Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/G8ApgIfHYN0vMFAT72Nz4BunoLg.roa
File: G8ApgIfHYN0vMFAT72Nz4BunoLg.roa (raw, json)
Hash identifier: V5Fn0L0eOHpC1QdEQEElUb152U+7wt00cwrF+CVq9XM=
Subject key identifier: 1B:C0:29:80:87:C7:60:DD:2F:30:50:13:EF:63:73:E0:1B:A7:A0:B8
Certificate issuer: /CN=c8bcaeab463ffaefda9e475cedef54128a0dc65f
Certificate serial: 01856F6FFC843734FA339D7BD75FB1C111A4
Authority key identifier: C8:BC:AE:AB:46:3F:FA:EF:DA:9E:47:5C:ED:EF:54:12:8A:0D:C6:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yLyuq0Y_-u_ankdc7e9UEooNxl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/G8ApgIfHYN0vMFAT72Nz4BunoLg.roa
Signing time: Sun 01 Jan 2023 22:24:48 +0000
ROA not before: Sun 01 Jan 2023 22:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199775
IP address blocks: 185.242.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:fc:84:37:34:fa:33:9d:7b:d7:5f:b1:c1:11:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8bcaeab463ffaefda9e475cedef54128a0dc65f
Validity
Not Before: Jan 1 22:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bc0298087c760dd2f305013ef6373e01ba7a0b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:61:ba:45:f2:eb:c7:31:31:8c:12:2f:ce:06:
e2:18:d7:7d:20:89:4c:19:9d:f5:a3:e8:fe:c8:9a:
0f:0d:49:64:2a:fb:3d:13:63:58:f1:a4:d8:22:8e:
26:99:5a:aa:9c:79:a0:49:62:c9:5b:57:4b:2a:dd:
40:85:67:4c:bc:2f:28:6e:8b:2a:77:c2:fc:71:a2:
4a:f6:b9:a2:3f:e5:45:6b:3f:fe:82:22:33:66:ea:
90:cd:07:97:19:81:7b:ed:6d:19:8e:8d:4c:7d:93:
9f:29:6b:bf:a5:dd:23:8b:35:83:79:04:49:09:13:
8d:c0:f3:6e:66:1c:25:5b:02:e0:68:68:dc:67:5d:
0f:cd:b6:49:80:18:09:5a:67:70:98:ac:10:02:2e:
a8:2c:12:25:84:04:53:2d:4d:b7:69:1c:56:32:6b:
92:36:c3:ca:11:0e:58:a6:f6:e9:ff:a2:08:af:45:
be:39:f0:a4:ae:e2:c7:1f:1b:75:71:05:68:85:71:
75:47:73:d3:57:f1:38:f7:d7:45:4c:e1:25:44:f5:
11:37:4f:4b:8c:53:31:4c:29:52:4b:9b:6b:df:ba:
b4:d4:10:cf:41:f4:d1:92:17:0b:66:15:97:45:6b:
7a:c0:2b:47:56:f4:94:c6:41:c5:56:77:af:39:95:
d5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C0:29:80:87:C7:60:DD:2F:30:50:13:EF:63:73:E0:1B:A7:A0:B8
X509v3 Authority Key Identifier:
keyid:C8:BC:AE:AB:46:3F:FA:EF:DA:9E:47:5C:ED:EF:54:12:8A:0D:C6:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yLyuq0Y_-u_ankdc7e9UEooNxl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/G8ApgIfHYN0vMFAT72Nz4BunoLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/yLyuq0Y_-u_ankdc7e9UEooNxl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.218.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7d:4f:ce:05:cc:2b:71:c1:d4:c3:5f:5b:ee:0b:cc:03:1f:
d2:23:81:a2:19:82:00:8f:b6:8a:8e:34:26:f7:5d:e2:a1:4a:
58:1e:bb:58:2c:19:cb:3e:fe:2e:e4:0b:e3:17:f0:31:5b:94:
a0:05:e1:c1:1b:93:59:d6:be:38:58:78:e3:50:8c:05:f7:97:
63:b8:b3:52:08:a8:65:3d:6b:19:f4:b3:5c:93:6d:db:0f:69:
39:87:95:12:b1:15:d5:43:33:6e:d7:46:fc:42:fc:66:e6:a5:
28:4c:ad:bf:3a:e4:7e:41:2f:31:46:df:f5:0f:3d:3f:e3:45:
6c:84:37:46:7d:0d:a3:80:ca:5d:60:a8:ff:9e:88:bb:9d:69:
c9:52:7f:81:53:ca:e1:82:2d:2c:15:c2:8a:7b:bc:07:74:85:
b3:52:e8:93:e2:c3:8a:a6:9a:6f:ab:cc:f2:af:f0:87:e1:b4:
34:c9:0d:af:76:39:a1:52:2a:e1:87:6f:24:dc:bd:2a:5f:09:
be:9e:56:28:14:73:d1:ec:99:7d:d2:8d:23:43:b1:54:ef:b0:
3e:02:c5:7b:f6:34:eb:06:6b:dc:bc:0c:7d:6d:57:da:7d:5d:
bb:e1:81:84:28:51:97:75:90:65:9c:70:df:3c:cb:92:f4:8e:
95:7e:a7:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvb/yENzT6M51711+xwRGkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4YmNhZWFiNDYzZmZhZWZkYTllNDc1Y2VkZWY1NDEyOGEw
ZGM2NWYwHhcNMjMwMTAxMjIyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYmMwMjk4MDg3Yzc2MGRkMmYzMDUwMTNlZjYzNzNlMDFiYTdhMGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2G6RfLrxzExjBIvzgbiGNd9IIlM
GZ31o+j+yJoPDUlkKvs9E2NY8aTYIo4mmVqqnHmgSWLJW1dLKt1AhWdMvC8obosq
d8L8caJK9rmiP+VFaz/+giIzZuqQzQeXGYF77W0Zjo1MfZOfKWu/pd0jizWDeQRJ
CRONwPNuZhwlWwLgaGjcZ10PzbZJgBgJWmdwmKwQAi6oLBIlhARTLU23aRxWMmuS
NsPKEQ5Ypvbp/6IIr0W+OfCkruLHHxt1cQVohXF1R3PTV/E499dFTOElRPURN09L
jFMxTClSS5tr37q01BDPQfTRkhcLZhWXRWt6wCtHVvSUxkHFVnevOZXVoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBvAKYCHx2DdLzBQE+9jc+Abp6C4MB8GA1UdIwQY
MBaAFMi8rqtGP/rv2p5HXO3vVBKKDcZfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUx5dXEwWV8tdV9hbmtkYzdlOVVFb29OeGw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iYzdiNmUtMzBjYi00ZWFjLTg0OWEt
YzFkOWViOGJlNGY5LzEvRzhBcGdJZkhZTjB2TUZBVDcyTno0QnVub0xnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iYzdiNmUtMzBjYi00ZWFjLTg0OWEtYzFkOWViOGJlNGY5
LzEveUx5dXEwWV8tdV9hbmtkYzdlOVVFb29OeGw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufLaMA0G
CSqGSIb3DQEBCwUAA4IBAQArfU/OBcwrccHUw19b7gvMAx/SI4GiGYIAj7aKjjQm
913ioUpYHrtYLBnLPv4u5AvjF/AxW5SgBeHBG5NZ1r44WHjjUIwF95djuLNSCKhl
PWsZ9LNck23bD2k5h5USsRXVQzNu10b8Qvxm5qUoTK2/OuR+QS8xRt/1Dz0/40Vs
hDdGfQ2jgMpdYKj/noi7nWnJUn+BU8rhgi0sFcKKe7wHdIWzUuiT4sOKpppvq8zy
r/CH4bQ0yQ2vdjmhUirhh28k3L0qXwm+nlYoFHPR7Jl90o0jQ7FU77A+AsV79jTr
BmvcvAx9bVfafV274YGEKFGXdZBlnHDfPMuS9I6VfqfN
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-ams.rpki-client.org