Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/140b9b-1412-47f2-9b26-ce6745064c0b/1/o2eR5ka8VkKiR_1GBjeueYm_lo0.roa
File: o2eR5ka8VkKiR_1GBjeueYm_lo0.roa (raw, json)
Hash identifier: 0hu4y4kHVhLX0tKZlhZHG0qhgpKuzCmaJM5x3sWiq0c=
Subject key identifier: A3:67:91:E6:46:BC:56:42:A2:47:FD:46:06:37:AE:79:89:BF:96:8D
Certificate issuer: /CN=cea51f7240d8d45ab23d284abdda9cdb22b986a2
Certificate serial: 0184F6461BCADDC2245C0788674A7B7AD9DF
Authority key identifier: CE:A5:1F:72:40:D8:D4:5A:B2:3D:28:4A:BD:DA:9C:DB:22:B9:86:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zqUfckDY1FqyPShKvdqc2yK5hqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/140b9b-1412-47f2-9b26-ce6745064c0b/1/o2eR5ka8VkKiR_1GBjeueYm_lo0.roa
Signing time: Fri 09 Dec 2022 09:45:00 +0000
ROA not before: Fri 09 Dec 2022 09:45:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 193.93.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f6:46:1b:ca:dd:c2:24:5c:07:88:67:4a:7b:7a:d9:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cea51f7240d8d45ab23d284abdda9cdb22b986a2
Validity
Not Before: Dec 9 09:45:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a36791e646bc5642a247fd460637ae7989bf968d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:67:07:fa:5b:80:29:c2:19:f2:89:6f:ec:8c:
d5:8d:ad:ec:c2:2d:36:0c:c9:74:84:c8:d4:9e:46:
84:ef:e6:30:ec:74:7b:6d:82:95:d0:0e:29:7c:95:
67:80:e5:7c:98:80:f1:6e:7c:82:e9:2e:d4:6f:55:
85:5b:46:56:2f:0e:92:24:ba:60:af:3e:9c:bd:e4:
fa:64:40:15:da:b0:72:dc:a9:d1:02:79:6f:2d:08:
f5:90:19:87:b6:29:ab:b4:ca:bc:ef:39:bc:4d:99:
08:99:a4:69:a6:28:a7:0f:78:5d:98:a7:26:0b:54:
b8:84:ce:52:2a:b0:54:39:19:42:b1:7f:2b:87:24:
7d:8d:b6:28:e0:cb:e2:ee:36:96:66:18:f9:d2:78:
73:55:c6:16:15:bf:67:f6:af:bd:21:9f:2d:96:db:
3d:3e:74:99:15:d2:45:b8:c7:d4:4b:2c:f8:5f:81:
a2:c2:ed:ff:02:b8:3b:60:a5:7f:e4:b7:63:dc:f9:
6e:9f:3e:a7:be:bc:f0:e3:f9:ae:02:e2:07:d5:bc:
a1:30:3a:d9:fd:0f:0b:16:66:8c:ff:b3:72:8f:fb:
12:dc:9e:fd:be:ad:44:fe:7e:01:9f:1f:8f:46:42:
dc:ad:47:4c:94:a6:92:32:c4:f5:a6:58:19:2b:a4:
fb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:67:91:E6:46:BC:56:42:A2:47:FD:46:06:37:AE:79:89:BF:96:8D
X509v3 Authority Key Identifier:
keyid:CE:A5:1F:72:40:D8:D4:5A:B2:3D:28:4A:BD:DA:9C:DB:22:B9:86:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zqUfckDY1FqyPShKvdqc2yK5hqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/140b9b-1412-47f2-9b26-ce6745064c0b/1/o2eR5ka8VkKiR_1GBjeueYm_lo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/140b9b-1412-47f2-9b26-ce6745064c0b/1/zqUfckDY1FqyPShKvdqc2yK5hqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.152.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:4b:81:f4:c9:20:85:2e:19:06:e8:ae:b6:3b:3d:57:ee:51:
74:ec:26:d5:71:a5:f8:3b:82:59:2e:1e:33:25:08:5e:a7:0a:
3f:35:c9:4f:37:00:93:1b:1c:0f:a5:22:f2:e2:85:57:95:f8:
ac:cb:b2:fb:c3:ae:8a:eb:a6:08:e2:a7:4a:fb:1c:1c:0e:73:
85:83:bd:4f:85:4e:25:ee:51:b9:b0:2f:a7:af:59:a9:9f:bc:
19:f7:73:19:08:d0:99:d1:f6:33:35:43:7f:a0:bf:fa:00:5d:
b8:60:7c:a7:c8:83:6b:4b:6c:1b:e5:69:48:c9:ed:31:4a:a7:
fe:18:c8:0a:8c:06:bb:ed:80:7e:19:a5:b4:18:e8:57:3d:3b:
d7:4a:26:41:ff:17:ee:7a:b8:6f:a3:78:30:8c:78:5e:e9:d4:
25:85:03:17:6a:bb:e5:a2:c9:37:75:52:24:bd:cb:ad:21:ce:
a5:65:d9:0d:1f:61:22:53:f2:8f:91:e9:a3:cd:20:df:63:5e:
53:24:46:f7:d2:bc:97:da:de:5d:f2:8d:cf:59:ee:02:d0:44:
dd:0f:a2:f4:9f:4c:a4:48:1a:d5:ca:9c:f6:28:a5:25:53:40:
44:fc:33:df:bb:66:2c:b9:4f:6a:87:3a:ad:30:e9:bc:2d:cf:
e7:c5:fb:43
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYT2RhvK3cIkXAeIZ0p7etnfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYTUxZjcyNDBkOGQ0NWFiMjNkMjg0YWJkZGE5Y2RiMjJi
OTg2YTIwHhcNMjIxMjA5MDk0NTAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzY3OTFlNjQ2YmM1NjQyYTI0N2ZkNDYwNjM3YWU3OTg5YmY5NjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2cH+luAKcIZ8olv7IzVja3swi02
DMl0hMjUnkaE7+Yw7HR7bYKV0A4pfJVngOV8mIDxbnyC6S7Ub1WFW0ZWLw6SJLpg
rz6cveT6ZEAV2rBy3KnRAnlvLQj1kBmHtimrtMq87zm8TZkImaRppiinD3hdmKcm
C1S4hM5SKrBUORlCsX8rhyR9jbYo4Mvi7jaWZhj50nhzVcYWFb9n9q+9IZ8tlts9
PnSZFdJFuMfUSyz4X4Giwu3/Arg7YKV/5Ldj3Plunz6nvrzw4/muAuIH1byhMDrZ
/Q8LFmaM/7Nyj/sS3J79vq1E/n4Bnx+PRkLcrUdMlKaSMsT1plgZK6T70wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKNnkeZGvFZCokf9RgY3rnmJv5aNMB8GA1UdIwQY
MBaAFM6lH3JA2NRasj0oSr3anNsiuYaiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenFVZmNrRFkxRnF5UFNoS3ZkcWMyeUs1aHFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi8xNDBiOWItMTQxMi00N2YyLTliMjYt
Y2U2NzQ1MDY0YzBiLzEvbzJlUjVrYThWa0tpUl8xR0JqZXVlWW1fbG8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi8xNDBiOWItMTQxMi00N2YyLTliMjYtY2U2NzQ1MDY0YzBi
LzEvenFVZmNrRFkxRnF5UFNoS3ZkcWMyeUs1aHFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwV2YMA0G
CSqGSIb3DQEBCwUAA4IBAQAPS4H0ySCFLhkG6K62Oz1X7lF07CbVcaX4O4JZLh4z
JQhepwo/NclPNwCTGxwPpSLy4oVXlfisy7L7w66K66YI4qdK+xwcDnOFg71PhU4l
7lG5sC+nr1mpn7wZ93MZCNCZ0fYzNUN/oL/6AF24YHynyINrS2wb5WlIye0xSqf+
GMgKjAa77YB+GaW0GOhXPTvXSiZB/xfuerhvo3gwjHhe6dQlhQMXarvlosk3dVIk
vcutIc6lZdkNH2EiU/KPkemjzSDfY15TJEb30ryX2t5d8o3PWe4C0ETdD6L0n0yk
SBrVypz2KKUlU0BE/DPfu2YsuU9qhzqtMOm8Lc/nxftD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:21 2024 by rpki-client on console-fra.rpki-client.org