Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/tHbB7EqbC2j9nd4lLSwwU1IyA-I.roa
File: tHbB7EqbC2j9nd4lLSwwU1IyA-I.roa (raw, json)
Hash identifier: YqFKBoDForBTGJrJsbgHvnJw5XcSIBd3gzjbfF57YvM=
Subject key identifier: B4:76:C1:EC:4A:9B:0B:68:FD:9D:DE:25:2D:2C:30:53:52:32:03:E2
Certificate issuer: /CN=d997d06eda361d935588e427f3d9833f8f7d1d20
Certificate serial: 0185EF52535B57E931C25A9ADDCE42BB39CC
Authority key identifier: D9:97:D0:6E:DA:36:1D:93:55:88:E4:27:F3:D9:83:3F:8F:7D:1D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZfQbto2HZNViOQn89mDP499HSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/tHbB7EqbC2j9nd4lLSwwU1IyA-I.roa
Signing time: Thu 26 Jan 2023 18:23:47 +0000
ROA not before: Thu 26 Jan 2023 18:23:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 84.252.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ef:52:53:5b:57:e9:31:c2:5a:9a:dd:ce:42:bb:39:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d997d06eda361d935588e427f3d9833f8f7d1d20
Validity
Not Before: Jan 26 18:23:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b476c1ec4a9b0b68fd9dde252d2c3053523203e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:59:cd:3f:5f:ae:12:73:4b:d5:df:96:b3:49:
42:51:07:1c:69:8c:b3:22:d9:77:7d:f1:c7:94:07:
41:75:a3:63:8a:87:99:85:8f:1e:bc:55:f2:c0:49:
af:f2:b8:2d:8c:d2:88:81:db:c6:d4:da:b0:2c:7f:
98:0d:4c:56:4a:3d:14:08:3e:8c:ef:61:3f:09:e4:
eb:02:15:b5:de:21:71:1f:10:45:d3:e7:29:c4:14:
a0:11:ab:ae:b2:15:2f:31:d6:8a:59:a4:75:21:cb:
25:88:43:b5:07:d6:35:fd:64:dc:39:be:22:56:c2:
d9:50:5b:f9:24:15:0e:5b:6e:bc:95:13:71:1e:7d:
ea:a2:a9:11:be:36:19:2e:95:90:3c:4c:20:f0:eb:
87:e7:2d:db:f5:9a:3f:2e:12:a0:4d:fa:2a:c1:6e:
1b:a4:bc:75:2c:9b:2c:a1:16:c0:c8:ca:e9:54:75:
be:c5:57:cf:f4:f7:a9:3a:3b:21:a7:00:6e:61:69:
47:a4:a1:8e:9b:c9:5b:00:b6:8c:3a:55:e1:ba:c8:
7b:42:2d:20:bc:2a:a0:e9:26:4f:5a:e4:96:e1:d3:
ab:2f:d4:d2:23:ae:8b:ad:05:13:1e:20:e9:b3:ce:
a5:01:5b:4e:d6:ab:ec:7e:c7:c3:c3:66:b9:1a:1d:
39:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:76:C1:EC:4A:9B:0B:68:FD:9D:DE:25:2D:2C:30:53:52:32:03:E2
X509v3 Authority Key Identifier:
keyid:D9:97:D0:6E:DA:36:1D:93:55:88:E4:27:F3:D9:83:3F:8F:7D:1D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZfQbto2HZNViOQn89mDP499HSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/tHbB7EqbC2j9nd4lLSwwU1IyA-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/2ZfQbto2HZNViOQn89mDP499HSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.112.0/24
Signature Algorithm: sha256WithRSAEncryption
79:a9:41:bb:97:4d:b0:a2:3d:a9:61:52:6b:c1:15:90:d7:2e:
8c:01:1d:b5:c9:ab:7c:55:2f:13:d8:94:65:0f:59:73:90:3e:
56:04:9a:b3:3a:19:2d:b4:4d:f4:01:0b:aa:dc:b4:b9:5e:eb:
a3:b8:11:33:c8:ff:54:da:a9:0b:f4:23:fd:98:e4:b9:7b:aa:
83:8f:36:f7:16:2e:13:d9:c0:15:04:83:cc:37:d7:09:b5:56:
11:25:5f:e5:8d:9d:fb:43:5b:f0:6b:35:51:5d:c8:3f:28:82:
b9:80:33:0b:c9:8b:d5:43:8d:6f:93:c6:40:65:a1:6d:ac:69:
57:ff:29:43:d8:e3:45:c0:fa:7e:61:72:65:48:a2:f6:93:80:
2d:19:46:f1:9d:09:d2:4c:ad:78:24:07:9a:a3:af:16:fa:e9:
77:da:82:92:b0:1c:7f:a3:c0:96:4e:73:44:96:2d:22:6a:0a:
48:c0:46:94:83:19:0b:22:34:e9:c8:fa:f7:d1:06:f4:19:ac:
c8:bd:bc:9c:98:5b:09:8d:f4:ba:73:71:03:52:7f:3e:1b:74:
14:be:ab:4d:96:53:e6:1b:bf:5e:fb:c9:2f:36:d8:27:2e:08:
b7:c6:42:19:ae:72:c8:e8:fd:f8:6a:8b:4c:d3:4f:bf:96:ff:
dc:f7:23:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXvUlNbV+kxwlqa3c5CuznMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5OTdkMDZlZGEzNjFkOTM1NTg4ZTQyN2YzZDk4MzNmOGY3
ZDFkMjAwHhcNMjMwMTI2MTgyMzQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDc2YzFlYzRhOWIwYjY4ZmQ5ZGRlMjUyZDJjMzA1MzUyMzIwM2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVnNP1+uEnNL1d+Ws0lCUQccaYyz
Itl3ffHHlAdBdaNjioeZhY8evFXywEmv8rgtjNKIgdvG1NqwLH+YDUxWSj0UCD6M
72E/CeTrAhW13iFxHxBF0+cpxBSgEauushUvMdaKWaR1IcsliEO1B9Y1/WTcOb4i
VsLZUFv5JBUOW268lRNxHn3qoqkRvjYZLpWQPEwg8OuH5y3b9Zo/LhKgTfoqwW4b
pLx1LJssoRbAyMrpVHW+xVfP9PepOjshpwBuYWlHpKGOm8lbALaMOlXhush7Qi0g
vCqg6SZPWuSW4dOrL9TSI66LrQUTHiDps86lAVtO1qvsfsfDw2a5Gh05JwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLR2wexKmwto/Z3eJS0sMFNSMgPiMB8GA1UdIwQY
MBaAFNmX0G7aNh2TVYjkJ/PZgz+PfR0gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlpmUWJ0bzJIWk5WaU9Rbjg5bURQNDk5SFNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC83MDJkYTUtYzJjYi00YjY2LWIyOTkt
ZGM1ZTBjNDZlNzZjLzEvdEhiQjdFcWJDMmo5bmQ0bExTd3dVMUl5QS1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC83MDJkYTUtYzJjYi00YjY2LWIyOTktZGM1ZTBjNDZlNzZj
LzEvMlpmUWJ0bzJIWk5WaU9Rbjg5bURQNDk5SFNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVPxwMA0G
CSqGSIb3DQEBCwUAA4IBAQB5qUG7l02woj2pYVJrwRWQ1y6MAR21yat8VS8T2JRl
D1lzkD5WBJqzOhkttE30AQuq3LS5XuujuBEzyP9U2qkL9CP9mOS5e6qDjzb3Fi4T
2cAVBIPMN9cJtVYRJV/ljZ37Q1vwazVRXcg/KIK5gDMLyYvVQ41vk8ZAZaFtrGlX
/ylD2ONFwPp+YXJlSKL2k4AtGUbxnQnSTK14JAeao68W+ul32oKSsBx/o8CWTnNE
li0iagpIwEaUgxkLIjTpyPr30Qb0GazIvbycmFsJjfS6c3EDUn8+G3QUvqtNllPm
G79e+8kvNtgnLgi3xkIZrnLI6P34aotM00+/lv/c9yOg
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:04 2023 by rpki-client on console-ams.rpki-client.org