Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/rP0Lwe--uFTun0OYu84UpPscbiE.roa
File: rP0Lwe--uFTun0OYu84UpPscbiE.roa (raw, json)
Hash identifier: 9EWYT5h+mXR7B4ulU9M0qZNw5L84lodgCkVFwYeM3XE=
Subject key identifier: AC:FD:0B:C1:EF:BE:B8:54:EE:9F:43:98:BB:CE:14:A4:FB:1C:6E:21
Certificate issuer: /CN=44046a683ab92b41819977245ce759e267a5036a
Certificate serial: 018F441C9C79441EE7171553041AEAB3CC63
Authority key identifier: 44:04:6A:68:3A:B9:2B:41:81:99:77:24:5C:E7:59:E2:67:A5:03:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RARqaDq5K0GBmXckXOdZ4melA2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/rP0Lwe--uFTun0OYu84UpPscbiE.roa
Signing time: Sat 04 May 2024 14:57:56 +0000
ROA not before: Sat 04 May 2024 14:57:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.156.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:44:1c:9c:79:44:1e:e7:17:15:53:04:1a:ea:b3:cc:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44046a683ab92b41819977245ce759e267a5036a
Validity
Not Before: May 4 14:57:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=acfd0bc1efbeb854ee9f4398bbce14a4fb1c6e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9e:0c:fe:93:14:d5:77:bc:86:fa:4b:d4:42:
6b:f0:d8:19:28:5c:b1:8b:ec:2b:7b:dd:6f:9a:b6:
d3:3a:49:f6:b3:ee:6d:ee:6d:ed:d1:7b:5b:54:10:
f0:ad:6a:1a:27:ed:e3:02:35:37:18:68:22:be:a2:
65:ce:2c:ee:f0:a4:58:e4:37:fb:88:49:45:a5:e2:
1b:aa:66:62:d9:1e:0f:00:17:27:c7:58:ae:c4:01:
47:64:08:11:3a:cd:f8:43:99:ac:96:e4:03:1b:4d:
e4:9e:8b:50:b8:f5:17:06:f8:5e:06:5a:25:d3:53:
41:fe:c6:01:89:ff:c1:32:ed:ac:6d:f1:a4:5b:75:
d0:be:07:5c:c6:c5:17:b9:65:ca:b7:64:c4:03:5d:
50:9c:03:ae:aa:93:1a:ee:06:04:5d:44:c2:5e:b9:
0b:82:e1:c6:71:e4:ed:66:2a:db:ee:42:1e:9a:0b:
6c:b2:26:fb:3f:90:f6:55:d3:a1:8d:31:3e:6a:b6:
88:6a:77:e3:85:05:24:3e:08:bf:6e:27:29:70:48:
86:a6:07:4e:e3:74:92:a9:e0:dd:66:b3:35:7e:50:
ec:62:b5:c2:ef:0f:4a:38:7e:8a:01:b4:53:a2:a5:
97:34:9a:50:20:15:b5:7d:bb:ac:9e:b8:c1:e2:e4:
04:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FD:0B:C1:EF:BE:B8:54:EE:9F:43:98:BB:CE:14:A4:FB:1C:6E:21
X509v3 Authority Key Identifier:
keyid:44:04:6A:68:3A:B9:2B:41:81:99:77:24:5C:E7:59:E2:67:A5:03:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RARqaDq5K0GBmXckXOdZ4melA2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/rP0Lwe--uFTun0OYu84UpPscbiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/RARqaDq5K0GBmXckXOdZ4melA2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.76.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b4:0e:ce:a6:9b:9a:17:e8:e8:4e:eb:78:f5:09:44:bb:38:
2a:2d:9e:3c:cc:2c:26:2d:f8:08:81:ee:ca:08:58:08:ba:f3:
77:cb:26:21:6c:52:a6:61:0b:9b:77:cc:17:97:a1:66:7e:7f:
6e:12:3b:96:33:b8:5e:bb:de:f1:21:ba:f8:e2:36:6f:51:5b:
02:ac:b3:4c:0e:2f:3b:b1:30:ab:1d:ee:05:62:1e:1f:d9:0b:
db:31:d2:10:05:d9:70:75:e3:52:bd:da:88:64:94:f9:d3:ae:
fb:e4:30:20:28:5f:d4:fd:e8:d3:bc:9a:04:53:44:c7:ed:dc:
02:34:cc:26:e2:59:b6:dc:3d:11:35:ad:21:f5:bb:c8:77:0e:
35:e2:ee:d6:71:32:f4:d8:74:fb:95:fe:95:38:f0:84:fb:34:
13:1a:01:63:a4:98:c6:c3:c3:a5:0d:dc:66:3e:d5:e1:e1:da:
5b:e9:92:74:57:99:09:09:28:96:88:c8:e6:13:99:93:4a:fe:
64:f4:ea:76:37:07:d3:70:d6:1a:55:43:d3:23:a4:5a:6a:da:
ec:58:5e:f0:eb:12:1e:5b:c0:c6:71:c7:3b:5c:8b:a4:a4:2f:
f0:95:ee:88:dd:55:0f:da:3e:3e:1c:a6:e0:c3:c8:ba:1c:b8:
76:e4:1a:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY9EHJx5RB7nFxVTBBrqs8xjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0MDQ2YTY4M2FiOTJiNDE4MTk5NzcyNDVjZTc1OWUyNjdh
NTAzNmEwHhcNMjQwNTA0MTQ1NzU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhY2ZkMGJjMWVmYmViODU0ZWU5ZjQzOThiYmNlMTRhNGZiMWM2ZTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwp4M/pMU1Xe8hvpL1EJr8NgZKFyx
i+wre91vmrbTOkn2s+5t7m3t0XtbVBDwrWoaJ+3jAjU3GGgivqJlzizu8KRY5Df7
iElFpeIbqmZi2R4PABcnx1iuxAFHZAgROs34Q5msluQDG03knotQuPUXBvheBlol
01NB/sYBif/BMu2sbfGkW3XQvgdcxsUXuWXKt2TEA11QnAOuqpMa7gYEXUTCXrkL
guHGceTtZirb7kIemgtssib7P5D2VdOhjTE+araIanfjhQUkPgi/bicpcEiGpgdO
43SSqeDdZrM1flDsYrXC7w9KOH6KAbRToqWXNJpQIBW1fbusnrjB4uQEZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKz9C8HvvrhU7p9DmLvOFKT7HG4hMB8GA1UdIwQY
MBaAFEQEamg6uStBgZl3JFznWeJnpQNqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkFScWFEcTVLMEdCbVhja1hPZFo0bWVsQTJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC80OWRiNmMtN2Q1MS00YTRkLWJjMjkt
ODQxMmJlZjU2ZjIzLzEvclAwTHdlLS11RlR1bjBPWXU4NFVwUHNjYmlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC80OWRiNmMtN2Q1MS00YTRkLWJjMjktODQxMmJlZjU2ZjIz
LzEvUkFScWFEcTVLMEdCbVhja1hPZFo0bWVsQTJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpxMMA0G
CSqGSIb3DQEBCwUAA4IBAQBFtA7OppuaF+joTut49QlEuzgqLZ48zCwmLfgIge7K
CFgIuvN3yyYhbFKmYQubd8wXl6Fmfn9uEjuWM7heu97xIbr44jZvUVsCrLNMDi87
sTCrHe4FYh4f2QvbMdIQBdlwdeNSvdqIZJT506775DAgKF/U/ejTvJoEU0TH7dwC
NMwm4lm23D0RNa0h9bvIdw414u7WcTL02HT7lf6VOPCE+zQTGgFjpJjGw8OlDdxm
PtXh4dpb6ZJ0V5kJCSiWiMjmE5mTSv5k9Op2NwfTcNYaVUPTI6RaatrsWF7w6xIe
W8DGccc7XIukpC/wle6I3VUP2j4+HKbgw8i6HLh25BpS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:22 2024 by rpki-client on console-fra.rpki-client.org