Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/CFE4z1MJ29GumKJH7_T2IYDN7As.roa
File: CFE4z1MJ29GumKJH7_T2IYDN7As.roa (raw, json)
Hash identifier: QckSYK6sgTcED4XMqEbXEflFGES3bKpYOBn37W6O6vc=
Subject key identifier: 08:51:38:CF:53:09:DB:D1:AE:98:A2:47:EF:F4:F6:21:80:CD:EC:0B
Certificate issuer: /CN=e76298efc950af2a461cd8dc7bee5006baa2fd8c
Certificate serial: 0169257A
Authority key identifier: E7:62:98:EF:C9:50:AF:2A:46:1C:D8:DC:7B:EE:50:06:BA:A2:FD:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52KY78lQrypGHNjce-5QBrqi_Yw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/CFE4z1MJ29GumKJH7_T2IYDN7As.roa
Signing time: Tue 28 Jun 2022 21:47:03 +0000
ROA not before: Tue 28 Jun 2022 21:47:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 193.84.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23668090 (0x169257a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76298efc950af2a461cd8dc7bee5006baa2fd8c
Validity
Not Before: Jun 28 21:47:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=085138cf5309dbd1ae98a247eff4f62180cdec0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d8:53:3a:63:41:b3:de:ac:5d:01:0c:e3:6f:
20:15:7f:ca:d5:4b:32:66:dd:66:c3:14:37:46:83:
1c:9e:c2:f2:3d:4d:a5:53:9b:69:3f:15:2a:6e:2c:
62:7a:75:e8:63:7f:03:ee:57:05:41:7c:3c:c5:80:
dd:f5:7c:7d:07:54:19:b5:67:e0:b5:08:80:c4:25:
7b:1e:58:10:87:c7:ef:58:13:46:19:d7:fc:3c:28:
91:34:1e:3f:9b:87:4c:df:43:13:a9:95:02:0e:37:
7f:5b:4f:76:1f:bb:6f:0e:30:ba:d9:ea:e1:58:73:
bb:8d:85:a4:6e:e9:2e:f7:9d:10:ad:85:c9:55:34:
7f:69:10:9d:2f:d6:79:67:64:c8:b4:46:7c:f6:31:
99:22:8c:64:e2:c2:02:e7:65:91:9e:65:6d:33:dc:
17:4d:6f:f9:58:95:3f:99:8e:ad:3c:3a:8f:c7:15:
30:53:01:49:a0:0d:2f:05:ca:9b:5d:8f:b0:0c:95:
74:ab:0f:b3:c0:ae:26:85:f5:44:d9:71:7c:7e:5f:
91:be:cb:89:9f:13:0d:bb:ff:74:10:ad:bd:2a:08:
32:c7:2b:a1:29:11:c3:a5:25:47:7f:73:92:dd:2d:
80:32:51:22:ea:e5:33:9d:4a:9c:27:a4:83:b6:03:
b4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:51:38:CF:53:09:DB:D1:AE:98:A2:47:EF:F4:F6:21:80:CD:EC:0B
X509v3 Authority Key Identifier:
keyid:E7:62:98:EF:C9:50:AF:2A:46:1C:D8:DC:7B:EE:50:06:BA:A2:FD:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52KY78lQrypGHNjce-5QBrqi_Yw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/CFE4z1MJ29GumKJH7_T2IYDN7As.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/52KY78lQrypGHNjce-5QBrqi_Yw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.111.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:5e:f3:e1:be:07:16:3d:2b:fc:40:1c:33:e8:0c:14:80:9e:
1f:c3:58:3d:a7:cb:7d:61:c9:5a:71:c3:40:28:b3:bd:a8:06:
7f:20:e5:1d:3c:61:fb:2c:c0:e2:ab:3e:2a:8e:b2:39:4f:5f:
00:0b:89:43:95:8c:a2:03:98:08:ff:af:71:b6:d8:63:d2:74:
e1:26:57:01:3e:1c:1d:78:4f:08:21:8f:a6:25:fd:36:3c:99:
81:20:c7:ba:43:51:6b:5a:a0:43:f9:c3:48:fd:06:6a:1b:25:
78:5b:7b:9e:29:ef:68:fe:a1:8f:25:9d:ca:af:b6:44:f5:44:
52:b7:4c:54:d3:f8:76:63:dc:9d:c9:ab:b8:2f:93:04:6f:ee:
31:f1:b4:82:44:b7:17:25:16:fd:9a:9f:83:91:d9:d3:ef:6d:
64:de:09:2e:11:c3:f0:57:47:6e:bd:f5:b2:89:4c:96:e8:d1:
42:a1:83:28:0b:8f:8a:b1:c6:f0:f3:60:9f:2f:0e:10:8c:40:
a2:31:75:16:34:d2:0c:7f:a5:d4:5e:a7:ee:c6:84:9a:9f:16:
06:ea:8e:ba:c3:1a:ae:3d:d4:50:70:0c:0f:ee:a2:c4:ac:14:
46:2c:fa:63:10:d6:2e:58:c1:ec:6c:d3:a5:4a:25:11:5e:dc:
d3:1d:19:12
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAWklejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzYyOThlZmM5NTBhZjJhNDYxY2Q4ZGM3YmVlNTAwNmJhYTJmZDhjMB4XDTIyMDYy
ODIxNDcwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDg1MTM4Y2Y1MzA5
ZGJkMWFlOThhMjQ3ZWZmNGY2MjE4MGNkZWMwYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI7YUzpjQbPerF0BDONvIBV/ytVLMmbdZsMUN0aDHJ7C8j1N
pVObaT8VKm4sYnp16GN/A+5XBUF8PMWA3fV8fQdUGbVn4LUIgMQlex5YEIfH71gT
RhnX/DwokTQeP5uHTN9DE6mVAg43f1tPdh+7bw4wutnq4Vhzu42FpG7pLvedEK2F
yVU0f2kQnS/WeWdkyLRGfPYxmSKMZOLCAudlkZ5lbTPcF01v+ViVP5mOrTw6j8cV
MFMBSaANLwXKm12PsAyVdKsPs8CuJoX1RNlxfH5fkb7LiZ8TDbv/dBCtvSoIMscr
oSkRw6UlR39zkt0tgDJRIurlM51KnCekg7YDtLECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQIUTjPUwnb0a6Yokfv9PYhgM3sCzAfBgNVHSMEGDAWgBTnYpjvyVCvKkYc
2Nx77lAGuqL9jDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzUyS1k3OGxRcnlwR0hOamNlLTVRQnJxaV9Zdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2IvNDkxNTU5LTg0YjgtNDViOS1iZTgzLTM1MTg5ZDQ0ZGY4MC8x
L0NGRTR6MU1KMjlHdW1LSkg3X1QySVlETjdBcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Iv
NDkxNTU5LTg0YjgtNDViOS1iZTgzLTM1MTg5ZDQ0ZGY4MC8xLzUyS1k3OGxRcnlw
R0hOamNlLTVRQnJxaV9Zdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFUbzANBgkqhkiG9w0BAQsFAAOC
AQEAsV7z4b4HFj0r/EAcM+gMFICeH8NYPafLfWHJWnHDQCizvagGfyDlHTxh+yzA
4qs+Ko6yOU9fAAuJQ5WMogOYCP+vcbbYY9J04SZXAT4cHXhPCCGPpiX9NjyZgSDH
ukNRa1qgQ/nDSP0GahsleFt7ninvaP6hjyWdyq+2RPVEUrdMVNP4dmPcncmruC+T
BG/uMfG0gkS3FyUW/Zqfg5HZ0+9tZN4JLhHD8FdHbr31solMlujRQqGDKAuPirHG
8PNgny8OEIxAojF1FjTSDH+l1F6n7saEmp8WBuqOusMarj3UUHAMD+6ixKwURiz6
YxDWLljB7GzTpUolEV7c0x0ZEg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:20 2023 by rpki-client on console-fra.rpki-client.org