Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/xVKf1dg_LaLHoBarddPF7yg4x_4.roa
File: xVKf1dg_LaLHoBarddPF7yg4x_4.roa (raw, json)
Hash identifier: 9eGTCv2Qa+LWhIuk0pMjflsPRp1zi5wZvnuG9ZLbCBg=
Subject key identifier: C5:52:9F:D5:D8:3F:2D:A2:C7:A0:16:AB:75:D3:C5:EF:28:38:C7:FE
Certificate issuer: /CN=c9a36fdfa41c7469ce73dc8bbece9462dcb8c823
Certificate serial: 01865C2386D202A91EABCA753FE91F0A776B
Authority key identifier: C9:A3:6F:DF:A4:1C:74:69:CE:73:DC:8B:BE:CE:94:62:DC:B8:C8:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaNv36QcdGnOc9yLvs6UYty4yCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/xVKf1dg_LaLHoBarddPF7yg4x_4.roa
Signing time: Thu 16 Feb 2023 21:31:17 +0000
ROA not before: Thu 16 Feb 2023 21:31:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 194.48.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5c:23:86:d2:02:a9:1e:ab:ca:75:3f:e9:1f:0a:77:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a36fdfa41c7469ce73dc8bbece9462dcb8c823
Validity
Not Before: Feb 16 21:31:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5529fd5d83f2da2c7a016ab75d3c5ef2838c7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:01:ea:0d:1f:af:58:eb:b7:14:1c:52:e9:
eb:88:5b:f7:7b:88:79:d4:28:05:ef:d9:3e:e3:e2:
5e:de:68:32:5b:4e:16:67:63:41:a2:66:76:74:63:
4c:b9:05:9f:6c:c8:da:98:ce:4b:00:2e:6d:35:29:
10:13:ac:dd:2a:15:23:df:ad:dd:04:a8:6a:02:59:
26:71:2e:dc:2a:e8:1c:bf:60:9a:bf:d5:8b:ef:48:
f6:cd:6e:c8:bc:88:4b:4f:34:ff:78:7a:ac:2d:37:
db:b0:68:ea:09:42:7b:d3:1e:5c:23:10:30:b1:ae:
59:00:a9:d4:e1:f9:cb:b5:c9:5a:d8:5d:ff:9a:75:
85:7a:5b:6c:c8:81:d1:a8:67:b5:5f:f7:d2:8d:7d:
d0:90:28:3f:af:d9:78:a6:c7:8d:a9:c5:8b:60:80:
89:07:ab:d0:3c:d4:f2:4e:31:45:91:44:f2:c9:9f:
06:dc:20:dc:77:ce:50:4d:3a:5d:8d:2c:71:ef:33:
f5:c7:f2:16:f8:b6:9d:54:31:de:eb:28:9d:e8:83:
3e:26:16:65:0f:38:9f:9e:4d:a4:a9:32:83:10:bb:
e1:db:9d:c4:bd:ec:d7:77:04:2a:20:f6:db:3b:87:
c0:39:db:8b:c6:6c:33:04:0b:dc:e6:b2:e1:bf:a4:
3d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:52:9F:D5:D8:3F:2D:A2:C7:A0:16:AB:75:D3:C5:EF:28:38:C7:FE
X509v3 Authority Key Identifier:
keyid:C9:A3:6F:DF:A4:1C:74:69:CE:73:DC:8B:BE:CE:94:62:DC:B8:C8:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaNv36QcdGnOc9yLvs6UYty4yCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/xVKf1dg_LaLHoBarddPF7yg4x_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/yaNv36QcdGnOc9yLvs6UYty4yCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.100.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:b7:f4:4b:dc:6d:88:8d:eb:33:e4:02:f8:c1:37:7f:34:eb:
fb:b1:9e:10:5d:9f:00:ae:09:f1:e3:f0:25:81:b4:b3:99:67:
cb:f2:c2:75:c3:6e:e1:4a:8a:08:f4:de:81:32:75:4e:18:97:
f8:8e:c5:e4:2e:8c:2a:99:96:a9:9f:66:df:34:76:2b:f3:02:
d2:fe:98:ae:06:14:62:0f:a1:b6:f2:7b:f0:8c:6f:c3:eb:4d:
56:b9:c5:80:85:fc:23:26:0f:ca:a7:22:f5:15:bf:16:9e:da:
5c:cc:53:3f:ba:cf:52:50:b3:88:08:60:8b:fe:28:49:ae:61:
c2:a2:59:24:9f:3c:99:7b:f1:d2:0b:09:9f:ed:de:3a:f8:a4:
77:b4:e9:18:92:7d:db:a1:1b:95:04:fc:11:16:e3:bb:f3:68:
72:8a:29:57:8f:3c:12:a5:22:b8:c1:95:5d:ec:fe:ae:7d:39:
f4:08:33:09:30:45:91:11:35:49:b0:a7:1d:79:fd:e8:43:b7:
6a:f1:ce:89:00:eb:d9:31:df:1a:e1:aa:05:b5:58:8a:15:33:
ac:a8:71:d4:ee:32:c4:d1:12:14:77:21:21:88:c0:2e:04:6a:
d2:00:a0:dc:2b:29:bb:7f:61:dc:c8:47:17:a3:6c:ae:92:fd:
ba:34:08:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZcI4bSAqkeq8p1P+kfCndrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5YTM2ZmRmYTQxYzc0NjljZTczZGM4YmJlY2U5NDYyZGNi
OGM4MjMwHhcNMjMwMjE2MjEzMTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTUyOWZkNWQ4M2YyZGEyYzdhMDE2YWI3NWQzYzVlZjI4MzhjN2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/IB6g0fr1jrtxQcUunriFv3e4h5
1CgF79k+4+Je3mgyW04WZ2NBomZ2dGNMuQWfbMjamM5LAC5tNSkQE6zdKhUj363d
BKhqAlkmcS7cKugcv2Cav9WL70j2zW7IvIhLTzT/eHqsLTfbsGjqCUJ70x5cIxAw
sa5ZAKnU4fnLtcla2F3/mnWFeltsyIHRqGe1X/fSjX3QkCg/r9l4pseNqcWLYICJ
B6vQPNTyTjFFkUTyyZ8G3CDcd85QTTpdjSxx7zP1x/IW+LadVDHe6yid6IM+JhZl
Dzifnk2kqTKDELvh253EvezXdwQqIPbbO4fAOduLxmwzBAvc5rLhv6Q9gQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMVSn9XYPy2ix6AWq3XTxe8oOMf+MB8GA1UdIwQY
MBaAFMmjb9+kHHRpznPci77OlGLcuMgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWFOdjM2UWNkR25PYzl5THZzNlVZdHk0eUNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8yNWE4YmMtNTdmMC00M2Y4LWJjMDIt
ZjVhOWM0MzdiYjI4LzEveFZLZjFkZ19MYUxIb0JhcmRkUEY3eWc0eF80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8yNWE4YmMtNTdmMC00M2Y4LWJjMDItZjVhOWM0MzdiYjI4
LzEveWFOdjM2UWNkR25PYzl5THZzNlVZdHk0eUNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwjBkMA0G
CSqGSIb3DQEBCwUAA4IBAQCKt/RL3G2Ijesz5AL4wTd/NOv7sZ4QXZ8Argnx4/Al
gbSzmWfL8sJ1w27hSooI9N6BMnVOGJf4jsXkLowqmZapn2bfNHYr8wLS/piuBhRi
D6G28nvwjG/D601WucWAhfwjJg/KpyL1Fb8WntpczFM/us9SULOICGCL/ihJrmHC
olkknzyZe/HSCwmf7d46+KR3tOkYkn3boRuVBPwRFuO782hyiilXjzwSpSK4wZVd
7P6ufTn0CDMJMEWRETVJsKcdef3oQ7dq8c6JAOvZMd8a4aoFtViKFTOsqHHU7jLE
0RIUdyEhiMAuBGrSAKDcKym7f2HcyEcXo2yukv26NAi+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:20 2024 by rpki-client on console-fra.rpki-client.org