Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/YX6yxcasTW8MtaipEXCVSeXx9aw.roa
File: YX6yxcasTW8MtaipEXCVSeXx9aw.roa (raw, json)
Hash identifier: RkqMrDNuxLkbNHX7MVCVGYbrmH+f9ommVTe+LOeCvyA=
Subject key identifier: 61:7E:B2:C5:C6:AC:4D:6F:0C:B5:A8:A9:11:70:95:49:E5:F1:F5:AC
Certificate issuer: /CN=a02347bc9d973355e4801f289ca075f9d1e18d48
Certificate serial: B4FE
Authority key identifier: A0:23:47:BC:9D:97:33:55:E4:80:1F:28:9C:A0:75:F9:D1:E1:8D:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCNHvJ2XM1XkgB8onKB1-dHhjUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/YX6yxcasTW8MtaipEXCVSeXx9aw.roa
Signing time: Wed 01 Jun 2022 07:38:23 +0000
ROA not before: Wed 01 Jun 2022 07:38:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206737
IP address blocks: 185.109.50.0/24 maxlen: 24
2a0e:4b80::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46334 (0xb4fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a02347bc9d973355e4801f289ca075f9d1e18d48
Validity
Not Before: Jun 1 07:38:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=617eb2c5c6ac4d6f0cb5a8a911709549e5f1f5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:0a:0c:9a:21:59:d1:e0:32:19:c1:8b:98:
34:e8:b2:34:c2:20:20:ee:7a:51:22:ad:16:d6:ce:
6b:a7:b8:2e:f1:6d:ec:3f:d6:b4:7d:7f:0a:63:a6:
b8:43:c7:ca:90:aa:76:a9:10:f3:23:73:0a:f9:d3:
54:59:b9:92:f3:be:ed:ec:97:09:84:78:0b:1d:87:
c6:12:8c:ae:4b:eb:6b:49:74:2a:86:3d:24:b4:3e:
d1:b1:48:98:c0:e0:5d:96:09:e0:69:f2:d7:93:cf:
b6:38:e5:ee:b6:f1:25:9f:ca:3a:2d:23:b4:38:a1:
22:65:df:03:a4:84:b9:6d:e6:fe:2d:13:c8:75:3f:
2d:85:8f:71:c9:13:8c:78:1d:3a:e9:a8:1d:a6:ec:
c2:d4:d4:28:b3:e1:44:9a:2a:1d:c3:48:79:28:32:
c5:bb:a5:dd:ad:8e:cf:e9:f8:05:17:ae:01:c0:b8:
74:08:a1:29:d8:c0:68:e8:b4:04:ba:c0:85:d3:25:
cd:be:69:60:af:ab:c6:90:65:5a:65:21:ad:88:4d:
aa:61:10:22:26:43:07:7a:f5:ea:7c:cd:10:d1:a7:
a7:f0:b3:14:dc:31:0c:d0:38:b9:6a:8a:fd:3d:1c:
e1:18:4c:24:2b:27:37:1c:34:fd:71:05:f2:e5:15:
1c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7E:B2:C5:C6:AC:4D:6F:0C:B5:A8:A9:11:70:95:49:E5:F1:F5:AC
X509v3 Authority Key Identifier:
keyid:A0:23:47:BC:9D:97:33:55:E4:80:1F:28:9C:A0:75:F9:D1:E1:8D:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCNHvJ2XM1XkgB8onKB1-dHhjUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/YX6yxcasTW8MtaipEXCVSeXx9aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/oCNHvJ2XM1XkgB8onKB1-dHhjUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.50.0/24
IPv6:
2a0e:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
2b:a3:c9:1f:9e:72:f2:72:ef:43:df:c0:a7:88:68:61:be:ea:
d3:ad:41:f8:85:db:8a:5a:4d:77:53:a8:45:9d:52:2e:bb:71:
f6:6b:9d:70:e5:de:3d:ed:90:a7:89:27:c5:f0:89:02:b9:88:
eb:ea:d8:b6:70:87:5e:d7:3f:31:de:24:13:69:be:fd:10:15:
d2:43:fe:af:f9:1e:58:8b:b8:19:a0:18:f1:bb:ed:a1:d3:4c:
9f:55:db:92:99:b4:01:be:da:47:6f:01:f4:30:cf:b4:a9:03:
a6:41:58:96:d3:71:19:33:72:c9:95:da:67:67:90:98:b2:44:
be:79:8c:a1:8d:c5:5b:29:6c:67:8c:ee:fc:13:4f:4c:f6:15:
e2:95:c6:80:42:86:3d:b1:24:c5:d5:e3:8f:10:b9:bc:68:66:
0f:bc:1d:97:e9:32:a8:74:b1:fe:21:ce:28:41:6d:58:e7:53:
b6:19:cd:7a:25:a6:0e:c8:1f:cf:c8:d4:5e:e0:6b:e8:fb:51:
aa:c7:4c:ee:0e:f6:43:b1:7e:6a:c2:f4:a4:f3:ad:f9:60:29:
8c:3d:04:85:08:bf:da:93:77:1e:57:7c:78:36:54:dc:a0:18:
49:fc:db:47:a4:e9:51:2d:d7:56:74:82:59:59:33:7c:92:54:
f5:92:70:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDALT+MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGEw
MjM0N2JjOWQ5NzMzNTVlNDgwMWYyODljYTA3NWY5ZDFlMThkNDgwHhcNMjIwNjAx
MDczODIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2MTdlYjJjNWM2YWM0
ZDZmMGNiNWE4YTkxMTcwOTU0OWU1ZjFmNWFjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzKIKDJohWdHgMhnBi5g06LI0wiAg7npRIq0W1s5rp7gu8W3s
P9a0fX8KY6a4Q8fKkKp2qRDzI3MK+dNUWbmS877t7JcJhHgLHYfGEoyuS+trSXQq
hj0ktD7RsUiYwOBdlgngafLXk8+2OOXutvEln8o6LSO0OKEiZd8DpIS5beb+LRPI
dT8thY9xyROMeB066agdpuzC1NQos+FEmiodw0h5KDLFu6XdrY7P6fgFF64BwLh0
CKEp2MBo6LQEusCF0yXNvmlgr6vGkGVaZSGtiE2qYRAiJkMHevXqfM0Q0aen8LMU
3DEM0Di5aor9PRzhGEwkKyc3HDT9cQXy5RUctQIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFGF+ssXGrE1vDLWoqRFwlUnl8fWsMB8GA1UdIwQYMBaAFKAjR7ydlzNV5IAf
KJygdfnR4Y1IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
b0NOSHZKMlhNMVhrZ0I4b25LQjEtZEhoalVnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iMC8xNDJjNGQtZDA3My00OGIyLWJjYTAtMzIyYjUxNzJhZjYxLzEv
WVg2eXhjYXNUVzhNdGFpcEVYQ1ZTZVh4OWF3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8x
NDJjNGQtZDA3My00OGIyLWJjYTAtMzIyYjUxNzJhZjYxLzEvb0NOSHZKMlhNMVhr
Z0I4b25LQjEtZEhoalVnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuW0yMA0EAgACMAcDBQMqDkuAMA0G
CSqGSIb3DQEBCwUAA4IBAQAro8kfnnLycu9D38CniGhhvurTrUH4hduKWk13U6hF
nVIuu3H2a51w5d497ZCniSfF8IkCuYjr6ti2cIde1z8x3iQTab79EBXSQ/6v+R5Y
i7gZoBjxu+2h00yfVduSmbQBvtpHbwH0MM+0qQOmQViW03EZM3LJldpnZ5CYskS+
eYyhjcVbKWxnjO78E09M9hXilcaAQoY9sSTF1eOPELm8aGYPvB2X6TKodLH+Ic4o
QW1Y51O2Gc16JaYOyB/PyNRe4Gvo+1Gqx0zuDvZDsX5qwvSk8635YCmMPQSFCL/a
k3ceV3x4NlTcoBhJ/NtHpOlRLddWdIJZWTN8klT1knDN
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:41 2025 by rpki-client