Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/zN8-nXhLyB7HsdHIrlyfO4eicLQ.roa
File: zN8-nXhLyB7HsdHIrlyfO4eicLQ.roa (raw, json)
Hash identifier: x1jj7kXH9pmveXS3br5XL44loL3m9ikbrpZkDdlgMPM=
Subject key identifier: CC:DF:3E:9D:78:4B:C8:1E:C7:B1:D1:C8:AE:5C:9F:3B:87:A2:70:B4
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0ACC871C
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/zN8-nXhLyB7HsdHIrlyfO4eicLQ.roa
Signing time: Thu 12 May 2022 07:52:03 +0000
ROA not before: Thu 12 May 2022 07:52:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22333
IP address blocks: 89.116.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181176092 (0xacc871c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 12 07:52:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccdf3e9d784bc81ec7b1d1c8ae5c9f3b87a270b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f5:81:a6:d5:d1:28:f8:e7:3e:a2:0a:fb:8e:
0a:11:22:dd:46:4d:6d:ac:68:5b:38:f6:00:a7:9b:
93:a3:3b:3b:24:84:eb:f0:41:85:29:d4:b5:b5:f4:
72:a4:0b:83:d8:fa:d7:82:42:29:20:6c:69:29:ba:
e2:90:c4:4b:73:c6:97:72:30:3d:de:e3:f2:ca:7d:
d7:20:a2:be:db:4f:ac:b2:f6:d7:63:01:43:1f:b9:
6c:a8:5a:c4:2c:78:7e:9b:e1:64:01:8f:7d:9a:db:
70:3f:0e:c9:eb:65:b8:8e:ed:2d:73:17:c4:a1:e0:
81:18:ff:de:dc:15:cf:da:ce:71:22:c8:cb:b2:d3:
fe:a9:78:8a:1a:68:cd:aa:8c:06:b6:6c:3b:9e:68:
02:04:70:2b:3c:86:d5:61:4e:ed:e6:07:e4:db:da:
6f:b6:8b:15:91:24:e5:e2:1b:8b:f0:b4:de:1e:fd:
ee:20:3c:46:54:e3:14:c7:5b:57:df:b6:cf:b2:c3:
d3:11:d0:cd:26:67:bd:36:b6:d4:6d:aa:10:51:fb:
ea:4c:9d:5e:f6:22:1d:c2:c5:1e:07:3a:93:b4:b2:
2b:7d:10:fe:24:ed:43:72:f3:36:04:bf:dc:49:30:
5e:d9:5d:32:f0:00:62:6d:2f:96:35:9f:4f:9c:98:
a5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DF:3E:9D:78:4B:C8:1E:C7:B1:D1:C8:AE:5C:9F:3B:87:A2:70:B4
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/zN8-nXhLyB7HsdHIrlyfO4eicLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.24.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:f0:e6:9e:d0:ea:c0:15:7d:56:c0:b8:1f:95:a4:f1:6c:42:
cc:dd:af:5c:02:96:b8:20:da:8d:95:fb:d2:84:06:db:fe:50:
25:23:bc:2b:0c:b2:c2:76:41:d2:fb:1d:cd:be:29:62:83:fb:
05:98:72:a0:40:75:15:42:3c:b5:36:94:56:13:8a:6b:9d:78:
ba:04:b3:a7:8a:e4:61:0e:d1:39:af:94:7f:96:7f:70:7c:b4:
4d:c9:f4:95:5e:a9:77:23:b1:e0:41:0a:23:84:30:1f:6c:86:
b8:22:25:fe:35:eb:ff:dc:90:06:0b:65:cc:ea:3a:be:8c:bf:
28:b6:5c:b2:5e:32:a0:56:77:9b:56:d2:19:b6:7d:93:d3:23:
95:ef:a7:da:15:95:8e:5c:d6:ef:fa:37:38:de:c9:04:fd:95:
f6:8a:fc:a7:fd:37:6b:66:6f:b8:06:13:5c:8a:f8:ff:9b:33:
8f:30:20:90:7f:ed:aa:b4:78:80:5c:9f:c3:68:d0:e1:14:c2:
8c:ea:38:8e:f3:ca:f5:38:dc:5a:47:4d:1d:43:f9:aa:08:b1:
19:62:a8:1f:28:1d:86:54:83:9f:fa:a6:9a:3c:d7:8e:56:02:
35:1e:e4:f5:6b:38:85:51:7f:c3:d8:79:02:4c:b1:54:2c:26:
7a:7d:7b:4d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECsyHHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDUx
MjA3NTIwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2NkZjNlOWQ3ODRi
YzgxZWM3YjFkMWM4YWU1YzlmM2I4N2EyNzBiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIr1gabV0Sj45z6iCvuOChEi3UZNbaxoWzj2AKebk6M7OySE
6/BBhSnUtbX0cqQLg9j614JCKSBsaSm64pDES3PGl3IwPd7j8sp91yCivttPrLL2
12MBQx+5bKhaxCx4fpvhZAGPfZrbcD8OyetluI7tLXMXxKHggRj/3twVz9rOcSLI
y7LT/ql4ihpozaqMBrZsO55oAgRwKzyG1WFO7eYH5Nvab7aLFZEk5eIbi/C03h79
7iA8RlTjFMdbV9+2z7LD0xHQzSZnvTa21G2qEFH76kydXvYiHcLFHgc6k7SyK30Q
/iTtQ3LzNgS/3EkwXtldMvAAYm0vljWfT5yYpQMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTM3z6deEvIHsex0ciuXJ87h6JwtDAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L3pOOC1uWGhMeUI3SHNkSElybHlmTzRlaWNMUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1l0GDANBgkqhkiG9w0BAQsFAAOC
AQEAa/DmntDqwBV9VsC4H5Wk8WxCzN2vXAKWuCDajZX70oQG2/5QJSO8KwyywnZB
0vsdzb4pYoP7BZhyoEB1FUI8tTaUVhOKa514ugSzp4rkYQ7ROa+Uf5Z/cHy0Tcn0
lV6pdyOx4EEKI4QwH2yGuCIl/jXr/9yQBgtlzOo6voy/KLZcsl4yoFZ3m1bSGbZ9
k9Mjle+n2hWVjlzW7/o3ON7JBP2V9or8p/03a2ZvuAYTXIr4/5szjzAgkH/tqrR4
gFyfw2jQ4RTCjOo4jvPK9TjcWkdNHUP5qgixGWKoHygdhlSDn/qmmjzXjlYCNR7k
9Ws4hVF/w9h5AkyxVCwmen17TQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org