Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/YZmNMjZTv-UFdGeksyBsyp-JZig.roa
File: YZmNMjZTv-UFdGeksyBsyp-JZig.roa (raw, json)
Hash identifier: FVHaWpELFGr/iH6SLFo4lHiI56PXFfC+rU+KL/nM6/k=
Subject key identifier: 61:99:8D:32:36:53:BF:E5:05:74:67:A4:B3:20:6C:CA:9F:89:66:28
Certificate issuer: /CN=8d64450f71aaaeff16548fc3477cd55e10ea8c45
Certificate serial: EE80E1
Authority key identifier: 8D:64:45:0F:71:AA:AE:FF:16:54:8F:C3:47:7C:D5:5E:10:EA:8C:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jWRFD3Gqrv8WVI_DR3zVXhDqjEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/YZmNMjZTv-UFdGeksyBsyp-JZig.roa
Signing time: Mon 10 Jan 2022 23:00:46 +0000
ROA not before: Mon 10 Jan 2022 23:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56655
IP address blocks: 194.32.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15630561 (0xee80e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d64450f71aaaeff16548fc3477cd55e10ea8c45
Validity
Not Before: Jan 10 23:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61998d323653bfe5057467a4b3206cca9f896628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:05:e7:71:f4:ef:74:cb:4a:a5:d6:6b:0c:f0:
c5:8f:36:16:f1:de:55:24:78:b7:75:37:8b:d7:55:
a7:7d:13:23:8c:45:1c:ae:b2:db:da:39:50:3e:58:
6d:ba:0f:7f:b1:fc:31:5c:b5:85:af:34:d9:36:72:
b4:04:2d:21:d4:7a:37:54:6d:cd:13:02:e6:fb:83:
15:e1:f9:b6:59:b9:93:31:b2:7a:fa:bc:da:1d:7d:
11:c0:36:fb:de:43:43:e8:6d:6d:14:ed:71:14:16:
3a:16:5c:d6:74:c3:11:84:7b:bb:c6:14:a5:71:0e:
08:74:41:00:d7:24:07:e4:52:7d:ac:fa:c7:ed:f2:
cd:d7:36:15:00:02:8a:ef:40:d5:a3:f3:15:26:89:
8f:2e:b3:11:cf:1b:f2:bf:56:13:a2:1d:3c:87:3d:
f7:69:88:c5:0b:20:e1:86:71:85:4f:d9:4e:e1:3c:
3b:cc:4b:e2:ea:85:25:bd:49:04:52:e5:2d:10:1a:
83:65:e0:c0:69:ea:70:41:0f:3c:06:d3:d7:fc:76:
e4:5c:5e:3e:88:89:77:4d:e8:b2:63:bd:86:d8:74:
10:9b:19:36:57:47:28:39:a8:3c:14:b9:f5:6e:84:
68:63:59:d9:4c:9c:7e:be:db:70:15:6f:ff:30:95:
d9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:99:8D:32:36:53:BF:E5:05:74:67:A4:B3:20:6C:CA:9F:89:66:28
X509v3 Authority Key Identifier:
keyid:8D:64:45:0F:71:AA:AE:FF:16:54:8F:C3:47:7C:D5:5E:10:EA:8C:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jWRFD3Gqrv8WVI_DR3zVXhDqjEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/YZmNMjZTv-UFdGeksyBsyp-JZig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/jWRFD3Gqrv8WVI_DR3zVXhDqjEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.107.0/24
Signature Algorithm: sha256WithRSAEncryption
32:32:90:66:74:c8:3d:16:5f:7c:0f:80:57:b5:d8:a9:3a:0d:
75:fa:14:4b:0c:e6:9d:69:fc:4c:4a:b6:bf:66:3f:e4:a2:f8:
6d:64:83:29:c0:52:ff:8b:fd:2d:65:68:78:6c:7f:19:ce:15:
e3:2b:53:12:4f:84:99:90:7e:f1:ee:a7:e9:80:4c:9a:2e:d1:
c7:0a:1e:73:a7:2a:22:30:ce:46:b9:15:7b:a0:b7:4c:e2:fd:
5c:21:d1:03:ef:dd:bb:96:3b:68:27:6b:4f:3d:c6:53:2d:29:
fe:ae:7c:77:64:92:13:a6:ba:9e:74:e7:ad:07:96:39:f4:4b:
59:67:5b:eb:08:54:c5:e4:ee:9e:f0:91:5e:b9:2f:71:6f:2e:
9b:f0:f8:f4:6a:40:70:33:74:ea:a4:54:cc:1c:50:1d:dc:f9:
b1:ba:b6:80:37:98:06:74:37:e0:1b:b6:4e:7c:ec:3e:d4:e1:
d6:58:4b:ab:ad:70:2c:c5:49:de:7c:f4:13:6d:a2:e5:ef:80:
35:92:df:84:2a:7c:75:38:d9:41:29:76:94:d9:62:df:6f:93:
b7:6a:4d:88:27:e7:bd:a7:2e:55:e6:80:b1:1d:82:a0:d0:a7:
73:52:83:4b:3f:68:2a:c4:4a:57:dd:e5:d8:3b:84:72:63:62:
50:e4:cb:ed
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAO6A4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDY0NDUwZjcxYWFhZWZmMTY1NDhmYzM0NzdjZDU1ZTEwZWE4YzQ1MB4XDTIyMDEx
MDIzMDA0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjE5OThkMzIzNjUz
YmZlNTA1NzQ2N2E0YjMyMDZjY2E5Zjg5NjYyODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgF53H073TLSqXWawzwxY82FvHeVSR4t3U3i9dVp30TI4xF
HK6y29o5UD5YbboPf7H8MVy1ha802TZytAQtIdR6N1RtzRMC5vuDFeH5tlm5kzGy
evq82h19EcA2+95DQ+htbRTtcRQWOhZc1nTDEYR7u8YUpXEOCHRBANckB+RSfaz6
x+3yzdc2FQACiu9A1aPzFSaJjy6zEc8b8r9WE6IdPIc992mIxQsg4YZxhU/ZTuE8
O8xL4uqFJb1JBFLlLRAag2XgwGnqcEEPPAbT1/x25FxePoiJd03osmO9hth0EJsZ
NldHKDmoPBS59W6EaGNZ2Uycfr7bcBVv/zCV2ccCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRhmY0yNlO/5QV0Z6SzIGzKn4lmKDAfBgNVHSMEGDAWgBSNZEUPcaqu/xZU
j8NHfNVeEOqMRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pXUkZEM0dxcnY4V1ZJX0RSM3pWWGhEcWpFVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjcvNGQ1ZmU0LWEyOWQtNGU0OC1hMzE0LTA5YzJlNjMyNzc1MS8x
L1labU5NalpUdi1VRmRHZWtzeUJzeXAtSlppZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcv
NGQ1ZmU0LWEyOWQtNGU0OC1hMzE0LTA5YzJlNjMyNzc1MS8xL2pXUkZEM0dxcnY4
V1ZJX0RSM3pWWGhEcWpFVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIgazANBgkqhkiG9w0BAQsFAAOC
AQEAMjKQZnTIPRZffA+AV7XYqToNdfoUSwzmnWn8TEq2v2Y/5KL4bWSDKcBS/4v9
LWVoeGx/Gc4V4ytTEk+EmZB+8e6n6YBMmi7Rxwoec6cqIjDORrkVe6C3TOL9XCHR
A+/du5Y7aCdrTz3GUy0p/q58d2SSE6a6nnTnrQeWOfRLWWdb6whUxeTunvCRXrkv
cW8um/D49GpAcDN06qRUzBxQHdz5sbq2gDeYBnQ34Bu2TnzsPtTh1lhLq61wLMVJ
3nz0E22i5e+ANZLfhCp8dTjZQSl2lNli32+Tt2pNiCfnvacuVeaAsR2CoNCnc1KD
Sz9oKsRKV93l2DuEcmNiUOTL7Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:08 2024 by rpki-client on console-ams.rpki-client.org