Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/84ac9b-0870-4c3f-af5c-637cbad64e03/1/4R9-YIOtROM59N_DLyva_ZtuWpk.roa
File: 4R9-YIOtROM59N_DLyva_ZtuWpk.roa (raw, json)
Hash identifier: xlZmjZiAWjpSTsCbbZS57KHRLG9lDo3jyXRb9vCA/oU=
Subject key identifier: E1:1F:7E:60:83:AD:44:E3:39:F4:DF:C3:2F:2B:DA:FD:9B:6E:5A:99
Certificate issuer: /CN=1f25852874331c01a43555e7e3b72ba6a80be85f
Certificate serial: 018CC425506956C14C78C8A007014240AC2D
Authority key identifier: 1F:25:85:28:74:33:1C:01:A4:35:55:E7:E3:B7:2B:A6:A8:0B:E8:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyWFKHQzHAGkNVXn47crpqgL6F8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/84ac9b-0870-4c3f-af5c-637cbad64e03/1/4R9-YIOtROM59N_DLyva_ZtuWpk.roa
Signing time: Mon 01 Jan 2024 08:30:28 +0000
ROA not before: Mon 01 Jan 2024 08:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57878
IP address blocks: 185.205.68.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:50:69:56:c1:4c:78:c8:a0:07:01:42:40:ac:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f25852874331c01a43555e7e3b72ba6a80be85f
Validity
Not Before: Jan 1 08:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e11f7e6083ad44e339f4dfc32f2bdafd9b6e5a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:30:3b:15:13:28:f4:94:3a:cc:a7:9d:f1:89:
44:5b:a7:ad:fc:ce:73:83:19:bf:67:92:d9:05:ff:
33:de:5d:67:f7:d1:5d:28:55:f9:99:88:61:ce:76:
7e:c5:46:43:3d:61:ca:c3:28:35:56:4c:d9:7d:7f:
31:6f:1c:40:5d:36:19:8e:e7:b6:e7:a4:78:8d:92:
b8:43:96:01:ca:4c:09:2f:13:dd:4d:36:4c:b6:48:
11:1b:89:1f:b1:bf:9e:ec:de:5b:58:e2:23:d2:a5:
15:e6:d4:6f:28:8f:da:66:99:68:34:1f:62:69:7f:
00:f8:2c:2b:ca:73:5f:d9:d6:23:a6:41:57:87:88:
48:af:3a:12:23:ad:a2:50:62:3b:6c:a9:2f:af:4f:
7a:07:a7:66:f1:8e:e8:da:59:21:ee:c4:1f:1d:bf:
f1:5e:88:de:44:6d:42:a6:5d:1d:55:aa:be:5c:26:
93:1a:c9:7b:22:12:a4:98:30:af:7f:0b:91:3f:4f:
10:49:26:fa:35:4c:8e:22:0a:00:13:99:eb:28:2c:
ae:b0:97:22:22:6b:6f:15:ba:76:96:0e:74:13:35:
ad:d4:51:ee:9f:07:5a:bc:a5:14:6f:2b:66:cc:74:
6a:c1:f7:35:34:6d:07:1e:d1:1d:4d:d4:98:e2:ff:
3b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1F:7E:60:83:AD:44:E3:39:F4:DF:C3:2F:2B:DA:FD:9B:6E:5A:99
X509v3 Authority Key Identifier:
keyid:1F:25:85:28:74:33:1C:01:A4:35:55:E7:E3:B7:2B:A6:A8:0B:E8:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyWFKHQzHAGkNVXn47crpqgL6F8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/84ac9b-0870-4c3f-af5c-637cbad64e03/1/4R9-YIOtROM59N_DLyva_ZtuWpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/84ac9b-0870-4c3f-af5c-637cbad64e03/1/HyWFKHQzHAGkNVXn47crpqgL6F8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.68.0/24
Signature Algorithm: sha256WithRSAEncryption
27:dd:76:97:6a:2b:0a:e3:40:6a:f7:95:a0:15:0e:5c:87:54:
06:c8:14:20:db:fc:ab:2e:6f:b4:ba:59:52:f4:f1:21:89:5a:
0b:e4:64:d8:74:f9:5c:e0:6f:59:e0:73:ab:c9:09:07:47:fb:
74:82:31:69:0c:ea:cc:c0:d9:1e:a0:c6:de:94:30:25:5f:15:
32:8f:3d:c9:de:df:a7:ed:1d:15:87:5a:13:39:ed:9e:05:ea:
f5:df:7e:e6:8a:0d:9b:45:e6:71:33:8c:eb:8e:a4:05:c5:f3:
06:82:ad:c3:20:00:a4:61:80:f3:89:9d:64:eb:bc:4a:5a:18:
8f:04:7c:1f:eb:48:1e:e2:fc:bb:e5:16:d1:61:83:4d:86:73:
a2:16:94:e1:17:93:a1:b7:a0:62:11:6a:f5:7f:3d:fa:c9:42:
4c:88:c6:91:0d:45:92:64:07:f3:ff:5e:30:74:72:38:ed:66:
bb:62:85:d5:f9:45:75:24:97:10:dc:72:2f:d1:9c:77:7c:ff:
4e:f6:f1:3b:dc:3c:67:d4:12:2a:99:0e:b9:fe:b6:c3:ea:97:
7f:7e:0f:3c:b2:6d:f4:04:f7:d0:75:d1:bd:e7:fa:7f:21:08:
99:cd:a3:b1:ab:f5:ce:91:5e:43:ee:1a:7a:0d:4e:f7:0e:c4:
c8:29:1d:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJVBpVsFMeMigBwFCQKwtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjU4NTI4NzQzMzFjMDFhNDM1NTVlN2UzYjcyYmE2YTgw
YmU4NWYwHhcNMjQwMTAxMDgzMDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTFmN2U2MDgzYWQ0NGUzMzlmNGRmYzMyZjJiZGFmZDliNmU1YTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjA7FRMo9JQ6zKed8YlEW6et/M5z
gxm/Z5LZBf8z3l1n99FdKFX5mYhhznZ+xUZDPWHKwyg1VkzZfX8xbxxAXTYZjue2
56R4jZK4Q5YBykwJLxPdTTZMtkgRG4kfsb+e7N5bWOIj0qUV5tRvKI/aZploNB9i
aX8A+CwrynNf2dYjpkFXh4hIrzoSI62iUGI7bKkvr096B6dm8Y7o2lkh7sQfHb/x
XojeRG1Cpl0dVaq+XCaTGsl7IhKkmDCvfwuRP08QSSb6NUyOIgoAE5nrKCyusJci
ImtvFbp2lg50EzWt1FHunwdavKUUbytmzHRqwfc1NG0HHtEdTdSY4v878wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOEffmCDrUTjOfTfwy8r2v2bblqZMB8GA1UdIwQY
MBaAFB8lhSh0MxwBpDVV5+O3K6aoC+hfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlXRktIUXpIQUdrTlZYbjQ3Y3JwcWdMNkY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC84NGFjOWItMDg3MC00YzNmLWFmNWMt
NjM3Y2JhZDY0ZTAzLzEvNFI5LVlJT3RST001OU5fREx5dmFfWnR1V3BrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC84NGFjOWItMDg3MC00YzNmLWFmNWMtNjM3Y2JhZDY0ZTAz
LzEvSHlXRktIUXpIQUdrTlZYbjQ3Y3JwcWdMNkY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc1EMA0G
CSqGSIb3DQEBCwUAA4IBAQAn3XaXaisK40Bq95WgFQ5ch1QGyBQg2/yrLm+0ullS
9PEhiVoL5GTYdPlc4G9Z4HOryQkHR/t0gjFpDOrMwNkeoMbelDAlXxUyjz3J3t+n
7R0Vh1oTOe2eBer1337mig2bReZxM4zrjqQFxfMGgq3DIACkYYDziZ1k67xKWhiP
BHwf60ge4vy75RbRYYNNhnOiFpThF5Oht6BiEWr1fz36yUJMiMaRDUWSZAfz/14w
dHI47Wa7YoXV+UV1JJcQ3HIv0Zx3fP9O9vE73Dxn1BIqmQ65/rbD6pd/fg88sm30
BPfQddG95/p/IQiZzaOxq/XOkV5D7hp6DU73DsTIKR0Y
-----END CERTIFICATE-----
Generated at Thu Feb 1 13:28:30 2024 by rpki-client on console-ams.rpki-client.org