Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/x-NnyfeFuw1XxEPOBNlqFsEd8s0.roa
File: x-NnyfeFuw1XxEPOBNlqFsEd8s0.roa (raw, json)
Hash identifier: Hlvrgty72nA5/OgqwhVF9J1GdUxeKzgPF+QLLuVaKWc=
Subject key identifier: C7:E3:67:C9:F7:85:BB:0D:57:C4:43:CE:04:D9:6A:16:C1:1D:F2:CD
Certificate issuer: /CN=bb641d5a52f440f7989e3c1f616e95ae7cf50ba8
Certificate serial: 51DAD1
Authority key identifier: BB:64:1D:5A:52:F4:40:F7:98:9E:3C:1F:61:6E:95:AE:7C:F5:0B:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u2QdWlL0QPeYnjwfYW6Vrnz1C6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/x-NnyfeFuw1XxEPOBNlqFsEd8s0.roa
Signing time: Sat 01 Jan 2022 00:58:08 +0000
ROA not before: Sat 01 Jan 2022 00:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211020
IP address blocks: 212.23.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5364433 (0x51dad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb641d5a52f440f7989e3c1f616e95ae7cf50ba8
Validity
Not Before: Jan 1 00:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7e367c9f785bb0d57c443ce04d96a16c11df2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a3:7f:36:44:a5:e4:49:31:4f:e3:7d:eb:60:
3f:1e:dc:2e:80:a9:b4:04:85:1d:0b:e3:f6:2f:4c:
72:e8:55:ea:c2:ff:46:54:4c:34:df:80:69:ee:a5:
db:5e:70:58:e4:8e:93:f5:85:c3:58:74:d0:b4:06:
07:e7:22:4f:6b:ee:b7:14:5d:0c:a8:95:bf:38:a5:
fd:cd:1e:f0:3c:54:47:a6:36:2c:db:19:01:4d:99:
5b:90:07:0d:3d:2f:92:4a:1b:1d:76:5d:ed:22:9a:
a6:4d:32:f9:d5:ab:ce:65:c2:f4:62:4e:06:6b:12:
d1:9d:07:f6:81:1a:42:87:0d:5b:af:47:6c:71:0a:
65:8e:1e:56:7e:33:01:d8:8e:16:59:c3:fe:73:e8:
da:44:f9:6b:a6:58:1a:40:52:22:04:41:16:b5:1e:
1b:0a:d5:a3:f2:cf:5f:9f:ed:aa:89:68:0b:5f:89:
54:31:59:d2:37:4a:6a:0b:6e:5c:62:95:46:16:ef:
79:17:3e:c4:c2:54:33:f8:ae:89:e7:aa:56:e2:f0:
0b:73:ae:5d:f9:63:1c:ec:e7:4c:5e:e7:73:f5:32:
02:e0:cc:35:7d:e3:e0:e8:40:16:e8:51:bd:eb:7a:
02:df:03:3d:3c:38:e8:df:fa:9d:73:ce:d5:8b:92:
be:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E3:67:C9:F7:85:BB:0D:57:C4:43:CE:04:D9:6A:16:C1:1D:F2:CD
X509v3 Authority Key Identifier:
keyid:BB:64:1D:5A:52:F4:40:F7:98:9E:3C:1F:61:6E:95:AE:7C:F5:0B:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u2QdWlL0QPeYnjwfYW6Vrnz1C6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/x-NnyfeFuw1XxEPOBNlqFsEd8s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/u2QdWlL0QPeYnjwfYW6Vrnz1C6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.207.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c8:a9:5a:87:d9:c9:2b:68:d7:6a:4d:46:fe:98:86:44:0f:
48:7b:14:db:55:04:3e:39:90:34:c3:aa:23:bf:b4:ae:d9:88:
a9:9c:f5:4d:d1:9a:24:7e:91:f8:33:b1:dd:b1:8e:23:7c:46:
5a:02:93:8a:ea:b9:5a:9f:48:a8:3b:39:e6:0e:b4:c4:52:d2:
dc:fc:dd:69:b8:7c:c6:1a:95:de:a5:ba:54:05:15:27:7f:ff:
a3:f8:d6:57:78:86:ca:0b:d1:e4:43:8e:57:f0:0b:b0:e1:f2:
b9:02:51:f6:50:90:70:db:d4:91:39:8f:61:57:0a:df:76:d9:
30:1c:93:ae:c3:3b:2b:ff:31:75:ad:b5:6b:61:c9:30:4c:10:
67:f1:a7:5f:1a:f6:44:8b:a9:8f:68:83:f5:ca:e7:2a:f1:b4:
f0:ab:68:4c:3d:e3:9b:90:5b:34:b4:c6:c2:8c:75:e9:e2:a2:
48:23:b1:7d:a1:07:f9:fb:59:ff:1c:98:a5:3e:0f:fd:7b:92:
53:3e:94:c4:66:82:56:68:b7:bd:80:55:88:03:9f:c9:6c:96:
2c:50:c0:39:60:31:40:2e:d6:b7:67:47:ed:48:b6:c7:9c:28:
f5:3c:b9:4c:7a:43:db:69:c1:86:0c:5f:b0:67:8f:c0:69:2d:
0b:9e:24:7d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDUdrRMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJi
NjQxZDVhNTJmNDQwZjc5ODllM2MxZjYxNmU5NWFlN2NmNTBiYTgwHhcNMjIwMTAx
MDA1ODA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhjN2UzNjdjOWY3ODVi
YjBkNTdjNDQzY2UwNGQ5NmExNmMxMWRmMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApqN/NkSl5EkxT+N962A/HtwugKm0BIUdC+P2L0xy6FXqwv9G
VEw034Bp7qXbXnBY5I6T9YXDWHTQtAYH5yJPa+63FF0MqJW/OKX9zR7wPFRHpjYs
2xkBTZlbkAcNPS+SShsddl3tIpqmTTL51avOZcL0Yk4GaxLRnQf2gRpChw1br0ds
cQpljh5WfjMB2I4WWcP+c+jaRPlrplgaQFIiBEEWtR4bCtWj8s9fn+2qiWgLX4lU
MVnSN0pqC25cYpVGFu95Fz7EwlQz+K6J56pW4vALc65d+WMc7OdMXudz9TIC4Mw1
fePg6EAW6FG963oC3wM9PDjo3/qdc87Vi5K+LwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFMfjZ8n3hbsNV8RDzgTZahbBHfLNMB8GA1UdIwQYMBaAFLtkHVpS9ED3mJ48
H2Fula589QuoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dTJRZFdsTDBRUGVZbmp3ZllXNlZybnoxQzZnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hYS81M2U0MTUtMjg3Ni00NjUzLTlhMGEtNzA3OTg0NjNmNTBmLzEv
eC1ObnlmZUZ1dzFYeEVQT0JObHFGc0VkOHMwLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81
M2U0MTUtMjg3Ni00NjUzLTlhMGEtNzA3OTg0NjNmNTBmLzEvdTJRZFdsTDBRUGVZ
bmp3ZllXNlZybnoxQzZnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfPMA0GCSqGSIb3DQEBCwUAA4IB
AQBXyKlah9nJK2jXak1G/piGRA9IexTbVQQ+OZA0w6ojv7Su2YipnPVN0ZokfpH4
M7HdsY4jfEZaApOK6rlan0ioOznmDrTEUtLc/N1puHzGGpXepbpUBRUnf/+j+NZX
eIbKC9HkQ45X8Auw4fK5AlH2UJBw29SROY9hVwrfdtkwHJOuwzsr/zF1rbVrYckw
TBBn8adfGvZEi6mPaIP1yucq8bTwq2hMPeObkFs0tMbCjHXp4qJII7F9oQf5+1n/
HJilPg/9e5JTPpTEZoJWaLe9gFWIA5/JbJYsUMA5YDFALta3Z0ftSLbHnCj1PLlM
ekPbacGGDF+wZ4/AaS0LniR9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:38 2024 by rpki-client on console-ams.rpki-client.org