Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/f6895e-e60d-408b-9a98-b180f1fdbb2a/1/n8DF5WXDD6YmNrLFMS6HF0jkkHU.roa
File: n8DF5WXDD6YmNrLFMS6HF0jkkHU.roa (raw, json)
Hash identifier: Bl27FPs8/tPinebjuFDkekoiZ1ZssH0VskUQN2WmO60=
Subject key identifier: 9F:C0:C5:E5:65:C3:0F:A6:26:36:B2:C5:31:2E:87:17:48:E4:90:75
Certificate issuer: /CN=bf57c5f8a6d8b9d170739408491029044edebdc9
Certificate serial: 018A5113763313E21876A034218C9400E642
Authority key identifier: BF:57:C5:F8:A6:D8:B9:D1:70:73:94:08:49:10:29:04:4E:DE:BD:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1fF-KbYudFwc5QISRApBE7evck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/f6895e-e60d-408b-9a98-b180f1fdbb2a/1/n8DF5WXDD6YmNrLFMS6HF0jkkHU.roa
Signing time: Fri 01 Sep 2023 14:09:04 +0000
ROA not before: Fri 01 Sep 2023 14:09:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203460
IP address blocks: 185.115.60.0/22 maxlen: 22
2a06:7580::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:51:13:76:33:13:e2:18:76:a0:34:21:8c:94:00:e6:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf57c5f8a6d8b9d170739408491029044edebdc9
Validity
Not Before: Sep 1 14:09:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fc0c5e565c30fa62636b2c5312e871748e49075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:fd:68:8c:4d:10:0a:19:85:98:01:2a:6c:
ee:c0:2d:fc:90:38:75:a2:82:c7:e6:af:2f:27:b6:
22:b4:c4:c3:cd:2e:72:44:67:8b:a0:47:d4:00:34:
0a:be:e9:02:aa:5c:b0:bb:ac:0d:3b:e5:24:e1:9d:
51:ba:17:73:b3:73:64:b5:4e:38:0b:cc:03:94:0c:
ae:c3:74:33:40:76:a5:9a:3f:0b:1a:04:42:8b:c2:
95:d7:2c:1e:ad:a5:2d:82:87:09:cc:0f:e9:57:53:
a9:ce:84:bc:1d:87:2a:94:0d:06:f0:10:e4:b1:93:
87:5b:ae:6e:d9:57:0c:c5:de:5f:07:58:c7:3a:d2:
25:37:86:25:d7:87:c3:34:7c:18:b4:b4:dd:58:38:
bf:aa:60:4c:61:88:76:81:ad:a9:dd:6d:6a:e8:7d:
86:35:2e:76:0d:05:d3:85:dc:21:07:dd:92:27:9c:
f1:3f:7e:80:15:c1:4c:cc:b6:a9:30:fb:60:56:a2:
9e:80:b3:da:e4:5b:3a:20:b9:35:70:df:43:1d:a9:
2d:85:c0:40:12:77:f4:6d:a1:72:39:64:ba:1c:1d:
35:ff:f4:45:5a:f0:06:c2:b5:50:36:24:6b:96:29:
9b:1a:a8:80:4d:70:c6:34:9d:d7:51:b9:20:ec:33:
a0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:C0:C5:E5:65:C3:0F:A6:26:36:B2:C5:31:2E:87:17:48:E4:90:75
X509v3 Authority Key Identifier:
keyid:BF:57:C5:F8:A6:D8:B9:D1:70:73:94:08:49:10:29:04:4E:DE:BD:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1fF-KbYudFwc5QISRApBE7evck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f6895e-e60d-408b-9a98-b180f1fdbb2a/1/n8DF5WXDD6YmNrLFMS6HF0jkkHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f6895e-e60d-408b-9a98-b180f1fdbb2a/1/v1fF-KbYudFwc5QISRApBE7evck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.60.0/22
IPv6:
2a06:7580::/29
Signature Algorithm: sha256WithRSAEncryption
41:a5:f6:e8:ff:15:3c:fb:f0:f8:d9:61:1e:d9:43:f4:3d:a3:
54:6d:08:59:dc:80:2e:87:05:54:a6:e3:87:12:85:2f:6a:07:
36:ab:e3:e3:d8:4e:fc:a0:44:20:cb:ef:6a:9d:19:62:aa:73:
52:69:e0:dd:be:be:a8:ce:8e:28:e9:69:f9:42:e8:1e:45:a7:
36:7f:83:57:c0:33:d7:84:21:09:39:c1:1c:ee:a5:d7:77:fa:
e3:c8:75:35:72:67:9c:2c:40:32:bd:6e:8d:58:2c:fa:92:46:
8a:6d:40:da:9f:72:a8:a6:91:3b:69:9b:a1:2c:0b:10:af:37:
d5:7f:0c:29:cd:de:af:ac:3e:0f:86:47:aa:92:cb:07:82:66:
81:1f:08:29:55:5c:5a:b8:42:ff:96:55:e1:ab:ad:1b:e1:62:
ac:b1:bc:45:60:6a:c0:34:bd:3f:3d:ca:61:8f:59:2c:2e:cc:
e1:4f:a7:1e:a5:44:98:a2:2c:ca:e8:40:a1:48:be:c3:aa:a8:
a5:77:d0:da:74:48:8f:6d:40:23:f1:80:06:a6:b7:a8:c0:29:
e2:aa:7a:25:e1:9c:e1:36:8d:bb:43:56:11:73:14:eb:7f:42:
0b:55:83:18:30:43:a5:d3:f2:7e:d0:87:d4:41:4a:c9:dc:22:
81:48:67:da
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYpRE3YzE+IYdqA0IYyUAOZCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmNTdjNWY4YTZkOGI5ZDE3MDczOTQwODQ5MTAyOTA0NGVk
ZWJkYzkwHhcNMjMwOTAxMTQwOTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmMwYzVlNTY1YzMwZmE2MjYzNmIyYzUzMTJlODcxNzQ4ZTQ5MDc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTX9aIxNEAoZhZgBKmzuwC38kDh1
ooLH5q8vJ7YitMTDzS5yRGeLoEfUADQKvukCqlywu6wNO+Uk4Z1Ruhdzs3NktU44
C8wDlAyuw3QzQHalmj8LGgRCi8KV1yweraUtgocJzA/pV1OpzoS8HYcqlA0G8BDk
sZOHW65u2VcMxd5fB1jHOtIlN4Yl14fDNHwYtLTdWDi/qmBMYYh2ga2p3W1q6H2G
NS52DQXThdwhB92SJ5zxP36AFcFMzLapMPtgVqKegLPa5Fs6ILk1cN9DHakthcBA
Enf0baFyOWS6HB01//RFWvAGwrVQNiRrlimbGqiATXDGNJ3XUbkg7DOguQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFJ/AxeVlww+mJjayxTEuhxdI5JB1MB8GA1UdIwQY
MBaAFL9Xxfim2LnRcHOUCEkQKQRO3r3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjFmRi1LYll1ZEZ3YzVRSVNSQXBCRTdldmNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9mNjg5NWUtZTYwZC00MDhiLTlhOTgt
YjE4MGYxZmRiYjJhLzEvbjhERjVXWERENlltTnJMRk1TNkhGMGpra0hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9mNjg5NWUtZTYwZC00MDhiLTlhOTgtYjE4MGYxZmRiYjJh
LzEvdjFmRi1LYll1ZEZ3YzVRSVNSQXBCRTdldmNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXM8MA0E
AgACMAcDBQMqBnWAMA0GCSqGSIb3DQEBCwUAA4IBAQBBpfbo/xU8+/D42WEe2UP0
PaNUbQhZ3IAuhwVUpuOHEoUvagc2q+Pj2E78oEQgy+9qnRliqnNSaeDdvr6ozo4o
6Wn5QugeRac2f4NXwDPXhCEJOcEc7qXXd/rjyHU1cmecLEAyvW6NWCz6kkaKbUDa
n3KoppE7aZuhLAsQrzfVfwwpzd6vrD4PhkeqkssHgmaBHwgpVVxauEL/llXhq60b
4WKssbxFYGrANL0/Pcphj1ksLszhT6cepUSYoizK6EChSL7Dqqild9DadEiPbUAj
8YAGpreowCniqnol4ZzhNo27Q1YRcxTrf0ILVYMYMEOl0/J+0IfUQUrJ3CKBSGfa
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:19 2024 by rpki-client on console-fra.rpki-client.org