Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yCcFWT2KHp-kJNkNnLV7WkEuWiY.roa
File: yCcFWT2KHp-kJNkNnLV7WkEuWiY.roa (raw, json)
Hash identifier: 9jScq3A3EvXR23Gj+2SgoYn8AXMNkITWSQtSHoZeUsY=
Subject key identifier: C8:27:05:59:3D:8A:1E:9F:A4:24:D9:0D:9C:B5:7B:5A:41:2E:5A:26
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0ACA5797
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yCcFWT2KHp-kJNkNnLV7WkEuWiY.roa
Signing time: Thu 12 May 2022 07:49:02 +0000
ROA not before: Thu 12 May 2022 07:49:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 89.116.60.0/22 maxlen: 22
89.117.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181032855 (0xaca5797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 12 07:49:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c82705593d8a1e9fa424d90d9cb57b5a412e5a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:06:c3:16:32:31:62:02:4c:a6:82:20:11:ad:
c9:ba:2f:c1:30:89:3f:65:23:05:25:17:17:97:95:
df:00:ca:cf:a4:56:c4:9a:c8:9a:8f:47:91:88:20:
e7:c0:84:c3:a8:8a:74:77:be:f8:c6:78:67:6e:44:
10:8c:ad:09:7e:41:eb:71:ce:5e:24:cf:c2:47:16:
38:f3:96:ba:5b:61:80:38:5b:bd:bb:e0:88:e1:1b:
84:4f:08:7d:06:bb:83:37:b3:c5:5c:9b:45:dd:f9:
3d:59:2f:f1:8e:31:f3:2c:b0:df:7e:15:d0:0d:36:
c2:26:f6:10:83:fd:a3:0c:37:f2:13:d1:ca:17:57:
8e:c8:17:95:8e:86:90:17:89:f2:32:27:4e:41:b4:
72:29:ee:8c:2d:6b:54:b2:02:b8:fd:b9:02:f9:11:
80:ba:63:bb:1e:93:0b:7b:0f:a6:7c:96:ed:d7:64:
ee:72:b0:a0:c9:5c:b7:98:39:9b:a6:eb:89:bf:ba:
09:87:fb:90:b7:44:10:79:0e:21:f6:5b:30:24:da:
51:35:f4:07:d3:2c:31:40:e1:c4:54:a9:97:f9:1d:
d6:7c:ab:9b:78:d5:0e:59:76:b5:72:d9:11:7e:64:
bc:f2:02:ca:cd:ab:59:dd:fb:45:3c:17:81:67:ee:
ec:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:27:05:59:3D:8A:1E:9F:A4:24:D9:0D:9C:B5:7B:5A:41:2E:5A:26
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yCcFWT2KHp-kJNkNnLV7WkEuWiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.60.0/22
89.117.152.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:9a:72:6f:a4:30:70:1b:51:2a:f7:6a:7d:87:1f:63:d6:b9:
55:2e:7f:be:e8:6f:2e:78:4f:3d:2d:b9:45:d3:be:8f:cf:4b:
2b:d5:03:5f:70:d8:3e:a4:03:92:cf:73:ee:5f:4d:ba:d0:b5:
fb:29:65:ca:3d:b5:c3:bb:10:e8:4f:17:af:ee:e6:76:3d:cc:
99:ee:7a:02:4a:25:a2:05:33:1d:55:64:23:5a:43:d8:ab:dd:
95:24:80:a6:ec:02:07:c9:87:11:64:4d:ce:b4:f2:09:2b:28:
aa:3b:d7:f7:9d:a6:59:0d:5e:96:43:35:e3:dc:b3:6d:a7:fe:
06:60:e7:6c:04:4e:6f:a8:9a:8c:56:68:b8:c4:e3:e1:32:77:
4e:f4:a5:87:c7:3f:b1:67:fe:5a:7d:5a:51:9f:5e:e5:9e:b6:
22:aa:21:60:53:38:0c:7a:62:29:be:03:f4:a1:be:35:bb:d0:
10:ce:94:71:cd:42:a4:e0:b2:bb:68:79:b2:24:5a:de:cd:39:
8d:25:b4:97:f2:2a:29:75:72:0d:51:ab:94:3a:7d:4b:19:4e:
4b:54:51:1e:9f:5d:f3:4f:ff:d1:21:70:c2:e7:ef:90:29:f3:
26:45:05:0a:ef:7d:5d:7c:20:99:71:8c:fd:56:4d:be:d8:78:
cc:5b:60:39
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECspXlzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDUx
MjA3NDkwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzgyNzA1NTkzZDhh
MWU5ZmE0MjRkOTBkOWNiNTdiNWE0MTJlNWEyNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJwGwxYyMWICTKaCIBGtybovwTCJP2UjBSUXF5eV3wDKz6RW
xJrImo9HkYgg58CEw6iKdHe++MZ4Z25EEIytCX5B63HOXiTPwkcWOPOWulthgDhb
vbvgiOEbhE8IfQa7gzezxVybRd35PVkv8Y4x8yyw334V0A02wib2EIP9oww38hPR
yhdXjsgXlY6GkBeJ8jInTkG0cinujC1rVLICuP25AvkRgLpjux6TC3sPpnyW7ddk
7nKwoMlct5g5m6brib+6CYf7kLdEEHkOIfZbMCTaUTX0B9MsMUDhxFSpl/kd1nyr
m3jVDll2tXLZEX5kvPICys2rWd37RTwXgWfu7LsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTIJwVZPYoen6Qk2Q2ctXtaQS5aJjAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L3lDY0ZXVDJLSHAta0pOa05uTFY3V2tFdVdpWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAll0PAMEAll1mDANBgkqhkiG9w0B
AQsFAAOCAQEAmppyb6QwcBtRKvdqfYcfY9a5VS5/vuhvLnhPPS25RdO+j89LK9UD
X3DYPqQDks9z7l9NutC1+yllyj21w7sQ6E8Xr+7mdj3Mme56AkologUzHVVkI1pD
2KvdlSSApuwCB8mHEWRNzrTyCSsoqjvX952mWQ1elkM149yzbaf+BmDnbAROb6ia
jFZouMTj4TJ3TvSlh8c/sWf+Wn1aUZ9e5Z62IqohYFM4DHpiKb4D9KG+NbvQEM6U
cc1CpOCyu2h5siRa3s05jSW0l/IqKXVyDVGrlDp9SxlOS1RRHp9d80//0SFwwufv
kCnzJkUFCu99XXwgmXGM/VZNvth4zFtgOQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:14 2025 by rpki-client