Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/fBz1CS7XdpvgX8TUyrWm6BXC3RU.roa
File: fBz1CS7XdpvgX8TUyrWm6BXC3RU.roa (raw, json)
Hash identifier: HiZ61zg0Sr65fjHKzcn2YRWLqvh84IixSo3pY5faJys=
Subject key identifier: 7C:1C:F5:09:2E:D7:76:9B:E0:5F:C4:D4:CA:B5:A6:E8:15:C2:DD:15
Certificate issuer: /CN=65e597f3ace516d6cf57ceff1606bbedaa382151
Certificate serial: 018756696BEE5B600ED752EB6F20C22FBFFD
Authority key identifier: 65:E5:97:F3:AC:E5:16:D6:CF:57:CE:FF:16:06:BB:ED:AA:38:21:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeWX86zlFtbPV87_Fga77ao4IVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/fBz1CS7XdpvgX8TUyrWm6BXC3RU.roa
Signing time: Thu 06 Apr 2023 11:52:42 +0000
ROA not before: Thu 06 Apr 2023 11:52:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.218.3.0/24 maxlen: 24
2a11:3801::/32 maxlen: 32
2a11:3800::/32 maxlen: 32
2a11:3805::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:69:6b:ee:5b:60:0e:d7:52:eb:6f:20:c2:2f:bf:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e597f3ace516d6cf57ceff1606bbedaa382151
Validity
Not Before: Apr 6 11:52:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c1cf5092ed7769be05fc4d4cab5a6e815c2dd15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a6:af:e2:aa:5b:91:fd:c1:2a:5b:4a:53:b7:
27:31:26:73:b7:03:6c:4b:df:4f:ad:85:10:9a:ec:
95:85:ff:f0:c6:14:4b:ee:45:cb:02:33:6f:3c:27:
37:81:18:e2:86:0d:f2:04:04:ad:4e:33:fb:98:58:
53:63:57:47:37:bf:68:e2:18:93:3c:63:85:98:d0:
36:31:12:3a:61:08:58:14:78:b6:97:48:0a:8a:59:
09:c2:c1:6e:1e:c2:fa:b2:17:d4:31:b0:19:4c:24:
ae:82:b6:c5:e1:03:88:e1:dd:8b:97:59:23:61:9d:
a8:a5:07:86:c1:0b:a9:a9:90:d0:91:bc:ce:06:e2:
0b:fc:bd:a2:13:82:91:b7:50:9a:3b:72:4c:eb:84:
27:87:7e:5d:c9:01:58:3b:83:4f:af:f1:30:68:74:
2d:fc:aa:d1:ed:a8:0f:4c:22:bf:4f:2f:c0:c2:55:
35:bc:31:00:3b:88:e9:92:c6:f3:6e:7e:2c:f9:a5:
e9:8f:b2:e7:12:be:63:89:09:5d:cb:df:9f:0a:c9:
7c:1b:29:90:da:c6:d9:59:1f:80:e6:3e:7d:bd:45:
59:ef:ea:6e:b8:fb:27:7c:9e:f1:4c:63:67:ae:a0:
d8:27:98:da:eb:60:6d:84:22:7d:67:60:3e:80:bb:
5b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1C:F5:09:2E:D7:76:9B:E0:5F:C4:D4:CA:B5:A6:E8:15:C2:DD:15
X509v3 Authority Key Identifier:
keyid:65:E5:97:F3:AC:E5:16:D6:CF:57:CE:FF:16:06:BB:ED:AA:38:21:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeWX86zlFtbPV87_Fga77ao4IVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/fBz1CS7XdpvgX8TUyrWm6BXC3RU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/ZeWX86zlFtbPV87_Fga77ao4IVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.3.0/24
IPv6:
2a11:3800::/31
2a11:3805::/32
Signature Algorithm: sha256WithRSAEncryption
91:25:8b:c3:e4:c9:63:1f:7f:08:36:58:8c:6b:c9:ac:84:fb:
cd:b0:72:cd:e2:9a:94:b0:f6:5b:90:26:71:76:21:9e:8f:04:
30:e4:67:5a:92:c8:98:d3:ed:74:76:23:af:b0:cf:3a:a6:65:
e9:bd:ec:b2:d8:3e:8d:cc:91:29:b5:9f:ba:e8:63:28:94:0a:
fb:54:94:60:39:89:f7:96:d6:8e:09:84:fc:ae:7b:c4:45:c3:
f4:aa:06:f1:97:db:36:af:c2:b5:f4:d7:a6:08:3e:9d:11:9f:
e8:57:0b:67:ec:96:2f:c9:03:55:83:84:c2:2c:e3:80:5c:2c:
f0:ed:19:a2:2d:e1:6b:94:1b:30:7c:ee:15:d2:a0:f6:81:5a:
12:a9:ee:40:86:8c:77:71:04:dc:46:76:e3:16:7e:dd:e4:13:
02:b3:af:ff:15:bf:1f:e8:63:98:fb:cb:82:0a:75:7a:c6:5e:
ed:8f:9c:53:03:85:c0:48:52:f0:f6:05:f4:63:a1:87:2c:10:
eb:ee:9b:ae:65:49:1a:2c:6b:2c:9c:c0:ee:30:73:0a:fb:55:
b7:9d:b5:92:9f:e3:cc:28:a4:bb:5d:a0:1f:45:4a:09:47:b8:
a0:ae:f7:e9:c7:f3:80:a2:40:34:ac:c3:2c:72:09:7e:47:30:
33:d6:49:64
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAYdWaWvuW2AO11LrbyDCL7/9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ZTU5N2YzYWNlNTE2ZDZjZjU3Y2VmZjE2MDZiYmVkYWEz
ODIxNTEwHhcNMjMwNDA2MTE1MjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzFjZjUwOTJlZDc3NjliZTA1ZmM0ZDRjYWI1YTZlODE1YzJkZDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKav4qpbkf3BKltKU7cnMSZztwNs
S99PrYUQmuyVhf/wxhRL7kXLAjNvPCc3gRjihg3yBAStTjP7mFhTY1dHN79o4hiT
PGOFmNA2MRI6YQhYFHi2l0gKilkJwsFuHsL6shfUMbAZTCSugrbF4QOI4d2Ll1kj
YZ2opQeGwQupqZDQkbzOBuIL/L2iE4KRt1CaO3JM64Qnh35dyQFYO4NPr/EwaHQt
/KrR7agPTCK/Ty/AwlU1vDEAO4jpksbzbn4s+aXpj7LnEr5jiQldy9+fCsl8GymQ
2sbZWR+A5j59vUVZ7+puuPsnfJ7xTGNnrqDYJ5ja62BthCJ9Z2A+gLtbsQIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFHwc9Qku13ab4F/E1Mq1pugVwt0VMB8GA1UdIwQY
MBaAFGXll/Os5RbWz1fO/xYGu+2qOCFRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmVXWDg2emxGdGJQVjg3X0ZnYTc3YW80SVZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9kNDY1MmQtOWQ3ZC00NTFmLWE1OGIt
MmU3ZGQyY2Y2ZjUxLzEvZkJ6MUNTN1hkcHZnWDhUVXlyV202QlhDM1JVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9kNDY1MmQtOWQ3ZC00NTFmLWE1OGItMmU3ZGQyY2Y2ZjUx
LzEvWmVXWDg2emxGdGJQVjg3X0ZnYTc3YW80SVZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAMBAIAATAGAwQAudoDMBQE
AgACMA4DBQEqETgAAwUAKhE4BTANBgkqhkiG9w0BAQsFAAOCAQEAkSWLw+TJYx9/
CDZYjGvJrIT7zbByzeKalLD2W5AmcXYhno8EMORnWpLImNPtdHYjr7DPOqZl6b3s
stg+jcyRKbWfuuhjKJQK+1SUYDmJ95bWjgmE/K57xEXD9KoG8ZfbNq/CtfTXpgg+
nRGf6FcLZ+yWL8kDVYOEwizjgFws8O0Zoi3ha5QbMHzuFdKg9oFaEqnuQIaMd3EE
3EZ24xZ+3eQTArOv/xW/H+hjmPvLggp1esZe7Y+cUwOFwEhS8PYF9GOhhywQ6+6b
rmVJGixrLJzA7jBzCvtVt521kp/jzCiku12gH0VKCUe4oK736cfzgKJANKzDLHIJ
fkcwM9ZJZA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:52 2024 by rpki-client on console-fra.rpki-client.org