Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/9qVFanGdxHRpzwwKJ6MmvzxAcBg.roa
File: 9qVFanGdxHRpzwwKJ6MmvzxAcBg.roa (raw, json)
Hash identifier: WODbHDV/YCSk+0IhvSb2XTSOdc6YtCmuQSH1v5bMeVk=
Subject key identifier: F6:A5:45:6A:71:9D:C4:74:69:CF:0C:0A:27:A3:26:BF:3C:40:70:18
Certificate issuer: /CN=85b8b21e4f5fbfdeb714d3e1b38a53817b5729ed
Certificate serial: 1C59C5
Authority key identifier: 85:B8:B2:1E:4F:5F:BF:DE:B7:14:D3:E1:B3:8A:53:81:7B:57:29:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbiyHk9fv963FNPhs4pTgXtXKe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/9qVFanGdxHRpzwwKJ6MmvzxAcBg.roa
Signing time: Sat 01 Jan 2022 00:57:51 +0000
ROA not before: Sat 01 Jan 2022 00:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 185.212.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1857989 (0x1c59c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b8b21e4f5fbfdeb714d3e1b38a53817b5729ed
Validity
Not Before: Jan 1 00:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6a5456a719dc47469cf0c0a27a326bf3c407018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:57:40:e3:57:44:2b:83:74:30:ed:15:fd:91:
56:fb:cf:ed:45:5c:12:6a:11:8a:94:b1:93:16:05:
3f:7b:7e:72:30:c6:45:e5:39:2f:c2:91:2c:7f:43:
9c:4e:dc:6b:26:1a:c3:d0:b9:e2:2a:12:b7:82:18:
a6:e3:72:ed:1d:0a:c6:26:7f:76:59:1d:e8:68:06:
c7:67:11:d1:e5:b4:22:1f:3b:a4:b0:5c:0c:7c:26:
0f:15:f1:8d:4e:d9:53:da:c4:e0:15:bd:f6:00:60:
7f:07:e8:5e:54:51:43:e9:d3:ba:71:d6:b1:1c:78:
1b:4a:6f:87:9e:da:bc:f6:f8:e6:7e:1d:9c:1a:08:
59:b8:0c:5e:72:dc:c7:d9:31:df:09:fe:b5:18:75:
52:f7:30:e9:50:82:f6:a6:13:fe:fe:89:b1:37:ca:
a5:51:54:f5:7e:b9:dc:e8:90:e3:52:49:bb:58:cc:
be:40:23:34:dc:0f:2f:13:ef:55:f5:42:de:85:ac:
a6:ba:54:c4:28:90:3b:e6:0a:09:1f:30:a1:26:60:
7e:0f:91:89:9e:e5:ee:22:aa:67:79:3a:1e:d7:6c:
8c:f1:48:fb:7f:ad:af:79:d2:dd:b9:b5:44:be:cb:
f3:43:2d:9e:62:2e:11:59:cf:e2:50:98:a4:7f:de:
2e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A5:45:6A:71:9D:C4:74:69:CF:0C:0A:27:A3:26:BF:3C:40:70:18
X509v3 Authority Key Identifier:
keyid:85:B8:B2:1E:4F:5F:BF:DE:B7:14:D3:E1:B3:8A:53:81:7B:57:29:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbiyHk9fv963FNPhs4pTgXtXKe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/9qVFanGdxHRpzwwKJ6MmvzxAcBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/hbiyHk9fv963FNPhs4pTgXtXKe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.115.0/24
Signature Algorithm: sha256WithRSAEncryption
04:55:95:2c:42:d4:66:09:a3:ca:0d:e6:5e:f5:ee:66:9e:0d:
6b:d9:d0:78:60:de:a1:c5:13:a0:f9:c5:ba:91:02:6a:10:bc:
94:ca:6f:27:b9:bc:b1:7d:64:f1:8f:c8:68:3e:79:18:df:28:
08:27:64:08:1e:89:b0:5a:1b:ae:e4:cd:e9:6f:18:4f:e0:d8:
8b:85:cb:39:c9:e7:21:2f:ac:4e:8b:7c:34:88:f5:1f:8c:84:
8d:2e:fb:82:02:a6:bf:4f:c3:6f:7f:80:79:b4:0f:46:2d:84:
ff:e3:3d:08:4e:5b:42:c4:bc:bb:2a:cf:73:b4:d7:d1:3b:a8:
95:89:8e:b7:57:ad:85:28:79:c9:4c:f4:33:42:db:d0:13:75:
d3:5e:56:66:7e:8b:c4:58:88:4b:e0:c1:fc:2a:25:cd:b5:ce:
81:df:3a:2b:0f:f3:67:e8:7e:9a:c6:b7:63:be:cc:61:38:59:
b8:22:00:00:96:bc:41:d7:32:ef:91:51:b1:1c:60:3b:d3:2e:
57:79:0b:d3:e2:2f:9f:e7:f6:f5:1c:02:70:e2:ef:83:d5:dd:
17:ca:d5:38:57:09:bd:3f:78:dc:63:b3:04:b3:e9:bc:7a:3b:
2f:c7:0d:9d:41:b4:31:20:bc:04:20:14:64:7a:57:7f:9e:30:
5c:ac:c8:7f
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDHFnFMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDg1
YjhiMjFlNGY1ZmJmZGViNzE0ZDNlMWIzOGE1MzgxN2I1NzI5ZWQwHhcNMjIwMTAx
MDA1NzUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmNmE1NDU2YTcxOWRj
NDc0NjljZjBjMGEyN2EzMjZiZjNjNDA3MDE4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAlFdA41dEK4N0MO0V/ZFW+8/tRVwSahGKlLGTFgU/e35yMMZF
5TkvwpEsf0OcTtxrJhrD0LniKhK3ghim43LtHQrGJn92WR3oaAbHZxHR5bQiHzuk
sFwMfCYPFfGNTtlT2sTgFb32AGB/B+heVFFD6dO6cdaxHHgbSm+Hntq89vjmfh2c
GghZuAxectzH2THfCf61GHVS9zDpUIL2phP+/omxN8qlUVT1frnc6JDjUkm7WMy+
QCM03A8vE+9V9ULehaymulTEKJA75goJHzChJmB+D5GJnuXuIqpneToe12yM8Uj7
f62vedLdubVEvsvzQy2eYi4RWc/iUJikf94uKQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFPalRWpxncR0ac8MCiejJr88QHAYMB8GA1UdIwQYMBaAFIW4sh5PX7/etxTT
4bOKU4F7VyntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
aGJpeUhrOWZ2OTYzRk5QaHM0cFRnWHRYS2UwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hNS82NDgyOWQtYTM0NC00NGQyLTllOWQtMWRkNjdjMzJiMDZhLzEv
OXFWRmFuR2R4SFJwend3S0o2TW12enhBY0JnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS82
NDgyOWQtYTM0NC00NGQyLTllOWQtMWRkNjdjMzJiMDZhLzEvaGJpeUhrOWZ2OTYz
Rk5QaHM0cFRnWHRYS2UwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudRzMA0GCSqGSIb3DQEBCwUAA4IB
AQAEVZUsQtRmCaPKDeZe9e5mng1r2dB4YN6hxROg+cW6kQJqELyUym8nubyxfWTx
j8hoPnkY3ygIJ2QIHomwWhuu5M3pbxhP4NiLhcs5yechL6xOi3w0iPUfjISNLvuC
Aqa/T8Nvf4B5tA9GLYT/4z0ITltCxLy7Ks9ztNfRO6iViY63V62FKHnJTPQzQtvQ
E3XTXlZmfovEWIhL4MH8KiXNtc6B3zorD/Nn6H6axrdjvsxhOFm4IgAAlrxB1zLv
kVGxHGA70y5XeQvT4i+f5/b1HAJw4u+D1d0XytU4Vwm9P3jcY7MEs+m8ejsvxw2d
QbQxILwEIBRkeld/njBcrMh/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:37 2024 by rpki-client on console-ams.rpki-client.org