Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/NUhQy0cYcseKl9dS3PTy_xPWBic.roa
File: NUhQy0cYcseKl9dS3PTy_xPWBic.roa (raw, json)
Hash identifier: mPPXeTAzlpxU/+zI8JkshtCHNQxWU861ybYiE7SGAqk=
Subject key identifier: 35:48:50:CB:47:18:72:C7:8A:97:D7:52:DC:F4:F2:FF:13:D6:06:27
Certificate issuer: /CN=a6831d0ef5a59e34d621d613b68f9bffb5298fcd
Certificate serial: 0185722804C62FB9D9074CA39D17E96F1A88
Authority key identifier: A6:83:1D:0E:F5:A5:9E:34:D6:21:D6:13:B6:8F:9B:FF:B5:29:8F:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/poMdDvWlnjTWIdYTto-b_7Upj80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/NUhQy0cYcseKl9dS3PTy_xPWBic.roa
Signing time: Mon 02 Jan 2023 11:05:03 +0000
ROA not before: Mon 02 Jan 2023 11:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 217.198.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:04:c6:2f:b9:d9:07:4c:a3:9d:17:e9:6f:1a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6831d0ef5a59e34d621d613b68f9bffb5298fcd
Validity
Not Before: Jan 2 11:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=354850cb471872c78a97d752dcf4f2ff13d60627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:17:f1:0a:e3:62:79:d2:ce:6e:35:38:2c:a9:
ef:16:dc:bb:d2:fe:5c:0c:14:5c:62:19:9c:3f:e3:
c7:5b:1f:40:df:38:94:8f:d0:59:61:80:65:1a:52:
c1:f1:4b:03:06:3b:c6:14:bf:ff:70:89:ff:46:b2:
26:8a:6b:80:7a:4f:4b:c4:98:36:61:a7:17:16:03:
a4:97:b2:12:b2:84:f4:bd:42:28:6c:84:eb:f3:d0:
61:90:ec:d8:1e:27:6e:58:d3:eb:60:ba:9b:02:3a:
60:be:80:4a:bf:d8:97:89:4d:fc:82:54:50:0e:57:
99:7b:5e:4a:cf:7e:a7:24:c0:b5:51:69:f1:d0:4d:
aa:ad:d8:ce:cb:da:8a:90:68:51:70:be:78:7a:4e:
1b:1e:43:5c:7f:48:9e:36:84:c1:cf:27:cf:55:51:
d1:67:03:44:09:64:6d:fd:e6:15:8b:c6:59:bb:0d:
43:7d:dd:f7:fd:3c:4a:8a:0c:44:6c:f3:a3:0d:f7:
46:a2:ab:13:97:9b:32:e3:dc:e3:b3:16:b4:2a:39:
ab:34:fa:f6:00:e4:3b:ae:7f:18:ff:53:84:78:48:
33:4a:3e:76:00:25:69:2b:92:56:e7:b7:be:00:96:
8e:9d:d1:c5:67:1c:08:4b:b7:7d:c9:cd:ee:84:2e:
b5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:48:50:CB:47:18:72:C7:8A:97:D7:52:DC:F4:F2:FF:13:D6:06:27
X509v3 Authority Key Identifier:
keyid:A6:83:1D:0E:F5:A5:9E:34:D6:21:D6:13:B6:8F:9B:FF:B5:29:8F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/poMdDvWlnjTWIdYTto-b_7Upj80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/NUhQy0cYcseKl9dS3PTy_xPWBic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/poMdDvWlnjTWIdYTto-b_7Upj80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.179.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d1:86:b0:a8:74:19:68:dd:6d:21:bb:08:e5:78:73:d4:a1:
68:b3:42:96:ac:e4:ff:79:fe:68:ac:9b:66:e7:ef:d5:81:6b:
15:b8:f8:a5:ff:81:a8:56:e0:38:ed:fb:f3:a0:61:6a:6b:23:
d5:c3:2f:6f:9c:6b:72:00:f5:d8:25:6c:fc:04:77:47:ae:19:
46:03:62:26:b6:32:44:7b:71:77:c9:13:dc:28:a1:de:31:be:
6b:8d:b3:4b:ab:13:21:20:f1:f9:df:93:43:53:ce:90:ae:c8:
3d:1a:8a:6a:c2:4c:5e:cf:4c:54:21:ca:34:10:e6:49:aa:20:
db:f6:13:38:b1:9c:89:4a:dd:1a:41:20:97:87:bb:a8:65:7a:
84:e1:45:37:e2:1c:61:45:c8:5c:b8:f9:44:72:d9:e0:ee:51:
dd:f1:94:bf:12:00:74:ee:dd:6c:d7:e6:be:d2:48:76:85:09:
ac:47:6c:fd:67:2a:4d:99:f5:f7:52:a8:d0:f2:14:78:a6:e7:
00:70:a7:b8:92:7c:8e:dc:0f:09:17:f8:b5:33:f4:56:9d:26:
ec:89:9e:27:95:0c:bd:15:d4:e5:00:5d:e3:de:e2:58:ca:48:
8c:9e:cf:e7:4d:d6:65:9b:9f:db:54:62:ab:46:36:35:ba:39:
94:67:d3:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyKATGL7nZB0yjnRfpbxqIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ODMxZDBlZjVhNTllMzRkNjIxZDYxM2I2OGY5YmZmYjUy
OThmY2QwHhcNMjMwMTAyMTEwNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTQ4NTBjYjQ3MTg3MmM3OGE5N2Q3NTJkY2Y0ZjJmZjEzZDYwNjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjRfxCuNiedLObjU4LKnvFty70v5c
DBRcYhmcP+PHWx9A3ziUj9BZYYBlGlLB8UsDBjvGFL//cIn/RrImimuAek9LxJg2
YacXFgOkl7ISsoT0vUIobITr89BhkOzYHiduWNPrYLqbAjpgvoBKv9iXiU38glRQ
DleZe15Kz36nJMC1UWnx0E2qrdjOy9qKkGhRcL54ek4bHkNcf0ieNoTBzyfPVVHR
ZwNECWRt/eYVi8ZZuw1Dfd33/TxKigxEbPOjDfdGoqsTl5sy49zjsxa0KjmrNPr2
AOQ7rn8Y/1OEeEgzSj52ACVpK5JW57e+AJaOndHFZxwIS7d9yc3uhC61rQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDVIUMtHGHLHipfXUtz08v8T1gYnMB8GA1UdIwQY
MBaAFKaDHQ71pZ401iHWE7aPm/+1KY/NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG9NZER2V2xualRXSWRZVHRvLWJfN1VwajgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yNzFjNmItMTlkMC00MGI1LWI1OGQt
MGRlMzkzMTcxNjIyLzEvTlVoUXkwY1ljc2VLbDlkUzNQVHlfeFBXQmljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8yNzFjNmItMTlkMC00MGI1LWI1OGQtMGRlMzkzMTcxNjIy
LzEvcG9NZER2V2xualRXSWRZVHRvLWJfN1VwajgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2cazMA0G
CSqGSIb3DQEBCwUAA4IBAQCm0YawqHQZaN1tIbsI5Xhz1KFos0KWrOT/ef5orJtm
5+/VgWsVuPil/4GoVuA47fvzoGFqayPVwy9vnGtyAPXYJWz8BHdHrhlGA2ImtjJE
e3F3yRPcKKHeMb5rjbNLqxMhIPH535NDU86Qrsg9Gopqwkxez0xUIco0EOZJqiDb
9hM4sZyJSt0aQSCXh7uoZXqE4UU34hxhRchcuPlEctng7lHd8ZS/EgB07t1s1+a+
0kh2hQmsR2z9ZypNmfX3UqjQ8hR4pucAcKe4knyO3A8JF/i1M/RWnSbsiZ4nlQy9
FdTlAF3j3uJYykiMns/nTdZlm5/bVGKrRjY1ujmUZ9NF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:10 2024 by rpki-client on console-fra.rpki-client.org