Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/88d623-936d-4b31-baaf-07954f0b72dd/1/o64TPqA4x7ZdPDJfHIhys56QhI0.roa
File: o64TPqA4x7ZdPDJfHIhys56QhI0.roa (raw, json)
Hash identifier: +79MIbkGJy38a9Nza4OPNJAyv11Iuz2hLlebJ3c7CUo=
Subject key identifier: A3:AE:13:3E:A0:38:C7:B6:5D:3C:32:5F:1C:88:72:B3:9E:90:84:8D
Certificate issuer: /CN=83837b6830c3cf966852e31dd9a57d19466f778f
Certificate serial: 05EC1B09
Authority key identifier: 83:83:7B:68:30:C3:CF:96:68:52:E3:1D:D9:A5:7D:19:46:6F:77:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4N7aDDDz5ZoUuMd2aV9GUZvd48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/88d623-936d-4b31-baaf-07954f0b72dd/1/o64TPqA4x7ZdPDJfHIhys56QhI0.roa
Signing time: Sat 01 Jan 2022 06:53:52 +0000
ROA not before: Sat 01 Jan 2022 06:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 193.223.252.0/23 maxlen: 24
193.227.236.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99359497 (0x5ec1b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83837b6830c3cf966852e31dd9a57d19466f778f
Validity
Not Before: Jan 1 06:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3ae133ea038c7b65d3c325f1c8872b39e90848d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:c8:2f:d6:6b:28:92:74:41:9a:d8:aa:38:
1b:a4:ca:fe:21:21:35:f8:38:1a:3b:1b:06:37:21:
c5:6e:32:68:60:59:39:ea:4a:14:27:0f:cc:87:bb:
f2:fc:5d:7b:f8:5d:88:5a:2f:9c:d2:ca:0d:3b:a5:
b4:63:30:a7:f1:d0:ab:41:6b:b1:a1:84:f4:7b:f8:
95:ab:e7:ea:b1:6f:a2:91:89:c5:ad:7f:e3:33:67:
07:cc:d9:b0:46:6e:02:2a:2b:e0:2c:cf:30:3a:56:
cd:5d:69:bf:11:8b:de:36:74:56:dc:13:71:2d:66:
7e:aa:3b:c2:0e:33:51:5d:a3:a0:14:fc:8d:0e:d9:
48:bc:87:a4:2b:81:ca:53:6b:80:e4:70:c8:e9:04:
76:32:9f:ad:94:7a:04:71:ef:65:16:3c:8c:47:6a:
5d:7d:9f:49:fb:d2:cb:a1:2d:3e:03:1f:23:98:4a:
60:d4:b9:e3:78:63:ee:63:b2:8f:88:a7:93:c8:5a:
d3:5a:a1:3e:9b:58:9c:d2:21:88:69:61:97:5a:25:
f3:2c:0d:f9:9c:7b:a2:cd:77:61:2c:c4:a8:af:5c:
65:5d:f0:c2:c2:3a:d1:da:9b:1e:fd:67:89:1a:4d:
e6:32:0e:ce:92:bc:b7:7c:3e:17:29:20:1b:ef:71:
2b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:AE:13:3E:A0:38:C7:B6:5D:3C:32:5F:1C:88:72:B3:9E:90:84:8D
X509v3 Authority Key Identifier:
keyid:83:83:7B:68:30:C3:CF:96:68:52:E3:1D:D9:A5:7D:19:46:6F:77:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4N7aDDDz5ZoUuMd2aV9GUZvd48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/88d623-936d-4b31-baaf-07954f0b72dd/1/o64TPqA4x7ZdPDJfHIhys56QhI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/88d623-936d-4b31-baaf-07954f0b72dd/1/g4N7aDDDz5ZoUuMd2aV9GUZvd48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.223.252.0/23
193.227.236.0/23
Signature Algorithm: sha256WithRSAEncryption
98:57:41:74:13:78:00:b0:c9:27:3b:32:cd:7d:48:7f:e8:ca:
ec:70:a5:9e:6b:41:f3:d7:6d:70:87:d9:fe:49:47:a5:51:d3:
29:86:1d:02:6d:59:05:72:59:9a:c4:12:5e:b3:ce:90:bf:80:
3d:06:f3:9c:32:4d:1a:3a:29:3c:93:17:cc:36:f2:d4:dc:b1:
6e:82:46:b7:ce:5f:88:e2:bc:dc:e2:ad:af:34:4f:f9:d7:4c:
51:e9:a1:e3:3b:6b:56:2f:75:ce:d9:99:89:20:b1:ab:30:ea:
35:fb:33:e1:1a:22:1f:ae:ac:bc:b7:9d:d4:d9:4c:6d:23:40:
ec:4d:7d:36:cb:9c:67:04:1b:5e:f2:22:39:a4:29:ef:82:bb:
8c:6d:3b:ac:b6:20:74:81:6f:8a:45:5a:2e:a3:55:da:12:b7:
5a:48:5d:f5:a5:47:11:db:7f:22:79:d5:90:42:a6:17:52:b5:
db:32:64:ad:4a:43:7a:39:c2:cf:9e:bc:07:08:97:15:93:47:
8c:fe:9c:34:ab:d0:5f:af:dc:35:a2:ca:41:fd:06:e5:5b:0a:
d7:b2:71:22:76:4c:c6:91:1d:4d:54:b2:8a:6c:e6:cc:ab:9a:
fb:e7:15:31:26:11:1c:6f:fb:36:cd:e2:c0:a2:2f:72:1e:13:
f4:06:12:38
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBewbCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MzgzN2I2ODMwYzNjZjk2Njg1MmUzMWRkOWE1N2QxOTQ2NmY3NzhmMB4XDTIyMDEw
MTA2NTM1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTNhZTEzM2VhMDM4
YzdiNjVkM2MzMjVmMWM4ODcyYjM5ZTkwODQ4ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMbByC/WayiSdEGa2Ko4G6TK/iEhNfg4GjsbBjchxW4yaGBZ
OepKFCcPzIe78vxde/hdiFovnNLKDTultGMwp/HQq0FrsaGE9Hv4lavn6rFvopGJ
xa1/4zNnB8zZsEZuAior4CzPMDpWzV1pvxGL3jZ0VtwTcS1mfqo7wg4zUV2joBT8
jQ7ZSLyHpCuBylNrgORwyOkEdjKfrZR6BHHvZRY8jEdqXX2fSfvSy6EtPgMfI5hK
YNS543hj7mOyj4ink8ha01qhPptYnNIhiGlhl1ol8ywN+Zx7os13YSzEqK9cZV3w
wsI60dqbHv1niRpN5jIOzpK8t3w+FykgG+9xK+kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSjrhM+oDjHtl08Ml8ciHKznpCEjTAfBgNVHSMEGDAWgBSDg3toMMPPlmhS
4x3ZpX0ZRm93jzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2c0TjdhREREejVab1V1TWQyYVY5R1VadmQ0OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvODhkNjIzLTkzNmQtNGIzMS1iYWFmLTA3OTU0ZjBiNzJkZC8x
L282NFRQcUE0eDdaZFBESmZISWh5czU2UWhJMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
ODhkNjIzLTkzNmQtNGIzMS1iYWFmLTA3OTU0ZjBiNzJkZC8xL2c0TjdhREREejVa
b1V1TWQyYVY5R1VadmQ0OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcHf/AMEAcHj7DANBgkqhkiG9w0B
AQsFAAOCAQEAmFdBdBN4ALDJJzsyzX1If+jK7HClnmtB89dtcIfZ/klHpVHTKYYd
Am1ZBXJZmsQSXrPOkL+APQbznDJNGjopPJMXzDby1NyxboJGt85fiOK83OKtrzRP
+ddMUemh4ztrVi91ztmZiSCxqzDqNfsz4RoiH66svLed1NlMbSNA7E19NsucZwQb
XvIiOaQp74K7jG07rLYgdIFvikVaLqNV2hK3Wkhd9aVHEdt/InnVkEKmF1K12zJk
rUpDejnCz568BwiXFZNHjP6cNKvQX6/cNaLKQf0G5VsK17JxInZMxpEdTVSyimzm
zKua++cVMSYRHG/7Ns3iwKIvch4T9AYSOA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:07 2024 by rpki-client on console-ams.rpki-client.org