Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/ghy3RH9VCrMgpqxF2oG0fa7wrQ8.roa
File: ghy3RH9VCrMgpqxF2oG0fa7wrQ8.roa (raw, json)
Hash identifier: PFXW8ozHQnsRoTK342hwk/f9YJb7RmtkeLLxBO9EB04=
Subject key identifier: 82:1C:B7:44:7F:55:0A:B3:20:A6:AC:45:DA:81:B4:7D:AE:F0:AD:0F
Certificate issuer: /CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Certificate serial: 0185B9E923D2BC1E7D50E01E14E699A66CBD
Authority key identifier: 79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/ghy3RH9VCrMgpqxF2oG0fa7wrQ8.roa
Signing time: Mon 16 Jan 2023 09:29:01 +0000
ROA not before: Mon 16 Jan 2023 09:29:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 194.59.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:e9:23:d2:bc:1e:7d:50:e0:1e:14:e6:99:a6:6c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Validity
Not Before: Jan 16 09:29:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=821cb7447f550ab320a6ac45da81b47daef0ad0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1f:54:7f:9a:49:42:c1:61:5a:84:14:09:a9:
b6:b7:31:ba:60:1e:29:a4:9f:97:ae:67:2f:e7:76:
67:ea:62:8f:80:6b:9d:ca:82:ec:04:38:0f:a0:54:
c0:74:a0:3b:a7:3a:a6:8a:d7:c5:5a:c6:57:df:22:
74:3c:d2:74:24:a0:30:2f:7d:c9:3f:c3:67:f3:0b:
29:92:f1:b2:55:11:99:78:95:b0:44:78:33:d2:68:
87:f9:c4:a3:5e:af:bf:69:38:92:09:5b:72:be:0c:
f6:59:e3:8c:26:eb:62:10:44:f9:66:90:e0:6c:34:
fa:69:37:07:69:52:b9:7b:45:a1:f4:b0:c3:c8:cd:
a8:1e:63:7a:74:56:11:10:38:4e:22:55:2b:7a:ba:
0f:a2:af:42:bc:95:c9:11:18:f9:23:44:b8:4a:37:
04:c5:c5:e4:48:cb:87:81:36:34:d0:63:a8:16:fb:
7e:e6:ad:5a:30:92:64:84:f0:4a:07:5d:82:bb:e3:
43:1c:eb:7f:38:15:c4:ae:dd:f6:7c:64:a5:59:ef:
06:3e:96:19:71:bf:fe:6d:8a:31:88:a1:64:da:b2:
c2:51:2d:e1:69:cc:50:2d:b4:09:52:f1:65:2c:aa:
17:9d:9a:b0:09:1d:99:0c:b4:9b:4a:e2:34:a1:28:
95:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1C:B7:44:7F:55:0A:B3:20:A6:AC:45:DA:81:B4:7D:AE:F0:AD:0F
X509v3 Authority Key Identifier:
keyid:79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/ghy3RH9VCrMgpqxF2oG0fa7wrQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/eQZczx6-VVs3UnF-WVwnW8rQC04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.9.0/24
Signature Algorithm: sha256WithRSAEncryption
13:74:df:f1:28:51:46:24:28:8e:fc:24:f1:0a:32:a8:c6:d9:
1e:92:e7:d6:55:0a:ef:f7:fb:72:fa:a4:39:08:4f:23:62:0c:
76:05:92:84:4c:70:e9:0e:84:70:b6:68:85:9d:0e:52:51:5c:
a7:ef:9f:df:6f:e5:5a:28:25:d8:d6:3d:99:e5:fe:6f:cd:73:
fc:df:c5:a4:0c:6b:2a:cd:a9:1d:fb:19:6e:8c:18:9a:4a:ad:
a8:9b:f3:1d:11:40:d8:db:bd:76:f4:9e:25:12:1f:f6:60:d1:
16:d5:e1:45:b8:4d:f1:ef:54:72:29:0b:c7:5e:0e:e6:8b:c6:
38:59:c8:13:70:10:7c:b1:3e:30:30:d1:86:77:e9:c8:db:cf:
e6:3e:c7:cd:c8:74:64:a5:3f:b8:b0:a1:74:a3:c5:41:27:1b:
a9:2c:d5:a8:f1:b0:f6:28:7a:07:32:22:a8:c6:b3:33:34:aa:
d9:3f:52:76:cf:6c:23:aa:c4:e9:b2:ca:e0:6a:30:28:f3:70:
21:7a:e6:95:12:bc:fa:c8:7d:66:b2:c4:73:6d:a7:fe:91:fa:
8d:5d:11:ac:53:da:6c:a5:e2:0f:6f:45:ef:8e:fb:be:74:c6:
f8:60:ab:ea:7c:c9:dd:4b:e3:5f:bb:0b:d2:16:11:70:36:26:
f7:f5:59:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYW56SPSvB59UOAeFOaZpmy9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5MDY1Y2NmMWViZTU1NWIzNzUyNzE3ZTU5NWMyNzViY2Fk
MDBiNGUwHhcNMjMwMTE2MDkyOTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjFjYjc0NDdmNTUwYWIzMjBhNmFjNDVkYTgxYjQ3ZGFlZjBhZDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkR9Uf5pJQsFhWoQUCam2tzG6YB4p
pJ+Xrmcv53Zn6mKPgGudyoLsBDgPoFTAdKA7pzqmitfFWsZX3yJ0PNJ0JKAwL33J
P8Nn8wspkvGyVRGZeJWwRHgz0miH+cSjXq+/aTiSCVtyvgz2WeOMJutiEET5ZpDg
bDT6aTcHaVK5e0Wh9LDDyM2oHmN6dFYREDhOIlUreroPoq9CvJXJERj5I0S4SjcE
xcXkSMuHgTY00GOoFvt+5q1aMJJkhPBKB12Cu+NDHOt/OBXErt32fGSlWe8GPpYZ
cb/+bYoxiKFk2rLCUS3hacxQLbQJUvFlLKoXnZqwCR2ZDLSbSuI0oSiV2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIIct0R/VQqzIKasRdqBtH2u8K0PMB8GA1UdIwQY
MBaAFHkGXM8evlVbN1JxfllcJ1vK0AtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVFaY3p4Ni1WVnMzVW5GLVdWd25XOHJRQzA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9iZTRlMzEtM2RiZS00MTMwLWI0NTIt
MDE3ZWI1NzM1YjEzLzEvZ2h5M1JIOVZDck1ncHF4RjJvRzBmYTd3clE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9iZTRlMzEtM2RiZS00MTMwLWI0NTItMDE3ZWI1NzM1YjEz
LzEvZVFaY3p4Ni1WVnMzVW5GLVdWd25XOHJRQzA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjsJMA0G
CSqGSIb3DQEBCwUAA4IBAQATdN/xKFFGJCiO/CTxCjKoxtkekufWVQrv9/ty+qQ5
CE8jYgx2BZKETHDpDoRwtmiFnQ5SUVyn75/fb+VaKCXY1j2Z5f5vzXP838WkDGsq
zakd+xlujBiaSq2om/MdEUDY27129J4lEh/2YNEW1eFFuE3x71RyKQvHXg7mi8Y4
WcgTcBB8sT4wMNGGd+nI28/mPsfNyHRkpT+4sKF0o8VBJxupLNWo8bD2KHoHMiKo
xrMzNKrZP1J2z2wjqsTpssrgajAo83AheuaVErz6yH1mssRzbaf+kfqNXRGsU9ps
peIPb0Xvjvu+dMb4YKvqfMndS+NfuwvSFhFwNib39VmC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:20 2024 by rpki-client on console-fra.rpki-client.org