3:
21:90:be:0f:b1:be:05:28:cd:00:fd:3c:f0:b9:df:b3:24:12:
0d:7e:a9:47:cf:8c:37:ac:40:61:22:35:b3:24:ae:d3:5b:89:
cc:e9:0a:8f:d0:ab:3e:18:aa:98:b6:f9:07:36:70:b8:34:7c:
d5:af:56:cd:17:b6:40:70:8a:27:a4:a3:94:ef:a4:1e:5f:3f:
25:4e:9f:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoje1Qf3PeSBHtZ4szcok/qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwZDA2MWZlMzYyODExZGNlNzY0ZTY5YTdhOTliOGY2YmU1
ZjJhMDMwHhcNMjMwODIzMTczOTU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDczNWNkMDQxN2ZmZDQ1YTBhZTVjMDA5ZGE3OGU3YWJlYjNiMjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/YEDsfaZ1tW/EBSjP8dSB7Dnte3
kLRQ4z39n0umkjBAYyQibsNj1naasf0IJOtWnbyJGPXKmwlZzlm7OQCDD3KF4Qjt
6C3UDXjOfIgQbHehpws0M1cntJeVT8KnSKp/dOxa60Gh6+8PQXXx7qCuzDwgBDdQ
iAWVA3ACyfCehvyvwFAaqYExMief95WPwV+6g5y3q0ILasfJqjFkZR1XUxDoLqQD
Qfe1Pplf/sxYg8UvMj9hueKafy96uGl1RFu3NqNyp5IF3cb7PyGFsii05UJWsH9/
NqvLwQZe5b/cSJ+ilh7p8eCiuTyPPZpciDbZDQog4yqc/Ors4dGsaq6AGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGBzXNBBf/1FoK5cAJ2njnq+s7I+MB8GA1UdIwQY
MBaAFIDQYf42KBHc52TmmnqZuPa+XyoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ05CaF9qWW9FZHpuWk9hYWVwbTQ5cjVmS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8zMWZhNjItY2Q0MC00MDQ1LTg2OTIt
ZmZlYTViY2M4ZDcyLzEvWUhOYzBFRl9fVVdncmx3QW5hZU9lcjZ6c2o0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8zMWZhNjItY2Q0MC00MDQ1LTg2OTItZmZlYTViY2M4ZDcy
LzEvZ05CaF9qWW9FZHpuWk9hYWVwbTQ5cjVmS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsH5qMA0G
CSqGSIb3DQEBCwUAA4IBAQCF0FYioeLP9ZLhF6/8asfUxnz/mbOm3baxKS+yeWNZ
n4aPrhtqF3L3kH70mxApc95ykowPUx6szMEmMflO5V+pkuvr91u/qiBcofEVBzM0
am8pSybNgHzpVOzIla1yYTvWrN1FGKuoM7gHVh0ItKVEHKiO7jX5MbQpPrBXYuVg
6+XM0ggVNUzXcXeyUbS5kl4CVqECzGyqqZD57g9IkjYHW6vfn9zar2/8s+IptQCx
YJCfv/MhkL4Psb4FKM0A/Tzwud+zJBINfqlHz4w3rEBhIjWzJK7TW4nM6QqP0Ks+
GKqYtvkHNnC4NHzVr1bNF7ZAcIonpKOU76QeXz8lTp/d
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:56 2024 by rpki-client on console-ams.rpki-client.org