Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/MkFIuVi7H5AykAq8crxiqKrnJfQ.roa
File: MkFIuVi7H5AykAq8crxiqKrnJfQ.roa (raw, json)
Hash identifier: X0i0jyy40QZ7rMCUDIxFIn/xIj8rhRQM1/myUjSMpPU=
Subject key identifier: 32:41:48:B9:58:BB:1F:90:32:90:0A:BC:72:BC:62:A8:AA:E7:25:F4
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 018572E831C1F5FFE6D02E2CA13307BC858C
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/MkFIuVi7H5AykAq8crxiqKrnJfQ.roa
Signing time: Mon 02 Jan 2023 14:34:57 +0000
ROA not before: Mon 02 Jan 2023 14:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43956
IP address blocks: 80.233.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:31:c1:f5:ff:e6:d0:2e:2c:a1:33:07:bc:85:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 2 14:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=324148b958bb1f9032900abc72bc62a8aae725f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0f:81:cd:55:0d:66:71:26:ce:03:62:1f:ae:
2f:e4:65:c4:78:2a:bc:58:aa:ff:c9:97:b0:8f:59:
8a:63:5c:a9:41:b7:56:42:3d:f4:f5:e6:d6:ad:40:
5b:04:3c:95:3d:45:e7:49:00:a0:b8:ef:0f:47:3f:
cf:7c:79:34:c7:01:1b:26:96:74:fc:81:50:1c:29:
6d:da:4f:94:09:a4:98:b7:8b:84:cf:8b:2c:1c:81:
6b:85:4a:76:32:11:8f:3b:70:3f:4c:42:df:d4:b6:
b2:f4:00:67:19:27:a9:51:34:4d:cb:90:63:ff:98:
6a:45:bc:69:27:47:b0:6f:83:bd:cc:ee:a9:5d:29:
be:56:01:ce:63:1d:04:32:42:52:e9:aa:f8:26:25:
c1:e8:68:91:12:28:14:c6:0d:f6:da:b6:8a:2b:ef:
b2:ec:2c:0f:6c:16:74:f8:43:0c:3d:08:99:af:70:
25:31:d8:9f:1d:9f:63:8d:85:61:fa:b1:14:85:d0:
c8:cf:72:3c:76:a3:d7:0f:f1:f4:f1:f4:82:8d:fe:
9e:e6:80:90:97:cd:01:80:f7:19:5a:14:5d:1e:3f:
68:3d:cd:52:c9:86:d5:59:27:08:88:71:45:00:01:
0f:35:4f:06:27:10:a2:45:a2:0f:ce:67:1a:e9:24:
81:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:41:48:B9:58:BB:1F:90:32:90:0A:BC:72:BC:62:A8:AA:E7:25:F4
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/MkFIuVi7H5AykAq8crxiqKrnJfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.249.0/24
Signature Algorithm: sha256WithRSAEncryption
82:55:63:02:cc:12:ba:ee:f5:bd:ca:c2:fc:ef:15:f4:8a:21:
fb:2d:98:bf:f0:2d:e8:c3:c4:b7:be:de:92:9d:91:ef:93:d6:
ab:37:f2:50:32:2e:9a:d6:36:9e:51:cd:2e:53:11:65:9e:f3:
43:4e:f3:01:93:bc:34:c0:c4:80:82:99:b1:85:44:29:64:3b:
4f:15:2a:90:ec:e4:db:d1:fd:a7:4c:10:37:d3:f7:e7:7c:8e:
ac:27:48:b5:6f:ca:34:b8:a4:29:36:cc:cc:9e:de:30:7a:ad:
29:f3:25:9f:aa:66:63:a1:32:3b:70:2f:c0:82:1d:0b:e9:79:
66:56:4a:a1:4f:b0:3a:8b:0b:b7:6f:61:28:ec:42:4f:91:71:
08:30:57:35:d2:70:0b:d5:5f:1d:67:8b:14:48:4f:d0:6b:1c:
01:f9:5a:4d:00:69:91:31:97:d0:d3:47:60:c5:78:9e:e4:c6:
f9:12:ab:7a:f0:c7:72:ee:fd:63:50:40:18:89:40:d3:eb:5a:
eb:20:d4:5d:51:0b:fc:09:34:eb:56:9e:c6:6e:2a:01:57:96:
8b:67:2e:00:c6:eb:df:de:bc:21:53:9c:d3:b8:56:b1:ff:07:
ce:02:e1:61:b6:c2:7e:37:e9:f3:7b:50:12:7f:fa:52:cf:b1:
90:04:04:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVy6DHB9f/m0C4soTMHvIWMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMzg5N2ZjN2E5NjNmMTQyMTVkNThlMTgyNDE0NGFiMTlm
ZDU4MTAwHhcNMjMwMTAyMTQzNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjQxNDhiOTU4YmIxZjkwMzI5MDBhYmM3MmJjNjJhOGFhZTcyNWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQ+BzVUNZnEmzgNiH64v5GXEeCq8
WKr/yZewj1mKY1ypQbdWQj309ebWrUBbBDyVPUXnSQCguO8PRz/PfHk0xwEbJpZ0
/IFQHClt2k+UCaSYt4uEz4ssHIFrhUp2MhGPO3A/TELf1Lay9ABnGSepUTRNy5Bj
/5hqRbxpJ0ewb4O9zO6pXSm+VgHOYx0EMkJS6ar4JiXB6GiREigUxg322raKK++y
7CwPbBZ0+EMMPQiZr3AlMdifHZ9jjYVh+rEUhdDIz3I8dqPXD/H08fSCjf6e5oCQ
l80BgPcZWhRdHj9oPc1SyYbVWScIiHFFAAEPNU8GJxCiRaIPzmca6SSBeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDJBSLlYux+QMpAKvHK8Yqiq5yX0MB8GA1UdIwQY
MBaAFBM4l/x6lj8UIV1Y4YJBRKsZ/VgQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXppWF9IcVdQeFFoWFZqaGdrRkVxeG45V0JBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy84YmU0YWYtNjJiZS00MTgwLWJlYzkt
ZjJiODdmMzhiOWRkLzEvTWtGSXVWaTdINUF5a0FxOGNyeGlxS3JuSmZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy84YmU0YWYtNjJiZS00MTgwLWJlYzktZjJiODdmMzhiOWRk
LzEvRXppWF9IcVdQeFFoWFZqaGdrRkVxeG45V0JBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUOn5MA0G
CSqGSIb3DQEBCwUAA4IBAQCCVWMCzBK67vW9ysL87xX0iiH7LZi/8C3ow8S3vt6S
nZHvk9arN/JQMi6a1jaeUc0uUxFlnvNDTvMBk7w0wMSAgpmxhUQpZDtPFSqQ7OTb
0f2nTBA30/fnfI6sJ0i1b8o0uKQpNszMnt4weq0p8yWfqmZjoTI7cC/Agh0L6Xlm
VkqhT7A6iwu3b2Eo7EJPkXEIMFc10nAL1V8dZ4sUSE/QaxwB+VpNAGmRMZfQ00dg
xXie5Mb5Eqt68Mdy7v1jUEAYiUDT61rrINRdUQv8CTTrVp7GbioBV5aLZy4Axuvf
3rwhU5zTuFax/wfOAuFhtsJ+N+nze1ASf/pSz7GQBATv
-----END CERTIFICATE-----
Generated at Fri Sep 15 08:34:53 2023 by rpki-client on console-fra.rpki-client.org