Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/rWKXIGUUVLEkcWhooRKJq99tuug.roa
File: rWKXIGUUVLEkcWhooRKJq99tuug.roa (raw, json)
Hash identifier: fZXIbEl9xn0Uyj9VCZx9SXBiCxowKv1lq1HbmorVeLU=
Subject key identifier: AD:62:97:20:65:14:54:B1:24:71:68:68:A1:12:89:AB:DF:6D:BA:E8
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 03355332
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/rWKXIGUUVLEkcWhooRKJq99tuug.roa
Signing time: Sat 01 Jan 2022 05:03:13 +0000
ROA not before: Sat 01 Jan 2022 05:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61094
IP address blocks: 185.111.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53826354 (0x3355332)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 1 05:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad629720651454b124716868a11289abdf6dbae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ea:e2:b6:60:7b:ce:94:ef:7e:43:00:74:8a:
40:d1:87:85:95:c8:d2:e0:1c:a0:3d:96:cb:f3:4f:
16:72:26:ce:b4:b7:31:a4:e3:aa:74:30:c7:10:b2:
39:a8:6a:c7:df:52:f9:be:d3:64:df:68:54:71:92:
21:54:f2:29:67:84:f4:db:44:e0:e2:e1:fe:95:17:
5c:ef:77:f2:81:84:e9:84:99:d0:e3:b5:fa:f9:ae:
aa:70:8b:0f:1f:71:d7:24:db:00:4d:a9:c6:f4:49:
fe:97:8d:f3:42:6c:bd:c7:53:c5:e7:e4:a4:0b:c3:
eb:5c:ea:91:2e:e4:94:f6:56:9b:5e:46:de:ed:6e:
18:38:bb:0d:c6:c8:84:07:34:0d:09:36:84:63:5f:
34:ec:90:93:99:48:96:4b:5f:eb:95:a8:d5:c2:5f:
16:07:b9:22:8e:31:ea:8c:21:d6:c9:42:3f:f5:0d:
30:cd:6f:78:b4:39:f4:5b:4a:f6:34:a9:4d:00:ca:
e6:a1:e1:e0:25:32:c9:65:ea:0f:ee:14:92:5a:72:
11:2c:e9:40:7e:a1:ac:f6:54:bd:c8:12:56:e5:0c:
dd:43:0c:74:30:7c:44:fb:2f:6e:fd:c8:11:aa:07:
ed:7a:b0:9b:e4:10:11:96:ed:58:c3:1d:68:3b:7e:
bf:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:62:97:20:65:14:54:B1:24:71:68:68:A1:12:89:AB:DF:6D:BA:E8
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/rWKXIGUUVLEkcWhooRKJq99tuug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.189.0/24
Signature Algorithm: sha256WithRSAEncryption
15:f4:9b:43:eb:1f:1a:8b:0d:91:58:e0:1a:1a:aa:9a:77:13:
a9:12:41:91:ad:c8:7b:84:fc:3d:40:a4:30:af:98:a9:cf:2e:
f5:cf:44:8f:19:1a:fd:d5:58:27:48:86:7b:04:ea:50:39:a8:
12:74:42:8f:10:44:59:2d:c5:67:d4:b8:bc:69:77:53:22:66:
28:bd:30:9e:c8:51:73:0b:34:30:e6:dc:d2:64:20:a5:10:66:
47:ec:2a:a5:d5:f7:bf:80:8d:58:88:cd:a7:70:b8:f2:f4:96:
a8:4c:1f:dd:c4:77:95:90:0d:b0:c1:05:f2:6b:59:1a:1d:d7:
ee:d6:49:c3:10:ce:a4:36:ca:12:20:80:bf:b3:0f:ca:aa:7a:
f8:82:ad:4a:1e:d2:ff:bc:53:5a:56:42:f3:63:1e:a2:71:df:
3f:fb:fd:20:e3:bd:42:05:05:72:45:20:90:7d:7c:49:6a:df:
d2:89:3b:a4:26:e4:19:5e:52:c2:37:8a:5d:96:32:81:81:a1:
5e:ef:19:b9:f5:79:d5:e3:1b:25:b2:c4:99:ac:83:93:c1:fa:
d6:fb:8c:c3:bd:1e:f6:aa:e1:dd:75:c1:ba:d0:d5:07:a1:9e:
47:c7:0c:07:1f:94:6c:41:22:1c:e1:60:6f:2f:70:eb:78:b6:
56:60:a4:65
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAzVTMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDg1Mzk3ZjI2YTA0NGNhZWY2YTZiNjY5Mjg3MzMxYWE0ZDY4NjQ1MB4XDTIyMDEw
MTA1MDMxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWQ2Mjk3MjA2NTE0
NTRiMTI0NzE2ODY4YTExMjg5YWJkZjZkYmFlODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOTq4rZge86U735DAHSKQNGHhZXI0uAcoD2Wy/NPFnImzrS3
MaTjqnQwxxCyOahqx99S+b7TZN9oVHGSIVTyKWeE9NtE4OLh/pUXXO938oGE6YSZ
0OO1+vmuqnCLDx9x1yTbAE2pxvRJ/peN80JsvcdTxefkpAvD61zqkS7klPZWm15G
3u1uGDi7DcbIhAc0DQk2hGNfNOyQk5lIlktf65Wo1cJfFge5Io4x6owh1slCP/UN
MM1veLQ59FtK9jSpTQDK5qHh4CUyyWXqD+4UklpyESzpQH6hrPZUvcgSVuUM3UMM
dDB8RPsvbv3IEaoH7Xqwm+QQEZbtWMMdaDt+vxkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBStYpcgZRRUsSRxaGihEomr32266DAfBgNVHSMEGDAWgBRghTl/JqBEyu9q
a2aShzMapNaGRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lJVTVmeWFnUk1ydmFtdG1rb2N6R3FUV2hrVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2QvMTEyNWEyLTQ0MzItNDgzZi1hMDBiLTYxNmQ5N2E3N2JkNi8x
L3JXS1hJR1VVVkxFa2NXaG9vUktKcTk5dHV1Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Qv
MTEyNWEyLTQ0MzItNDgzZi1hMDBiLTYxNmQ5N2E3N2JkNi8xL1lJVTVmeWFnUk1y
dmFtdG1rb2N6R3FUV2hrVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlvvTANBgkqhkiG9w0BAQsFAAOC
AQEAFfSbQ+sfGosNkVjgGhqqmncTqRJBka3Ie4T8PUCkMK+Yqc8u9c9Ejxka/dVY
J0iGewTqUDmoEnRCjxBEWS3FZ9S4vGl3UyJmKL0wnshRcws0MObc0mQgpRBmR+wq
pdX3v4CNWIjNp3C48vSWqEwf3cR3lZANsMEF8mtZGh3X7tZJwxDOpDbKEiCAv7MP
yqp6+IKtSh7S/7xTWlZC82MeonHfP/v9IOO9QgUFckUgkH18SWrf0ok7pCbkGV5S
wjeKXZYygYGhXu8ZufV51eMbJbLEmayDk8H61vuMw70e9qrh3XXButDVB6GeR8cM
Bx+UbEEiHOFgby9w63i2VmCkZQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:14 2025 by rpki-client