Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/b0b9b8-d049-4562-b66e-d00ae30fd717/1/KLqWLcmXfdQLkrNb1z-m6mIycqY.roa
File: KLqWLcmXfdQLkrNb1z-m6mIycqY.roa (raw, json)
Hash identifier: /kwIEn9Z3FEnqzmyb8m7LfcHILsWGE1LOFB+aNcs/EU=
Subject key identifier: 28:BA:96:2D:C9:97:7D:D4:0B:92:B3:5B:D7:3F:A6:EA:62:32:72:A6
Certificate issuer: /CN=cec7ad4a0106bc519bbc44c1d3d382bb61f4a9fd
Certificate serial: 08F44C7E
Authority key identifier: CE:C7:AD:4A:01:06:BC:51:9B:BC:44:C1:D3:D3:82:BB:61:F4:A9:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsetSgEGvFGbvETB09OCu2H0qf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/b0b9b8-d049-4562-b66e-d00ae30fd717/1/KLqWLcmXfdQLkrNb1z-m6mIycqY.roa
Signing time: Sat 01 Jan 2022 15:56:08 +0000
ROA not before: Sat 01 Jan 2022 15:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213110
IP address blocks: 193.169.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150228094 (0x8f44c7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec7ad4a0106bc519bbc44c1d3d382bb61f4a9fd
Validity
Not Before: Jan 1 15:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28ba962dc9977dd40b92b35bd73fa6ea623272a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:27:da:dc:0d:a8:7a:51:2d:09:ab:e8:93:46:
ab:75:76:50:a9:65:cb:c4:e5:b2:01:4a:5c:d8:79:
8c:dc:c6:24:cb:95:c1:29:b0:f6:cd:b9:dc:33:fb:
ce:5c:45:64:d9:01:3a:7b:d4:17:5c:9c:e1:15:72:
1f:82:2c:54:78:aa:19:86:c9:d2:12:e8:d8:b3:54:
21:b4:af:8d:ed:10:a9:81:32:ec:ba:88:b0:d2:00:
96:71:f2:23:dd:48:10:3d:67:3c:35:db:ad:60:fb:
1c:1c:9b:d0:8f:a3:84:ab:20:59:53:71:f0:c0:22:
c8:43:37:85:37:ea:a8:e2:20:31:45:37:d4:da:f1:
fe:f9:4d:93:f1:5a:b3:db:e0:d0:64:2b:58:55:55:
38:3c:02:fc:81:e6:10:c9:43:3c:af:b2:a9:3d:69:
0c:02:68:eb:01:41:45:83:ca:d4:3a:2b:58:86:3e:
8e:72:74:d3:42:a9:50:42:a0:8e:b4:e3:09:23:e9:
f2:c8:de:38:c2:e9:81:5a:4f:9d:d6:36:8f:1c:0f:
87:17:c4:85:06:18:58:d0:da:87:76:c3:af:dd:9e:
f5:20:ef:20:56:cd:18:03:60:78:d0:6d:b8:68:85:
b7:c8:c0:4a:56:53:2f:97:2d:f4:a5:09:63:13:d8:
12:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:BA:96:2D:C9:97:7D:D4:0B:92:B3:5B:D7:3F:A6:EA:62:32:72:A6
X509v3 Authority Key Identifier:
keyid:CE:C7:AD:4A:01:06:BC:51:9B:BC:44:C1:D3:D3:82:BB:61:F4:A9:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsetSgEGvFGbvETB09OCu2H0qf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b0b9b8-d049-4562-b66e-d00ae30fd717/1/KLqWLcmXfdQLkrNb1z-m6mIycqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b0b9b8-d049-4562-b66e-d00ae30fd717/1/zsetSgEGvFGbvETB09OCu2H0qf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.46.0/24
Signature Algorithm: sha256WithRSAEncryption
07:6c:12:a3:96:f9:5b:56:3d:93:b6:6d:82:3a:79:c0:81:46:
99:2e:96:de:a5:a4:8e:c4:41:23:d7:ec:26:79:d8:08:21:7a:
f0:c2:72:39:cb:cc:d7:37:ae:73:38:e4:80:20:3c:b3:d6:81:
e9:fb:61:7a:1a:d5:02:78:1e:52:b9:af:35:05:30:5f:76:39:
df:d4:99:39:0e:5f:77:95:75:de:a5:94:54:d6:aa:40:24:f3:
75:2a:d4:db:12:e5:fb:a4:82:a2:cf:2e:82:3f:66:d4:40:11:
86:bb:af:9f:ec:9f:ec:2b:02:a7:70:a6:bb:43:cc:be:89:67:
42:83:2a:14:b1:cd:df:84:d9:cf:94:23:19:70:98:00:f9:66:
7d:2e:6a:e2:3a:92:10:c3:62:01:14:4b:c7:f6:4d:27:42:64:
9a:45:08:99:6e:07:5f:43:29:fa:f4:62:8d:72:c5:64:77:bd:
a4:d2:5f:92:2d:fd:14:5c:7d:78:65:aa:d1:f7:99:19:d6:a9:
7e:51:13:63:76:f6:f1:39:49:3c:4b:27:8c:90:0c:85:cd:98:
74:6a:39:be:c6:d5:5c:16:f2:68:0c:7a:9d:02:39:27:79:74:
89:e3:54:9c:3a:a0:83:1e:c2:ab:77:56:a9:93:7a:05:b7:9c:
25:92:ff:9c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECPRMfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZWM3YWQ0YTAxMDZiYzUxOWJiYzQ0YzFkM2QzODJiYjYxZjRhOWZkMB4XDTIyMDEw
MTE1NTYwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjhiYTk2MmRjOTk3
N2RkNDBiOTJiMzViZDczZmE2ZWE2MjMyNzJhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMon2twNqHpRLQmr6JNGq3V2UKlly8TlsgFKXNh5jNzGJMuV
wSmw9s253DP7zlxFZNkBOnvUF1yc4RVyH4IsVHiqGYbJ0hLo2LNUIbSvje0QqYEy
7LqIsNIAlnHyI91IED1nPDXbrWD7HByb0I+jhKsgWVNx8MAiyEM3hTfqqOIgMUU3
1Nrx/vlNk/Fas9vg0GQrWFVVODwC/IHmEMlDPK+yqT1pDAJo6wFBRYPK1DorWIY+
jnJ000KpUEKgjrTjCSPp8sjeOMLpgVpPndY2jxwPhxfEhQYYWNDah3bDr92e9SDv
IFbNGANgeNBtuGiFt8jASlZTL5ct9KUJYxPYEpsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQoupYtyZd91AuSs1vXP6bqYjJypjAfBgNVHSMEGDAWgBTOx61KAQa8UZu8
RMHT04K7YfSp/TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pzZXRTZ0VHdkZHYnZFVEIwOU9DdTJIMHFmMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvYjBiOWI4LWQwNDktNDU2Mi1iNjZlLWQwMGFlMzBmZDcxNy8x
L0tMcVdMY21YZmRRTGtyTmIxei1tNm1JeWNxWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
YjBiOWI4LWQwNDktNDU2Mi1iNjZlLWQwMGFlMzBmZDcxNy8xL3pzZXRTZ0VHdkZH
YnZFVEIwOU9DdTJIMHFmMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGpLjANBgkqhkiG9w0BAQsFAAOC
AQEAB2wSo5b5W1Y9k7Ztgjp5wIFGmS6W3qWkjsRBI9fsJnnYCCF68MJyOcvM1zeu
czjkgCA8s9aB6fthehrVAngeUrmvNQUwX3Y539SZOQ5fd5V13qWUVNaqQCTzdSrU
2xLl+6SCos8ugj9m1EARhruvn+yf7CsCp3Cmu0PMvolnQoMqFLHN34TZz5QjGXCY
APlmfS5q4jqSEMNiARRLx/ZNJ0JkmkUImW4HX0Mp+vRijXLFZHe9pNJfki39FFx9
eGWq0feZGdapflETY3b28TlJPEsnjJAMhc2YdGo5vsbVXBbyaAx6nQI5J3l0ieNU
nDqggx7Cq3dWqZN6BbecJZL/nA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org