Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ykRhpYS-P_1v1VmZD2zmxl4E4kA.roa
File: ykRhpYS-P_1v1VmZD2zmxl4E4kA.roa (raw, json)
Hash identifier: bFqmU2cOzQ3s6MXG8pjN0W7BmBb7+SuXCnl9osz+dz8=
Subject key identifier: CA:44:61:A5:84:BE:3F:FD:6F:D5:59:99:0F:6C:E6:C6:5E:04:E2:40
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0B1B804F
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ykRhpYS-P_1v1VmZD2zmxl4E4kA.roa
Signing time: Sat 28 May 2022 21:45:15 +0000
ROA not before: Sat 28 May 2022 21:45:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 89.117.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186351695 (0xb1b804f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 28 21:45:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca4461a584be3ffd6fd559990f6ce6c65e04e240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8b:64:0f:28:61:2d:80:22:87:5a:d6:3b:29:
3a:e9:cc:8d:67:e2:1a:f7:ca:c9:15:fa:74:4e:a4:
f9:87:bc:1f:c6:47:16:75:2f:5a:ad:be:9d:3f:1d:
a5:7f:97:36:f7:3c:63:94:44:7d:88:8f:f8:f7:87:
bd:64:f2:9b:b6:8f:08:7b:e3:f5:6a:50:1f:3a:a6:
e1:fe:0d:cd:08:59:b8:40:65:7a:fe:26:e9:f8:28:
da:63:01:cc:08:53:59:9b:5b:ef:12:c7:89:d4:68:
12:f2:32:d8:67:19:b2:6d:fc:bb:21:e2:fb:5f:eb:
8b:f0:43:3c:35:00:66:d1:79:9c:ae:18:6d:15:68:
ad:91:59:9f:9a:6f:9b:93:bb:64:c1:02:23:b0:81:
4a:68:82:b4:30:1b:c7:28:f2:61:c4:2c:a2:fa:0d:
0f:e2:b9:a4:12:e4:22:53:99:89:8f:5e:9d:7d:c5:
c1:05:af:07:d5:67:46:46:f4:22:91:f9:e5:16:ed:
0a:10:33:35:f9:9d:1c:27:2b:dc:12:01:85:7d:2f:
2c:fb:2a:4f:1c:57:2c:c3:85:d3:09:fb:06:71:67:
18:bb:ef:d7:0c:66:5a:e2:43:05:07:35:58:55:b6:
3c:7c:fa:4e:4a:e9:0f:e7:7c:1d:56:fe:5b:80:e0:
1c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:44:61:A5:84:BE:3F:FD:6F:D5:59:99:0F:6C:E6:C6:5E:04:E2:40
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ykRhpYS-P_1v1VmZD2zmxl4E4kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.104.0/22
Signature Algorithm: sha256WithRSAEncryption
97:8e:25:61:27:d9:c1:9d:e6:42:20:8e:88:97:a1:8e:69:b9:
a1:de:3f:55:65:ec:2d:c7:36:1d:76:5d:d9:30:6c:7b:a6:57:
41:00:7a:41:a1:93:8c:58:10:9e:ba:8a:2c:8b:27:83:2e:f8:
9c:a0:aa:9d:a9:54:eb:ed:09:47:ed:7c:99:3e:88:75:20:70:
a7:be:1d:05:50:de:2b:b4:cf:20:93:65:2c:86:1e:ea:fa:dd:
06:23:2c:50:65:16:30:1c:14:04:1c:6a:ed:5f:dd:6a:93:77:
0b:4f:2c:d9:7b:52:cb:dd:d7:62:de:09:b0:ed:7b:aa:4e:a8:
14:49:30:70:80:91:40:88:3e:82:eb:18:a7:e9:42:b8:b6:a8:
4c:6d:36:3e:a9:22:93:e7:24:a1:7f:16:d4:1f:0c:50:da:86:
9b:a3:a0:44:d6:48:51:cc:7c:22:8f:b0:5b:22:f5:0a:31:25:
9a:d6:54:61:e7:d1:fa:cc:d4:42:61:1e:43:bf:a9:1b:8c:cf:
0f:0a:c7:e2:e2:37:09:08:07:d7:0b:c3:af:90:8b:62:2b:c3:
31:3a:2b:0d:1d:eb:99:59:fa:0c:e9:5c:3b:46:f6:2d:c9:1f:
e5:20:49:6b:1c:e3:b2:33:d1:21:d8:40:93:70:90:bd:6f:74:
13:0e:45:14
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECxuATzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDUy
ODIxNDUxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2E0NDYxYTU4NGJl
M2ZmZDZmZDU1OTk5MGY2Y2U2YzY1ZTA0ZTI0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALeLZA8oYS2AIoda1jspOunMjWfiGvfKyRX6dE6k+Ye8H8ZH
FnUvWq2+nT8dpX+XNvc8Y5REfYiP+PeHvWTym7aPCHvj9WpQHzqm4f4NzQhZuEBl
ev4m6fgo2mMBzAhTWZtb7xLHidRoEvIy2GcZsm38uyHi+1/ri/BDPDUAZtF5nK4Y
bRVorZFZn5pvm5O7ZMECI7CBSmiCtDAbxyjyYcQsovoND+K5pBLkIlOZiY9enX3F
wQWvB9VnRkb0IpH55RbtChAzNfmdHCcr3BIBhX0vLPsqTxxXLMOF0wn7BnFnGLvv
1wxmWuJDBQc1WFW2PHz6TkrpD+d8HVb+W4DgHPECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTKRGGlhL4//W/VWZkPbObGXgTiQDAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L3lrUmhwWVMtUF8xdjFWbVpEMnpteGw0RTRrQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAll1aDANBgkqhkiG9w0BAQsFAAOC
AQEAl44lYSfZwZ3mQiCOiJehjmm5od4/VWXsLcc2HXZd2TBse6ZXQQB6QaGTjFgQ
nrqKLIsngy74nKCqnalU6+0JR+18mT6IdSBwp74dBVDeK7TPIJNlLIYe6vrdBiMs
UGUWMBwUBBxq7V/dapN3C08s2XtSy93XYt4JsO17qk6oFEkwcICRQIg+gusYp+lC
uLaoTG02Pqkik+ckoX8W1B8MUNqGm6OgRNZIUcx8Io+wWyL1CjElmtZUYefR+szU
QmEeQ7+pG4zPDwrH4uI3CQgH1wvDr5CLYivDMTorDR3rmVn6DOlcO0b2Lckf5SBJ
axzjsjPRIdhAk3CQvW90Ew5FFA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org