Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/83e4d0-1071-4fd2-9d22-da6fa1106ffb/1/XPjT4Gh4DvbNfHL63szeDJoBo_g.roa
File: XPjT4Gh4DvbNfHL63szeDJoBo_g.roa (raw, json)
Hash identifier: +Pf6mYa+AIlBapUCFcynPaxbkHj0mSXlJyc2iGcI7aw=
Subject key identifier: 5C:F8:D3:E0:68:78:0E:F6:CD:7C:72:FA:DE:CC:DE:0C:9A:01:A3:F8
Certificate issuer: /CN=e817e052fe8da0a80aff1084b5e597606d14e220
Certificate serial: 01722843
Authority key identifier: E8:17:E0:52:FE:8D:A0:A8:0A:FF:10:84:B5:E5:97:60:6D:14:E2:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6BfgUv6NoKgK_xCEteWXYG0U4iA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/83e4d0-1071-4fd2-9d22-da6fa1106ffb/1/XPjT4Gh4DvbNfHL63szeDJoBo_g.roa
Signing time: Sat 01 Jan 2022 01:51:02 +0000
ROA not before: Sat 01 Jan 2022 01:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43606
IP address blocks: 213.232.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24258627 (0x1722843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e817e052fe8da0a80aff1084b5e597606d14e220
Validity
Not Before: Jan 1 01:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cf8d3e068780ef6cd7c72fadeccde0c9a01a3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bc:9a:2a:61:9f:0a:d7:bc:29:9b:bb:07:53:
e3:c2:f6:82:2c:d2:90:57:40:fa:7e:96:75:a2:87:
dd:02:89:94:4b:c1:c2:68:46:b6:d1:1c:51:38:94:
64:b0:19:36:40:64:f9:07:9e:54:72:d4:8f:f3:95:
da:94:f0:73:08:1f:81:f2:c8:ee:6c:b1:66:77:ca:
3d:1b:1f:34:90:46:f3:9c:07:13:4e:04:b9:5b:26:
6e:04:d5:fb:4a:95:48:b4:a7:7a:fe:9e:1a:05:bc:
7d:9b:1b:c7:04:ff:86:bd:c9:8d:0e:39:ce:c5:89:
a9:0a:17:b4:46:e0:8e:04:96:41:38:94:94:72:81:
82:ec:00:77:5a:7a:59:ff:1b:d1:7e:5f:5e:2f:2a:
90:a8:f8:d2:bd:a7:23:c3:22:95:3d:4a:a0:56:0e:
7b:ec:c0:07:1b:95:a9:54:d5:84:89:f3:d3:13:ab:
2c:6c:e0:61:f3:08:34:5e:1d:80:02:3f:a3:a7:f8:
52:a8:55:1c:10:69:01:c7:8f:3a:6e:f2:90:80:90:
7b:5b:f6:4e:ba:d4:78:aa:7c:0b:c3:09:eb:13:8c:
c9:a8:14:13:47:33:30:f0:8c:71:00:85:f6:e9:f0:
49:06:68:d7:16:71:1d:bf:d5:dd:5f:5e:0d:2f:d9:
4c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F8:D3:E0:68:78:0E:F6:CD:7C:72:FA:DE:CC:DE:0C:9A:01:A3:F8
X509v3 Authority Key Identifier:
keyid:E8:17:E0:52:FE:8D:A0:A8:0A:FF:10:84:B5:E5:97:60:6D:14:E2:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6BfgUv6NoKgK_xCEteWXYG0U4iA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/83e4d0-1071-4fd2-9d22-da6fa1106ffb/1/XPjT4Gh4DvbNfHL63szeDJoBo_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/83e4d0-1071-4fd2-9d22-da6fa1106ffb/1/6BfgUv6NoKgK_xCEteWXYG0U4iA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.206.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f6:e3:a5:54:6f:44:e0:f0:5e:67:d0:6e:f4:0c:72:71:8d:
5e:dc:2a:bd:7d:98:d6:f4:df:02:af:44:28:ed:e9:93:e8:d3:
e5:a9:62:92:fa:1a:cd:57:1a:c8:1d:ae:c8:c0:63:96:0f:85:
a8:46:02:ab:0e:19:6d:2c:86:d3:b3:fd:1a:07:69:48:57:67:
b4:fb:5f:af:f2:c3:05:c8:e1:37:3f:9e:f1:28:3a:b5:a0:32:
cb:bd:0c:99:9e:0e:8c:dc:0e:9c:9a:7f:f5:90:48:86:b0:b5:
24:cc:b3:c3:a5:5d:c6:67:14:67:57:71:b4:d3:e7:f6:2e:f4:
85:ce:73:2f:5d:32:a5:94:d8:95:4e:d2:5b:da:e4:ae:34:fb:
34:f2:50:bb:83:57:4b:0e:73:2a:dd:ff:bf:a3:41:88:8b:99:
fe:1e:f2:12:3b:9e:cd:fc:a8:b7:21:e3:17:bc:16:34:9c:58:
b1:45:46:d0:0e:97:7f:b6:58:85:c2:19:b7:bd:0d:c5:cd:b5:
67:a2:e9:9b:36:c6:77:66:c3:c3:71:83:e1:0a:57:d5:6e:e5:
89:41:a1:89:1d:ca:50:a5:6c:b3:42:f9:b8:74:44:6b:2f:59:
fe:e0:83:9c:fe:88:f5:63:db:a2:26:37:15:85:57:64:25:d6:
f4:c8:52:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAXIoQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ODE3ZTA1MmZlOGRhMGE4MGFmZjEwODRiNWU1OTc2MDZkMTRlMjIwMB4XDTIyMDEw
MTAxNTEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWNmOGQzZTA2ODc4
MGVmNmNkN2M3MmZhZGVjY2RlMGM5YTAxYTNmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALm8miphnwrXvCmbuwdT48L2gizSkFdA+n6WdaKH3QKJlEvB
wmhGttEcUTiUZLAZNkBk+QeeVHLUj/OV2pTwcwgfgfLI7myxZnfKPRsfNJBG85wH
E04EuVsmbgTV+0qVSLSnev6eGgW8fZsbxwT/hr3JjQ45zsWJqQoXtEbgjgSWQTiU
lHKBguwAd1p6Wf8b0X5fXi8qkKj40r2nI8MilT1KoFYOe+zABxuVqVTVhInz0xOr
LGzgYfMINF4dgAI/o6f4UqhVHBBpAcePOm7ykICQe1v2TrrUeKp8C8MJ6xOMyagU
E0czMPCMcQCF9unwSQZo1xZxHb/V3V9eDS/ZTOkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRc+NPgaHgO9s18cvrezN4MmgGj+DAfBgNVHSMEGDAWgBToF+BS/o2gqAr/
EIS15ZdgbRTiIDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZCZmdVdjZOb0tnS194Q0V0ZVdYWUcwVTRpQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTEvODNlNGQwLTEwNzEtNGZkMi05ZDIyLWRhNmZhMTEwNmZmYi8x
L1hQalQ0R2g0RHZiTmZITDYzc3plREpvQm9fZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEv
ODNlNGQwLTEwNzEtNGZkMi05ZDIyLWRhNmZhMTEwNmZmYi8xLzZCZmdVdjZOb0tn
S194Q0V0ZVdYWUcwVTRpQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANXozjANBgkqhkiG9w0BAQsFAAOC
AQEAd/bjpVRvRODwXmfQbvQMcnGNXtwqvX2Y1vTfAq9EKO3pk+jT5alikvoazVca
yB2uyMBjlg+FqEYCqw4ZbSyG07P9GgdpSFdntPtfr/LDBcjhNz+e8Sg6taAyy70M
mZ4OjNwOnJp/9ZBIhrC1JMyzw6VdxmcUZ1dxtNPn9i70hc5zL10ypZTYlU7SW9rk
rjT7NPJQu4NXSw5zKt3/v6NBiIuZ/h7yEjuezfyotyHjF7wWNJxYsUVG0A6Xf7ZY
hcIZt70Nxc21Z6LpmzbGd2bDw3GD4QpX1W7liUGhiR3KUKVss0L5uHREay9Z/uCD
nP6I9WPboiY3FYVXZCXW9MhSUw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:22 2024 by rpki-client on console-fra.rpki-client.org