Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/1-af03tBUgMyPLnZGN1OVSZSdqng.roa
File: 1-af03tBUgMyPLnZGN1OVSZSdqng.roa (raw, json)
Hash identifier: J5TYtxp6mS50nKGJEjjLKn7dGKkIN+uemVkKTzNzinU=
Subject key identifier: F9:A7:F4:DE:D0:54:80:CC:8F:2E:76:46:37:53:95:49:94:9D:AA:78
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 01832103D747F907277EF4CB0034526A597A
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/1-af03tBUgMyPLnZGN1OVSZSdqng.roa
Signing time: Fri 09 Sep 2022 06:50:43 +0000
ROA not before: Fri 09 Sep 2022 06:50:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46450
IP address blocks: 89.116.80.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:03:d7:47:f9:07:27:7e:f4:cb:00:34:52:6a:59:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Sep 9 06:50:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9a7f4ded05480cc8f2e764637539549949daa78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:75:54:8f:91:ca:f8:e3:06:74:58:8b:bf:32:
c2:13:bd:48:df:17:90:2b:87:b7:8f:a5:ea:43:d5:
e3:3f:96:d0:19:57:db:3b:b7:95:4c:49:51:95:79:
c2:09:dc:9d:12:d6:97:36:90:33:8e:d3:12:f0:e8:
01:da:3e:21:56:5a:c1:90:7a:97:ce:cf:5b:44:a7:
3b:fb:9e:96:1d:65:60:e9:d2:c1:3a:ff:fb:94:1c:
5d:91:e3:7e:43:ff:21:c3:bf:d0:b5:cd:be:81:09:
9b:19:7f:06:d7:8b:25:b9:2b:56:03:a1:35:01:2f:
6c:dd:bf:fa:ef:27:29:58:f8:66:32:a7:87:b3:67:
ba:a4:97:22:a8:02:93:b5:2b:8a:9f:5b:67:b6:2b:
8d:6e:2a:fd:17:68:0d:c0:f2:05:a5:36:07:b6:65:
fd:10:46:97:be:ca:e5:9f:06:6e:de:43:5d:19:6d:
e0:19:50:c3:4e:39:2f:ee:c0:fa:ba:b0:d5:09:e6:
c4:3f:e7:a0:5a:0f:59:44:a3:fb:49:13:1f:98:3b:
e9:6c:e2:1e:cf:23:08:97:c4:0e:57:03:e5:97:04:
42:57:d1:2c:16:59:b2:fb:58:6d:5c:d5:70:fb:4a:
f0:48:e8:df:7c:40:d0:be:14:52:1d:ca:25:45:6c:
c1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A7:F4:DE:D0:54:80:CC:8F:2E:76:46:37:53:95:49:94:9D:AA:78
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/1-af03tBUgMyPLnZGN1OVSZSdqng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.80.0/21
Signature Algorithm: sha256WithRSAEncryption
32:67:d2:41:b3:d2:8b:18:05:37:4a:3f:00:da:db:f6:4f:d9:
00:b5:3d:cd:51:0c:4c:1b:a4:53:ab:d3:e1:8f:e7:b4:84:b8:
08:ca:90:87:8b:f8:d6:66:fb:70:66:5c:fb:b9:f2:53:ca:1c:
f5:0c:f1:8a:36:f8:7e:36:d9:85:94:bb:91:62:87:99:d4:ea:
34:24:ed:e1:4f:d8:bd:8b:d9:40:55:29:9a:45:3d:89:1a:20:
df:1e:8b:26:db:b7:67:73:11:75:2f:41:59:3f:72:ad:29:70:
6d:1c:61:2f:92:d6:ad:71:c0:6e:a8:6b:72:92:bd:f1:95:08:
61:b4:94:b8:a6:f5:53:8f:55:04:ca:9f:d0:e7:22:ba:50:88:
96:e8:24:d2:fa:c5:ce:b0:5e:b8:17:9c:fb:00:4b:06:9c:6c:
ea:87:70:07:6c:c7:7a:5b:1a:06:21:83:30:20:22:b2:c6:0a:
3a:a5:e2:1e:b8:53:7b:41:a5:73:81:b0:a6:a5:cb:78:74:da:
33:d7:78:83:ce:a6:41:df:a3:e2:dc:19:95:94:77:dd:89:cf:
00:ae:55:da:5f:fa:aa:dd:bb:f6:8e:d2:0c:c0:23:ec:8b:1e:
b7:41:ab:61:ba:08:a8:09:13:7c:62:8f:54:a2:de:1d:2f:db:
83:43:d9:8d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYMhA9dH+QcnfvTLADRSall6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0Njk4NTg1ZTVlYmQxMWM5NjljN2VkNGEzMjBlZGFmYzlk
MTc4MjIwHhcNMjIwOTA5MDY1MDQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOWE3ZjRkZWQwNTQ4MGNjOGYyZTc2NDYzNzUzOTU0OTk0OWRhYTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm3VUj5HK+OMGdFiLvzLCE71I3xeQ
K4e3j6XqQ9XjP5bQGVfbO7eVTElRlXnCCdydEtaXNpAzjtMS8OgB2j4hVlrBkHqX
zs9bRKc7+56WHWVg6dLBOv/7lBxdkeN+Q/8hw7/Qtc2+gQmbGX8G14sluStWA6E1
AS9s3b/67ycpWPhmMqeHs2e6pJciqAKTtSuKn1tntiuNbir9F2gNwPIFpTYHtmX9
EEaXvsrlnwZu3kNdGW3gGVDDTjkv7sD6urDVCebEP+egWg9ZRKP7SRMfmDvpbOIe
zyMIl8QOVwPllwRCV9EsFlmy+1htXNVw+0rwSOjffEDQvhRSHcolRWzBXQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPmn9N7QVIDMjy52RjdTlUmUnap4MB8GA1UdIwQY
MBaAFMRphYXl69Eclpx+1KMg7a/J0XgiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEdtRmhlWHIwUnlXbkg3VW95RHRyOG5SZUNJLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS81MzEwZGEtNjgyMS00NjczLTllOTgt
OWQ2MDAxZjc4YTcwLzEvMS1hZjAzdEJVZ015UExuWkdOMU9WU1pTZHFuZy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3
MC8xL3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1l0UDAN
BgkqhkiG9w0BAQsFAAOCAQEAMmfSQbPSixgFN0o/ANrb9k/ZALU9zVEMTBukU6vT
4Y/ntIS4CMqQh4v41mb7cGZc+7nyU8oc9Qzxijb4fjbZhZS7kWKHmdTqNCTt4U/Y
vYvZQFUpmkU9iRog3x6LJtu3Z3MRdS9BWT9yrSlwbRxhL5LWrXHAbqhrcpK98ZUI
YbSUuKb1U49VBMqf0OciulCIlugk0vrFzrBeuBec+wBLBpxs6odwB2zHelsaBiGD
MCAissYKOqXiHrhTe0Glc4GwpqXLeHTaM9d4g86mQd+j4twZlZR33YnPAK5V2l/6
qt279o7SDMAj7Iset0GrYboIqAkTfGKPVKLeHS/bg0PZjQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-fra.rpki-client.org