Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/dAIjUwsO5zcCkb68Z-FcwrnWMCw.roa
File: dAIjUwsO5zcCkb68Z-FcwrnWMCw.roa (raw, json)
Hash identifier: WVIg9CGVc62xwbSDrjQvQ3Utvw5OV1BU/9vm6kvTnyI=
Subject key identifier: 74:02:23:53:0B:0E:E7:37:02:91:BE:BC:67:E1:5C:C2:B9:D6:30:2C
Certificate issuer: /CN=4bdaf157f33b5fde210899a954834dc726d34a6b
Certificate serial: 01857082BC4C166874B1B34F7AE93777F633
Authority key identifier: 4B:DA:F1:57:F3:3B:5F:DE:21:08:99:A9:54:83:4D:C7:26:D3:4A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S9rxV_M7X94hCJmpVINNxybTSms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/dAIjUwsO5zcCkb68Z-FcwrnWMCw.roa
Signing time: Mon 02 Jan 2023 03:24:54 +0000
ROA not before: Mon 02 Jan 2023 03:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3212
IP address blocks: 193.111.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:bc:4c:16:68:74:b1:b3:4f:7a:e9:37:77:f6:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bdaf157f33b5fde210899a954834dc726d34a6b
Validity
Not Before: Jan 2 03:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=740223530b0ee7370291bebc67e15cc2b9d6302c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9d:57:19:84:04:d5:e5:11:9a:93:d5:1c:85:
bc:b3:ce:79:23:44:ad:b2:38:69:c8:a5:83:74:d6:
cf:fd:d1:cf:30:1d:36:96:c2:c2:d6:09:64:91:3e:
57:ce:cd:67:f3:a7:25:2d:df:1f:7d:2e:b9:c5:48:
e8:8c:1d:b8:79:7b:94:18:52:8e:71:b7:03:86:8b:
fc:79:8f:44:a2:0c:22:0d:c1:42:47:8b:f9:b4:1e:
ae:cd:be:36:2d:0a:8e:33:13:5c:d5:56:87:b2:cc:
80:b0:97:42:4e:e9:66:2a:d7:ab:42:8d:5c:58:33:
fb:81:0b:a2:d0:87:c6:0f:75:48:83:3a:39:57:00:
77:05:66:2e:23:1e:67:17:a7:00:6d:fa:f1:6d:61:
25:7c:2b:e5:c9:c1:d1:34:40:f1:54:e8:c1:5f:5e:
c5:a8:ad:27:4f:6b:5b:a9:1c:3f:89:54:fd:39:5d:
6a:c2:c3:65:22:30:ca:74:d3:f4:30:86:7a:c7:a5:
ad:f5:3a:b5:c9:cd:0d:c5:0c:05:c6:9d:50:5d:bf:
ab:60:42:fa:65:d2:ca:24:44:c8:83:b0:1b:a7:86:
f2:a0:4c:e5:2a:c4:9c:f3:43:83:b3:8e:45:92:6c:
fc:19:57:b0:8f:91:f9:97:e0:34:b5:9b:1c:c1:19:
df:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:02:23:53:0B:0E:E7:37:02:91:BE:BC:67:E1:5C:C2:B9:D6:30:2C
X509v3 Authority Key Identifier:
keyid:4B:DA:F1:57:F3:3B:5F:DE:21:08:99:A9:54:83:4D:C7:26:D3:4A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S9rxV_M7X94hCJmpVINNxybTSms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/dAIjUwsO5zcCkb68Z-FcwrnWMCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/511ae5-2b40-48a4-93fb-cc14252c0fa1/1/S9rxV_M7X94hCJmpVINNxybTSms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:f2:3d:54:d8:68:f3:de:8d:6b:76:cf:cb:7d:21:86:1a:e0:
b3:89:3e:73:dd:f9:60:75:ab:02:8a:ef:b1:2e:13:6a:aa:be:
74:e9:0a:f6:94:40:b5:fc:2d:c6:4d:0e:91:b8:30:9d:68:88:
d4:6b:1d:1b:d5:d5:87:00:da:d0:08:35:cd:e9:09:42:47:f4:
7d:8e:df:6a:0d:4d:a9:8e:b5:dc:7c:a0:45:69:c4:9e:a9:3b:
52:dc:6d:21:5d:ad:db:ba:90:e9:ce:a1:9f:b5:e7:3c:0e:d3:
cf:d1:98:e3:fe:46:0b:f0:71:86:ca:ed:a6:28:05:70:13:a1:
bb:e8:26:60:0a:3d:e5:f0:b3:4e:5f:53:73:1b:2c:0f:72:b4:
5f:6c:9a:3b:33:17:5c:94:c1:3a:49:45:6e:3e:18:c4:1e:ab:
1e:5a:39:b4:46:a8:36:d1:fb:8f:5d:be:35:b3:03:2a:3f:12:
9e:1e:04:aa:f2:9b:2a:cb:03:82:e8:ae:0d:08:62:bd:dc:0a:
ce:1f:3a:ea:20:8c:74:83:cf:7b:64:f8:30:05:07:6c:8b:c1:
fa:94:fb:f1:18:14:11:80:b7:2d:9a:42:68:af:66:5f:9a:9a:
29:7a:d4:97:45:b4:e5:60:5a:84:72:6b:04:ad:f7:1a:02:91:
0f:35:d3:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgrxMFmh0sbNPeuk3d/YzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiZGFmMTU3ZjMzYjVmZGUyMTA4OTlhOTU0ODM0ZGM3MjZk
MzRhNmIwHhcNMjMwMTAyMDMyNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDAyMjM1MzBiMGVlNzM3MDI5MWJlYmM2N2UxNWNjMmI5ZDYzMDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJ1XGYQE1eURmpPVHIW8s855I0St
sjhpyKWDdNbP/dHPMB02lsLC1glkkT5Xzs1n86clLd8ffS65xUjojB24eXuUGFKO
cbcDhov8eY9EogwiDcFCR4v5tB6uzb42LQqOMxNc1VaHssyAsJdCTulmKterQo1c
WDP7gQui0IfGD3VIgzo5VwB3BWYuIx5nF6cAbfrxbWElfCvlycHRNEDxVOjBX17F
qK0nT2tbqRw/iVT9OV1qwsNlIjDKdNP0MIZ6x6Wt9Tq1yc0NxQwFxp1QXb+rYEL6
ZdLKJETIg7Abp4byoEzlKsSc80ODs45Fkmz8GVewj5H5l+A0tZscwRnf1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQCI1MLDuc3ApG+vGfhXMK51jAsMB8GA1UdIwQY
MBaAFEva8VfzO1/eIQiZqVSDTccm00prMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzlyeFZfTTdYOTRoQ0ptcFZJTk54eWJUU21zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC81MTFhZTUtMmI0MC00OGE0LTkzZmIt
Y2MxNDI1MmMwZmExLzEvZEFJalV3c081emNDa2I2OFotRmN3cm5XTUN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC81MTFhZTUtMmI0MC00OGE0LTkzZmItY2MxNDI1MmMwZmEx
LzEvUzlyeFZfTTdYOTRoQ0ptcFZJTk54eWJUU21zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwW/cMA0G
CSqGSIb3DQEBCwUAA4IBAQCl8j1U2Gjz3o1rds/LfSGGGuCziT5z3flgdasCiu+x
LhNqqr506Qr2lEC1/C3GTQ6RuDCdaIjUax0b1dWHANrQCDXN6QlCR/R9jt9qDU2p
jrXcfKBFacSeqTtS3G0hXa3bupDpzqGftec8DtPP0Zjj/kYL8HGGyu2mKAVwE6G7
6CZgCj3l8LNOX1NzGywPcrRfbJo7MxdclME6SUVuPhjEHqseWjm0Rqg20fuPXb41
swMqPxKeHgSq8psqywOC6K4NCGK93ArOHzrqIIx0g897ZPgwBQdsi8H6lPvxGBQR
gLctmkJor2ZfmpopetSXRbTlYFqEcmsErfcaApEPNdMa
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org