Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/AIoCnRwfn3BX5goFOVnZybiGqj0.roa
File: AIoCnRwfn3BX5goFOVnZybiGqj0.roa (raw, json)
Hash identifier: wBhiiZatnhMg1UvxjFk4sCLsY1JWSqROfE8tRfO7CQg=
Subject key identifier: 00:8A:02:9D:1C:1F:9F:70:57:E6:0A:05:39:59:D9:C9:B8:86:AA:3D
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 018572E83DE96BE88F826BFC69C2A240002C
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/AIoCnRwfn3BX5goFOVnZybiGqj0.roa
Signing time: Mon 02 Jan 2023 14:35:00 +0000
ROA not before: Mon 02 Jan 2023 14:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209517
IP address blocks: 213.175.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:3d:e9:6b:e8:8f:82:6b:fc:69:c2:a2:40:00:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 2 14:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=008a029d1c1f9f7057e60a053959d9c9b886aa3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f9:1b:d3:e4:8f:75:11:9b:0c:32:7d:28:62:
d4:07:cb:d5:eb:6e:ab:71:9d:56:48:5d:d7:94:e9:
39:d9:50:d0:53:65:5e:c9:3b:40:cc:99:30:71:a6:
a9:17:56:36:8b:64:2f:84:4a:06:1d:9f:50:96:ea:
0f:e9:39:05:9d:9d:90:82:51:e2:11:8a:03:dc:82:
b2:59:d0:57:86:1d:0c:72:1d:aa:a1:73:f1:cd:97:
b0:60:ac:1d:b8:07:64:63:3c:a6:e2:32:f4:f0:63:
24:7e:4e:77:e7:1b:39:e2:e7:f9:29:61:41:d2:ff:
66:9a:dd:10:ec:8d:32:ee:f2:ec:e8:c5:48:27:f0:
80:6f:25:bb:ca:21:bb:dd:cb:10:6f:05:0a:c7:06:
50:14:be:fd:06:60:a8:c0:73:10:11:7d:9e:15:de:
26:ae:9a:03:45:8a:10:4c:1a:69:94:e9:35:77:42:
68:18:7e:82:12:70:06:3f:51:2f:f6:b9:e3:87:36:
41:97:a3:eb:04:34:22:98:90:b5:a8:73:6c:d8:03:
67:d1:ef:f5:a6:6f:03:ad:ca:a5:ed:6f:84:04:f7:
27:6c:e1:17:89:fc:ac:5d:ff:42:9a:9a:67:87:46:
a3:f6:9a:4f:ee:63:0d:93:d0:4c:f6:c3:aa:b3:75:
be:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8A:02:9D:1C:1F:9F:70:57:E6:0A:05:39:59:D9:C9:B8:86:AA:3D
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/AIoCnRwfn3BX5goFOVnZybiGqj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.64.0/24
Signature Algorithm: sha256WithRSAEncryption
37:69:ea:66:90:54:31:31:0e:97:49:36:4c:71:a4:31:6b:31:
72:ec:25:95:3c:cd:cb:6b:85:3b:1c:ff:fa:59:09:e5:93:f6:
37:eb:5e:e5:aa:50:f8:de:fa:8f:da:fc:de:19:32:e9:c3:c5:
83:87:1f:33:23:87:c2:11:bd:5a:c5:3b:b0:59:3d:de:c7:c5:
ca:b5:04:54:eb:9a:96:f9:95:66:3e:23:a7:41:7c:be:c2:a1:
db:1f:a5:fc:da:8d:cf:c4:e4:97:7d:e1:5f:ec:c0:af:1e:04:
3e:37:8f:60:f8:8f:34:03:38:b0:05:69:07:b3:6d:10:7c:2f:
4d:9a:05:1a:14:d0:32:76:f1:c2:9e:d3:f4:a5:ff:12:84:67:
08:3f:00:ac:79:89:81:f9:c8:f0:9c:f5:41:70:29:4b:74:6a:
01:6b:b5:c1:ff:a0:58:09:2a:44:5d:74:09:c3:da:fb:cc:e8:
f5:e2:bb:47:0b:0f:ab:8b:74:6a:b9:47:6d:4b:3b:4b:28:e4:
4a:44:55:0b:06:0f:3c:15:f1:31:ff:df:84:01:4a:4a:cc:c5:
79:be:46:13:5c:72:16:29:b3:b2:33:c7:a9:d7:f5:21:62:64:
c3:e4:c0:ac:de:0c:4a:a1:31:f5:20:e6:1f:3a:35:40:8c:99:
eb:9c:d5:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVy6D3pa+iPgmv8acKiQAAsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMzg5N2ZjN2E5NjNmMTQyMTVkNThlMTgyNDE0NGFiMTlm
ZDU4MTAwHhcNMjMwMTAyMTQzNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDhhMDI5ZDFjMWY5ZjcwNTdlNjBhMDUzOTU5ZDljOWI4ODZhYTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/kb0+SPdRGbDDJ9KGLUB8vV626r
cZ1WSF3XlOk52VDQU2VeyTtAzJkwcaapF1Y2i2QvhEoGHZ9QluoP6TkFnZ2QglHi
EYoD3IKyWdBXhh0Mch2qoXPxzZewYKwduAdkYzym4jL08GMkfk535xs54uf5KWFB
0v9mmt0Q7I0y7vLs6MVIJ/CAbyW7yiG73csQbwUKxwZQFL79BmCowHMQEX2eFd4m
rpoDRYoQTBpplOk1d0JoGH6CEnAGP1Ev9rnjhzZBl6PrBDQimJC1qHNs2ANn0e/1
pm8Drcql7W+EBPcnbOEXifysXf9Cmppnh0aj9ppP7mMNk9BM9sOqs3W+RQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFACKAp0cH59wV+YKBTlZ2cm4hqo9MB8GA1UdIwQY
MBaAFBM4l/x6lj8UIV1Y4YJBRKsZ/VgQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXppWF9IcVdQeFFoWFZqaGdrRkVxeG45V0JBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy84YmU0YWYtNjJiZS00MTgwLWJlYzkt
ZjJiODdmMzhiOWRkLzEvQUlvQ25Sd2ZuM0JYNWdvRk9Wblp5YmlHcWowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy84YmU0YWYtNjJiZS00MTgwLWJlYzktZjJiODdmMzhiOWRk
LzEvRXppWF9IcVdQeFFoWFZqaGdrRkVxeG45V0JBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1a9AMA0G
CSqGSIb3DQEBCwUAA4IBAQA3aepmkFQxMQ6XSTZMcaQxazFy7CWVPM3La4U7HP/6
WQnlk/Y3617lqlD43vqP2vzeGTLpw8WDhx8zI4fCEb1axTuwWT3ex8XKtQRU65qW
+ZVmPiOnQXy+wqHbH6X82o3PxOSXfeFf7MCvHgQ+N49g+I80AziwBWkHs20QfC9N
mgUaFNAydvHCntP0pf8ShGcIPwCseYmB+cjwnPVBcClLdGoBa7XB/6BYCSpEXXQJ
w9r7zOj14rtHCw+ri3RquUdtSztLKORKRFULBg88FfEx/9+EAUpKzMV5vkYTXHIW
KbOyM8ep1/UhYmTD5MCs3gxKoTH1IOYfOjVAjJnrnNVk
-----END CERTIFICATE-----
Generated at Fri Sep 15 08:34:47 2023 by rpki-client on console-ams.rpki-client.org