Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/4a132d-233b-4740-93c4-46dd63ea76f3/1/s3bZZQrRXWcjdcQUVqRTL2B01ns.roa
File: s3bZZQrRXWcjdcQUVqRTL2B01ns.roa (raw, json)
Hash identifier: vj+M9uTXEJ2ssiAp12RYqKlMp0GH7hoNP9dbfSETo4I=
Subject key identifier: B3:76:D9:65:0A:D1:5D:67:23:75:C4:14:56:A4:53:2F:60:74:D6:7B
Certificate issuer: /CN=3934bea04024280609f917b87bed080daf4c7ea4
Certificate serial: 5300
Authority key identifier: 39:34:BE:A0:40:24:28:06:09:F9:17:B8:7B:ED:08:0D:AF:4C:7E:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTS-oEAkKAYJ-Re4e-0IDa9MfqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/4a132d-233b-4740-93c4-46dd63ea76f3/1/s3bZZQrRXWcjdcQUVqRTL2B01ns.roa
Signing time: Thu 27 Jan 2022 09:36:31 +0000
ROA not before: Thu 27 Jan 2022 09:36:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 185.214.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21248 (0x5300)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3934bea04024280609f917b87bed080daf4c7ea4
Validity
Not Before: Jan 27 09:36:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b376d9650ad15d672375c41456a4532f6074d67b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:86:57:2a:4d:9e:70:1a:db:45:a0:6a:2e:e8:
84:7f:0e:62:20:f0:6f:74:b4:3b:b0:0a:1a:df:4d:
a0:a5:da:14:7e:6b:73:e8:d5:d2:52:12:bc:37:d3:
cc:e3:7e:73:1c:80:2c:fa:dd:48:aa:6f:04:45:b0:
68:9f:55:de:ca:e8:fb:4f:69:ef:25:07:cb:b2:0d:
95:a2:0f:59:17:3d:2f:08:68:42:4c:67:af:45:2b:
2a:5a:db:01:07:9f:cb:e7:0d:f8:70:bc:b6:da:19:
5c:c1:e3:74:c4:1d:3f:24:6a:b3:a6:d3:87:b7:9f:
6b:b2:65:62:ca:e1:33:ae:c6:f7:c5:14:b0:97:68:
e4:4d:ef:a9:dd:9b:f2:b7:0f:67:a3:a0:42:c9:b6:
9b:69:d0:fa:cb:1a:22:aa:20:c0:fa:10:ac:7e:72:
ea:1e:a0:6b:cc:37:7b:63:70:3f:e2:1f:5e:af:c5:
0c:96:5e:de:24:e4:4d:16:c5:e2:41:62:33:da:fc:
02:fa:ff:d0:f5:ad:91:3e:b5:f6:94:73:50:c0:08:
36:ea:19:40:80:20:dc:ec:66:cb:7d:b1:e6:c1:61:
ac:8a:e6:23:6c:83:7e:97:84:90:34:f0:5a:a0:ed:
21:ce:d1:33:96:2a:9d:33:3e:85:77:c0:1b:e6:05:
54:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:76:D9:65:0A:D1:5D:67:23:75:C4:14:56:A4:53:2F:60:74:D6:7B
X509v3 Authority Key Identifier:
keyid:39:34:BE:A0:40:24:28:06:09:F9:17:B8:7B:ED:08:0D:AF:4C:7E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTS-oEAkKAYJ-Re4e-0IDa9MfqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4a132d-233b-4740-93c4-46dd63ea76f3/1/s3bZZQrRXWcjdcQUVqRTL2B01ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4a132d-233b-4740-93c4-46dd63ea76f3/1/OTS-oEAkKAYJ-Re4e-0IDa9MfqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.167.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:d5:0a:1b:4d:3a:4a:c6:0f:fe:39:9b:6e:96:01:05:5e:09:
22:c9:b6:de:bb:9d:c4:a2:52:30:a8:24:a7:be:8c:3f:1d:9f:
1e:4a:b7:7f:36:21:83:85:4c:a4:32:ca:d8:15:26:75:f4:8e:
69:11:79:e5:56:c8:f0:04:78:37:19:49:c9:7e:88:7a:d1:f7:
93:25:47:ad:27:18:c9:64:4c:27:db:2d:fe:e7:44:a9:ef:ee:
52:5f:dd:05:ed:35:a2:7b:f5:f7:3c:6f:8d:75:91:e4:1e:c2:
e5:7c:e6:2e:e4:3e:cf:97:ea:2d:ed:9d:4f:d8:64:ef:91:9d:
76:89:1e:bd:ce:c8:8f:c6:df:2e:67:d5:d2:35:57:93:d9:5a:
bd:d5:ed:c6:35:23:11:10:ab:3d:4a:06:24:56:53:6c:29:3a:
5d:40:45:80:8e:72:e0:70:cc:bf:ad:0a:52:3b:41:c8:f1:e4:
b1:ae:50:5d:9c:eb:2d:0a:91:22:28:31:44:86:14:53:0d:04:
13:16:fe:ea:c6:b1:d0:f1:83:45:cc:ee:fb:98:2b:47:60:ca:
03:f0:57:a0:63:c8:66:09:ae:2e:10:51:47:60:a4:ee:30:1a:
f6:d9:12:e1:f0:1b:8a:79:41:3e:1f:34:cb:74:a6:4e:7a:55:
02:c6:a1:55
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICUwAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkz
NGJlYTA0MDI0MjgwNjA5ZjkxN2I4N2JlZDA4MGRhZjRjN2VhNDAeFw0yMjAxMjcw
OTM2MzFaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGIzNzZkOTY1MGFkMTVk
NjcyMzc1YzQxNDU2YTQ1MzJmNjA3NGQ2N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCehlcqTZ5wGttFoGou6IR/DmIg8G90tDuwChrfTaCl2hR+a3Po
1dJSErw308zjfnMcgCz63UiqbwRFsGifVd7K6PtPae8lB8uyDZWiD1kXPS8IaEJM
Z69FKypa2wEHn8vnDfhwvLbaGVzB43TEHT8karOm04e3n2uyZWLK4TOuxvfFFLCX
aORN76ndm/K3D2ejoELJtptp0PrLGiKqIMD6EKx+cuoeoGvMN3tjcD/iH16vxQyW
Xt4k5E0WxeJBYjPa/AL6/9D1rZE+tfaUc1DACDbqGUCAINzsZst9sebBYayK5iNs
g36XhJA08Fqg7SHO0TOWKp0zPoV3wBvmBVRxAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUs3bZZQrRXWcjdcQUVqRTL2B01nswHwYDVR0jBBgwFoAUOTS+oEAkKAYJ+Re4
e+0IDa9MfqQwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9P
VFMtb0VBa0tBWUotUmU0ZS0wSURhOU1mcVEuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2E0LzRhMTMyZC0yMzNiLTQ3NDAtOTNjNC00NmRkNjNlYTc2ZjMvMS9z
M2JaWlFyUlhXY2pkY1FVVnFSVEwyQjAxbnMucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E0LzRh
MTMyZC0yMzNiLTQ3NDAtOTNjNC00NmRkNjNlYTc2ZjMvMS9PVFMtb0VBa0tBWUot
UmU0ZS0wSURhOU1mcVEuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC51qcwDQYJKoZIhvcNAQELBQADggEB
AD7VChtNOkrGD/45m26WAQVeCSLJtt67ncSiUjCoJKe+jD8dnx5Kt382IYOFTKQy
ytgVJnX0jmkReeVWyPAEeDcZScl+iHrR95MlR60nGMlkTCfbLf7nRKnv7lJf3QXt
NaJ79fc8b411keQewuV85i7kPs+X6i3tnU/YZO+RnXaJHr3OyI/G3y5n1dI1V5PZ
Wr3V7cY1IxEQqz1KBiRWU2wpOl1ARYCOcuBwzL+tClI7Qcjx5LGuUF2c6y0KkSIo
MUSGFFMNBBMW/urGsdDxg0XM7vuYK0dgygPwV6BjyGYJri4QUUdgpO4wGvbZEuHw
G4p5QT4fNMt0pk56VQLGoVU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:27 2024 by rpki-client on console-ams.rpki-client.org