Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/BQVZxbLKiXXNnnmZHL64N5iuUOM.roa
File: BQVZxbLKiXXNnnmZHL64N5iuUOM.roa (raw, json)
Hash identifier: 5RZGs5nBYQnXWhS6sAEU6faiXbnmUmbpla1gx7P142E=
Subject key identifier: 05:05:59:C5:B2:CA:89:75:CD:9E:79:99:1C:BE:B8:37:98:AE:50:E3
Certificate issuer: /CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Certificate serial: 01857169BBDC8DCC2E4BA3416DB790EF7425
Authority key identifier: 80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/BQVZxbLKiXXNnnmZHL64N5iuUOM.roa
Signing time: Mon 02 Jan 2023 07:37:12 +0000
ROA not before: Mon 02 Jan 2023 07:37:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 46.254.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:bb:dc:8d:cc:2e:4b:a3:41:6d:b7:90:ef:74:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Validity
Not Before: Jan 2 07:37:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=050559c5b2ca8975cd9e79991cbeb83798ae50e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ef:6a:a4:be:98:c9:1f:5f:ce:8e:ae:b4:04:
c8:51:80:03:8b:09:8e:ca:d2:fd:3b:e4:d7:43:85:
34:89:93:fa:e7:59:f1:e4:4d:9e:10:c3:82:6b:69:
23:21:3f:d0:48:d5:4c:0f:8e:da:2b:47:fd:9b:d4:
50:f7:ee:33:41:4a:74:78:9d:26:d2:a5:70:ef:95:
26:93:4f:04:98:8f:be:ee:e5:65:75:e3:b2:ee:fe:
57:8c:88:9b:ba:ec:30:74:9d:da:d7:32:88:f2:ba:
3b:fb:4b:e9:7d:3f:b8:8b:6c:74:2a:2c:d1:b0:a5:
94:9d:e4:c1:96:af:6e:ba:7a:a0:8c:0e:6f:1e:8a:
2c:0d:f8:66:93:fc:3a:2a:49:a6:40:f6:b0:af:e5:
13:42:7b:a6:4d:8f:4e:9c:b1:f1:6b:2e:9e:93:f3:
b2:d7:64:3a:c6:80:f3:fc:86:a0:e4:d7:0e:c8:32:
6e:a9:39:cc:da:a1:76:82:df:e2:d6:6a:b3:92:bc:
65:ad:7b:46:3f:13:0d:c4:0f:cc:31:42:68:af:6e:
20:90:81:2e:3f:94:95:ce:69:ed:d8:14:58:4c:c9:
f0:60:5b:54:8d:65:22:f9:ff:0b:99:46:2a:0c:13:
16:c9:38:fa:b3:19:58:76:bd:14:a8:57:e1:92:a8:
c3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:05:59:C5:B2:CA:89:75:CD:9E:79:99:1C:BE:B8:37:98:AE:50:E3
X509v3 Authority Key Identifier:
keyid:80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/BQVZxbLKiXXNnnmZHL64N5iuUOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/gOSEhc6bDkJWQIBO3A7SumuPS48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.106.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f4:31:a6:e6:8d:c1:ed:bd:ab:57:ae:a2:53:cd:82:83:e2:
08:c7:e0:6b:97:85:ed:0e:27:34:32:a6:3a:f3:f4:c4:f0:5b:
c9:61:86:0a:df:09:3d:33:dd:e4:a8:87:60:91:52:97:24:f0:
87:22:78:2c:92:b4:73:2c:0d:10:c4:af:5e:e7:dc:d6:5a:11:
f5:d3:8a:02:d6:3d:48:b6:6c:76:af:06:60:6a:58:b6:2e:3f:
7c:45:89:a8:6e:8e:55:e9:e9:df:9a:5d:5c:98:1f:c9:6e:67:
a5:db:80:21:20:c8:d2:91:7c:ce:ab:8b:bd:a8:1a:ee:b9:4e:
cc:fa:23:de:e5:76:43:90:27:32:49:e5:ac:ab:7e:49:48:52:
ef:75:7e:10:16:9d:ab:3c:be:1b:9b:cb:aa:c4:21:ce:2f:76:
1e:d6:0c:5f:0e:96:8f:66:c9:67:f6:f2:9a:11:e0:09:9f:62:
33:28:96:fc:49:44:15:ec:d0:79:c4:4d:1a:d9:ff:5b:08:8d:
56:0b:ab:dc:d2:74:73:fb:bb:14:b3:2f:cf:44:ad:d2:cd:63:
0b:61:3c:19:a0:e9:f2:1f:04:07:bf:7c:6b:8e:26:46:70:88:
8a:46:8e:1c:98:87:d1:4a:ea:55:94:d8:27:46:2d:d7:73:9b:
ed:32:2a:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxabvcjcwuS6NBbbeQ73QlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwZTQ4NDg1Y2U5YjBlNDI1NjQwODA0ZWRjMGVkMmJhNmI4
ZjRiOGYwHhcNMjMwMTAyMDczNzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTA1NTljNWIyY2E4OTc1Y2Q5ZTc5OTkxY2JlYjgzNzk4YWU1MGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtu9qpL6YyR9fzo6utATIUYADiwmO
ytL9O+TXQ4U0iZP651nx5E2eEMOCa2kjIT/QSNVMD47aK0f9m9RQ9+4zQUp0eJ0m
0qVw75Umk08EmI++7uVldeOy7v5XjIibuuwwdJ3a1zKI8ro7+0vpfT+4i2x0KizR
sKWUneTBlq9uunqgjA5vHoosDfhmk/w6KkmmQPawr+UTQnumTY9OnLHxay6ek/Oy
12Q6xoDz/Iag5NcOyDJuqTnM2qF2gt/i1mqzkrxlrXtGPxMNxA/MMUJor24gkIEu
P5SVzmnt2BRYTMnwYFtUjWUi+f8LmUYqDBMWyTj6sxlYdr0UqFfhkqjDCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAUFWcWyyol1zZ55mRy+uDeYrlDjMB8GA1UdIwQY
MBaAFIDkhIXOmw5CVkCATtwO0rprj0uPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ09TRWhjNmJEa0pXUUlCTzNBN1N1bXVQUzQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS82ZGM5NzgtYmZkNi00MWVjLThhM2Et
YzAzMDE3ZTk4YzUzLzEvQlFWWnhiTEtpWFhObm5tWkhMNjRONWl1VU9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS82ZGM5NzgtYmZkNi00MWVjLThhM2EtYzAzMDE3ZTk4YzUz
LzEvZ09TRWhjNmJEa0pXUUlCTzNBN1N1bXVQUzQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALv5qMA0G
CSqGSIb3DQEBCwUAA4IBAQBn9DGm5o3B7b2rV66iU82Cg+IIx+Brl4XtDic0MqY6
8/TE8FvJYYYK3wk9M93kqIdgkVKXJPCHIngskrRzLA0QxK9e59zWWhH104oC1j1I
tmx2rwZgali2Lj98RYmobo5V6enfml1cmB/Jbmel24AhIMjSkXzOq4u9qBruuU7M
+iPe5XZDkCcySeWsq35JSFLvdX4QFp2rPL4bm8uqxCHOL3Ye1gxfDpaPZsln9vKa
EeAJn2IzKJb8SUQV7NB5xE0a2f9bCI1WC6vc0nRz+7sUsy/PRK3SzWMLYTwZoOny
HwQHv3xrjiZGcIiKRo4cmIfRSupVlNgnRi3Xc5vtMioh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org