Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/c75011-e2ba-4bf9-b4bd-ba350fddfb7b/1/iGmyd2krFFJnBFwOLdcvH-PD26k.roa
File: iGmyd2krFFJnBFwOLdcvH-PD26k.roa (raw, json)
Hash identifier: 9BvsNF/9lHZk4Aa70to35RekBzMlzMSHb71pUeJ67G0=
Subject key identifier: 88:69:B2:77:69:2B:14:52:67:04:5C:0E:2D:D7:2F:1F:E3:C3:DB:A9
Certificate issuer: /CN=f399049ef929fa36f8d6d1b0d9a9dd0710657cdb
Certificate serial: 01856FCB8EDEB1F753CC2B6E6874688ECFE5
Authority key identifier: F3:99:04:9E:F9:29:FA:36:F8:D6:D1:B0:D9:A9:DD:07:10:65:7C:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/85kEnvkp-jb41tGw2andBxBlfNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/c75011-e2ba-4bf9-b4bd-ba350fddfb7b/1/iGmyd2krFFJnBFwOLdcvH-PD26k.roa
Signing time: Mon 02 Jan 2023 00:04:49 +0000
ROA not before: Mon 02 Jan 2023 00:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 176.97.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8e:de:b1:f7:53:cc:2b:6e:68:74:68:8e:cf:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f399049ef929fa36f8d6d1b0d9a9dd0710657cdb
Validity
Not Before: Jan 2 00:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8869b277692b145267045c0e2dd72f1fe3c3dba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f1:f3:f4:97:a8:51:a1:3b:e4:cc:ca:89:a9:
a4:9c:df:5f:66:f9:d4:b1:95:31:ab:39:b8:2b:03:
23:4d:c2:55:e5:21:91:1b:83:d1:fd:e2:7c:78:71:
47:16:c6:52:47:a5:2f:a4:cd:ba:a1:09:04:54:1b:
d9:14:01:ce:73:02:e2:d4:c3:97:2d:53:7d:58:32:
c5:ac:36:12:05:85:b8:43:57:d7:04:09:22:f8:39:
ed:9f:47:e2:60:58:bb:4e:37:7f:41:d2:b9:0e:b9:
78:54:a0:23:93:a8:1b:09:8b:7d:80:a2:4f:8f:b6:
c7:34:8e:da:6f:5a:58:13:79:fd:c8:0e:ce:54:6e:
77:05:37:1b:8f:4a:4c:eb:55:a3:be:bd:a5:8b:d8:
db:f4:28:47:b2:8c:24:dd:60:71:be:98:56:69:7e:
92:ea:31:6f:c6:b9:c6:82:7b:0a:c0:58:d9:02:4f:
a2:12:5c:d2:d7:3c:b5:aa:87:06:5c:a5:e0:e6:32:
69:ed:e7:1a:a7:3b:88:68:28:61:9b:18:a9:2c:b1:
25:ed:11:9b:ac:4f:7e:c6:1e:f5:d1:08:e2:eb:c3:
13:c1:6d:9e:69:37:cb:bc:04:27:77:e0:81:65:e7:
30:c6:7a:30:45:c2:18:c5:48:87:0d:29:3c:3b:9b:
c1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:69:B2:77:69:2B:14:52:67:04:5C:0E:2D:D7:2F:1F:E3:C3:DB:A9
X509v3 Authority Key Identifier:
keyid:F3:99:04:9E:F9:29:FA:36:F8:D6:D1:B0:D9:A9:DD:07:10:65:7C:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/85kEnvkp-jb41tGw2andBxBlfNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c75011-e2ba-4bf9-b4bd-ba350fddfb7b/1/iGmyd2krFFJnBFwOLdcvH-PD26k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c75011-e2ba-4bf9-b4bd-ba350fddfb7b/1/85kEnvkp-jb41tGw2andBxBlfNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.208.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b7:55:17:41:37:48:f6:8a:13:85:5e:8c:b9:85:04:7b:f4:
09:8e:c0:0c:4b:60:b6:a8:ff:b2:d8:5b:85:f5:36:c0:5e:22:
92:13:2d:ad:85:90:46:28:95:9e:c9:df:7c:5a:df:f1:e6:70:
7c:b9:8b:2b:3d:a3:49:5b:76:cc:15:76:04:af:79:dc:f1:2c:
02:e3:eb:85:ae:62:db:68:c3:ee:96:1f:58:89:6e:c6:b8:6d:
e3:b7:bd:aa:a1:3d:76:44:3e:98:d6:80:08:e2:b9:3a:95:90:
db:0c:52:6c:bf:b4:bc:f2:1c:b0:75:2c:6c:19:52:29:da:c0:
7e:56:f7:b9:29:17:04:69:7e:95:54:16:d4:8f:0c:b2:22:23:
7e:c4:4f:8f:97:1c:57:d3:b9:d4:09:2c:53:d3:56:6c:bd:63:
bc:69:ba:1f:19:88:c8:87:c3:b9:17:60:46:a9:88:d8:cf:3d:
5f:f3:29:34:0c:c3:1f:51:5c:a8:52:06:12:f1:18:d9:5d:a3:
a1:74:54:e7:a3:9c:bc:5e:14:7e:1c:54:60:66:00:14:6e:1a:
91:ab:8b:6c:7a:3f:ca:b4:7c:94:dc:0b:0e:f3:d3:e8:c8:01:
81:bf:46:2b:f3:33:8c:95:93:d1:ff:c4:ca:99:4b:19:19:20:
98:07:36:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvy47esfdTzCtuaHRojs/lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzOTkwNDllZjkyOWZhMzZmOGQ2ZDFiMGQ5YTlkZDA3MTA2
NTdjZGIwHhcNMjMwMTAyMDAwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODY5YjI3NzY5MmIxNDUyNjcwNDVjMGUyZGQ3MmYxZmUzYzNkYmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3vHz9JeoUaE75MzKiamknN9fZvnU
sZUxqzm4KwMjTcJV5SGRG4PR/eJ8eHFHFsZSR6UvpM26oQkEVBvZFAHOcwLi1MOX
LVN9WDLFrDYSBYW4Q1fXBAki+Dntn0fiYFi7Tjd/QdK5Drl4VKAjk6gbCYt9gKJP
j7bHNI7ab1pYE3n9yA7OVG53BTcbj0pM61Wjvr2li9jb9ChHsowk3WBxvphWaX6S
6jFvxrnGgnsKwFjZAk+iElzS1zy1qocGXKXg5jJp7ecapzuIaChhmxipLLEl7RGb
rE9+xh710Qji68MTwW2eaTfLvAQnd+CBZecwxnowRcIYxUiHDSk8O5vBlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIhpsndpKxRSZwRcDi3XLx/jw9upMB8GA1UdIwQY
MBaAFPOZBJ75Kfo2+NbRsNmp3QcQZXzbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvODVrRW52a3AtamI0MXRHdzJhbmRCeEJsZk5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9jNzUwMTEtZTJiYS00YmY5LWI0YmQt
YmEzNTBmZGRmYjdiLzEvaUdteWQya3JGRkpuQkZ3T0xkY3ZILVBEMjZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9jNzUwMTEtZTJiYS00YmY5LWI0YmQtYmEzNTBmZGRmYjdi
LzEvODVrRW52a3AtamI0MXRHdzJhbmRCeEJsZk5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGHQMA0G
CSqGSIb3DQEBCwUAA4IBAQBet1UXQTdI9ooThV6MuYUEe/QJjsAMS2C2qP+y2FuF
9TbAXiKSEy2thZBGKJWeyd98Wt/x5nB8uYsrPaNJW3bMFXYEr3nc8SwC4+uFrmLb
aMPulh9YiW7GuG3jt72qoT12RD6Y1oAI4rk6lZDbDFJsv7S88hywdSxsGVIp2sB+
Vve5KRcEaX6VVBbUjwyyIiN+xE+PlxxX07nUCSxT01ZsvWO8abofGYjIh8O5F2BG
qYjYzz1f8yk0DMMfUVyoUgYS8RjZXaOhdFTno5y8XhR+HFRgZgAUbhqRq4tsej/K
tHyU3AsO89PoyAGBv0Yr8zOMlZPR/8TKmUsZGSCYBzYB
-----END CERTIFICATE-----
Generated at Fri Oct 27 15:02:52 2023 by rpki-client on console-fra.rpki-client.org