Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/900e80-05a4-4a80-8a22-80f3f4411f18/1/9OFudIfI1zHwk6UqdsmLtEihMns.roa
File: 9OFudIfI1zHwk6UqdsmLtEihMns.roa (raw, json)
Hash identifier: cKhWJHrBVYlEQ0426oFIU9/hVyou/U3sbFS2iGPTk/E=
Subject key identifier: F4:E1:6E:74:87:C8:D7:31:F0:93:A5:2A:76:C9:8B:B4:48:A1:32:7B
Certificate issuer: /CN=5dd11893ff3b9f2ce2d1e5b3391f9830c55a813b
Certificate serial: 085DB203
Authority key identifier: 5D:D1:18:93:FF:3B:9F:2C:E2:D1:E5:B3:39:1F:98:30:C5:5A:81:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdEYk_87nyzi0eWzOR-YMMVagTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/900e80-05a4-4a80-8a22-80f3f4411f18/1/9OFudIfI1zHwk6UqdsmLtEihMns.roa
Signing time: Sat 01 Jan 2022 03:54:02 +0000
ROA not before: Sat 01 Jan 2022 03:54:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8387
IP address blocks: 193.150.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140358147 (0x85db203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd11893ff3b9f2ce2d1e5b3391f9830c55a813b
Validity
Not Before: Jan 1 03:54:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4e16e7487c8d731f093a52a76c98bb448a1327b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:43:83:55:6c:4f:3a:81:19:ac:6a:70:a4:40:
75:9e:a5:6e:bb:e3:b3:2c:44:a0:5d:66:e1:ed:39:
c1:31:5f:4a:8a:36:ee:0c:44:86:9b:15:87:19:18:
a2:ca:fd:e7:a2:56:c1:ef:c1:3a:bf:26:c1:c8:b7:
31:64:6b:56:f9:f8:71:36:91:56:a9:b8:a7:af:18:
fe:45:2f:fa:16:6e:13:55:85:63:9a:1c:51:be:1c:
22:1a:1c:44:cd:08:ab:36:ac:80:ba:3b:e5:99:1d:
d5:73:3a:79:c3:e4:dc:db:8a:f4:12:a8:05:46:44:
78:49:1e:10:d7:7a:ba:1b:85:7a:2a:9c:31:34:65:
fa:00:47:b7:fe:b3:40:eb:ad:bb:d5:48:3b:73:ae:
db:f8:74:2e:33:87:34:e2:ab:49:ea:1b:84:08:ac:
a3:ce:91:ab:71:47:49:75:ac:06:c5:b1:cb:b1:7d:
e0:87:05:66:82:85:f1:1f:be:f4:a9:69:2c:43:2c:
34:45:3a:8c:3c:cb:55:1c:1d:d3:8c:8f:7f:a9:c5:
6f:83:9d:46:75:c6:ab:b6:a1:70:ad:79:57:f7:8f:
5d:ac:6d:70:6a:60:63:8f:a6:2f:56:14:00:1e:99:
a1:a9:31:81:45:c9:5d:bd:8e:9f:22:b5:f6:11:62:
f4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E1:6E:74:87:C8:D7:31:F0:93:A5:2A:76:C9:8B:B4:48:A1:32:7B
X509v3 Authority Key Identifier:
keyid:5D:D1:18:93:FF:3B:9F:2C:E2:D1:E5:B3:39:1F:98:30:C5:5A:81:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdEYk_87nyzi0eWzOR-YMMVagTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/900e80-05a4-4a80-8a22-80f3f4411f18/1/9OFudIfI1zHwk6UqdsmLtEihMns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/900e80-05a4-4a80-8a22-80f3f4411f18/1/XdEYk_87nyzi0eWzOR-YMMVagTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.64.0/24
Signature Algorithm: sha256WithRSAEncryption
16:cd:98:b1:33:d8:af:30:11:ed:bb:2c:11:fe:26:46:f6:58:
ac:3c:03:72:1d:24:67:df:7c:85:fa:96:67:e6:ab:9e:5c:18:
9c:b1:b1:52:c8:ff:d7:14:8d:6f:e7:93:65:09:34:7e:01:6b:
3f:24:e3:1a:67:5f:6b:52:af:73:a5:61:c0:ea:03:b2:ed:5f:
b0:88:1c:2d:17:8f:31:98:6a:1e:3c:85:0f:28:54:36:86:87:
5d:b5:09:98:62:52:17:7d:e5:24:cd:d0:1d:76:0a:0b:42:49:
99:8b:8f:a0:82:66:95:1a:03:2c:88:40:57:69:37:82:22:55:
1c:ae:a3:86:37:88:ee:82:13:ca:23:72:4b:e2:d6:6d:86:9c:
48:65:b9:bb:bd:09:d7:a5:af:88:f3:49:a0:8f:a6:ce:73:e2:
33:0b:de:86:f7:2b:d8:b6:d1:14:ea:ea:4f:08:14:ab:80:4e:
b8:50:26:42:e0:64:83:51:35:d3:45:66:fd:70:79:8c:89:6e:
19:70:d6:68:bb:7b:b4:19:89:6d:bb:7c:37:b8:a7:24:d9:2e:
c7:b9:f1:a7:c9:25:d8:1e:8e:e1:d3:80:00:d3:a4:69:f0:15:
0f:29:d9:08:8d:87:63:e3:eb:34:3f:03:e4:55:a7:d5:8b:9e:
d7:31:44:11
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECF2yAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZGQxMTg5M2ZmM2I5ZjJjZTJkMWU1YjMzOTFmOTgzMGM1NWE4MTNiMB4XDTIyMDEw
MTAzNTQwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjRlMTZlNzQ4N2M4
ZDczMWYwOTNhNTJhNzZjOThiYjQ0OGExMzI3YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMhDg1VsTzqBGaxqcKRAdZ6lbrvjsyxEoF1m4e05wTFfSoo2
7gxEhpsVhxkYosr956JWwe/BOr8mwci3MWRrVvn4cTaRVqm4p68Y/kUv+hZuE1WF
Y5ocUb4cIhocRM0IqzasgLo75Zkd1XM6ecPk3NuK9BKoBUZEeEkeENd6uhuFeiqc
MTRl+gBHt/6zQOutu9VIO3Ou2/h0LjOHNOKrSeobhAiso86Rq3FHSXWsBsWxy7F9
4IcFZoKF8R++9KlpLEMsNEU6jDzLVRwd04yPf6nFb4OdRnXGq7ahcK15V/ePXaxt
cGpgY4+mL1YUAB6ZoakxgUXJXb2OnyK19hFi9CUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT04W50h8jXMfCTpSp2yYu0SKEyezAfBgNVHSMEGDAWgBRd0RiT/zufLOLR
5bM5H5gwxVqBOzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hkRVlrXzg3bnl6aTBlV3pPUi1ZTU1WYWdUcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvOTAwZTgwLTA1YTQtNGE4MC04YTIyLTgwZjNmNDQxMWYxOC8x
LzlPRnVkSWZJMXpId2s2VXFkc21MdEVpaE1ucy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
OTAwZTgwLTA1YTQtNGE4MC04YTIyLTgwZjNmNDQxMWYxOC8xL1hkRVlrXzg3bnl6
aTBlV3pPUi1ZTU1WYWdUcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGWQDANBgkqhkiG9w0BAQsFAAOC
AQEAFs2YsTPYrzAR7bssEf4mRvZYrDwDch0kZ998hfqWZ+arnlwYnLGxUsj/1xSN
b+eTZQk0fgFrPyTjGmdfa1Kvc6VhwOoDsu1fsIgcLRePMZhqHjyFDyhUNoaHXbUJ
mGJSF33lJM3QHXYKC0JJmYuPoIJmlRoDLIhAV2k3giJVHK6jhjeI7oITyiNyS+LW
bYacSGW5u70J16WviPNJoI+mznPiMwvehvcr2LbRFOrqTwgUq4BOuFAmQuBkg1E1
00Vm/XB5jIluGXDWaLt7tBmJbbt8N7inJNkux7nxp8kl2B6O4dOAANOkafAVDynZ
CI2HY+PrND8D5FWn1Yue1zFEEQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:12 2024 by rpki-client on console-fra.rpki-client.org