Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/416cb0-2e35-4ee0-abc6-859ca701b354/1/_ziYCbXgR7GtThOe6rmY23FV-2Q.roa
File: _ziYCbXgR7GtThOe6rmY23FV-2Q.roa (raw, json)
Hash identifier: 8hcEX12V4BBJrJU6RTNYs4MWPIotrFB3XmbIaQciIwo=
Subject key identifier: FF:38:98:09:B5:E0:47:B1:AD:4E:13:9E:EA:B9:98:DB:71:55:FB:64
Certificate issuer: /CN=f26ce0f46fbbbe2dd381b3532899c31dc40c1a42
Certificate serial: 01856E2F8BB484B8AF7E4518CDE359AE7567
Authority key identifier: F2:6C:E0:F4:6F:BB:BE:2D:D3:81:B3:53:28:99:C3:1D:C4:0C:1A:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mzg9G-7vi3TgbNTKJnDHcQMGkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/416cb0-2e35-4ee0-abc6-859ca701b354/1/_ziYCbXgR7GtThOe6rmY23FV-2Q.roa
Signing time: Sun 01 Jan 2023 16:34:47 +0000
ROA not before: Sun 01 Jan 2023 16:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56851
IP address blocks: 176.105.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:8b:b4:84:b8:af:7e:45:18:cd:e3:59:ae:75:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f26ce0f46fbbbe2dd381b3532899c31dc40c1a42
Validity
Not Before: Jan 1 16:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff389809b5e047b1ad4e139eeab998db7155fb64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ba:20:1e:7c:d2:56:ab:a6:62:af:06:10:10:
ed:dd:b5:ee:aa:70:44:12:51:4e:90:43:39:72:ca:
75:b5:28:59:a7:68:5a:e2:90:43:5a:02:2f:f6:ff:
d0:4a:06:12:d7:75:62:03:9d:2a:02:16:9a:97:5c:
58:11:84:99:5e:01:ad:0a:bc:4f:78:f1:7d:8f:b1:
28:77:5b:f9:0d:75:85:ac:35:d3:35:b7:00:86:fc:
6c:65:55:22:ce:a4:a7:84:3f:a4:71:9e:61:9f:d0:
86:91:29:f4:22:51:8b:c8:7a:e1:49:31:4f:88:3d:
19:3d:59:f6:75:04:98:22:27:91:da:fb:e1:3a:d4:
c1:8d:cd:87:1b:45:02:ee:de:ac:98:39:6f:2c:c0:
6c:20:37:e5:a7:24:53:ce:74:11:9c:41:5d:1e:f7:
34:af:7a:0e:9e:f1:76:89:e4:94:cc:4a:55:9b:44:
8c:d9:80:b0:62:0a:70:aa:d7:9f:5f:e0:f5:de:14:
c5:d2:c0:b6:4c:31:23:26:17:21:5a:56:4f:c8:ef:
f3:f2:73:c9:80:e9:3d:ff:a4:0a:96:b2:c8:fc:bf:
50:f0:ab:b5:cd:5e:73:f2:4a:58:29:dd:7f:e7:66:
e9:96:82:89:2b:44:ee:ab:44:c7:b2:6f:76:ca:2b:
cd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:38:98:09:B5:E0:47:B1:AD:4E:13:9E:EA:B9:98:DB:71:55:FB:64
X509v3 Authority Key Identifier:
keyid:F2:6C:E0:F4:6F:BB:BE:2D:D3:81:B3:53:28:99:C3:1D:C4:0C:1A:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mzg9G-7vi3TgbNTKJnDHcQMGkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/416cb0-2e35-4ee0-abc6-859ca701b354/1/_ziYCbXgR7GtThOe6rmY23FV-2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/416cb0-2e35-4ee0-abc6-859ca701b354/1/8mzg9G-7vi3TgbNTKJnDHcQMGkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.233.0/24
Signature Algorithm: sha256WithRSAEncryption
77:36:48:9b:aa:0a:95:fa:48:89:20:6c:4c:14:16:e1:ec:f1:
31:4c:ad:c6:f0:19:ad:d0:08:4e:de:0b:eb:32:7b:d1:be:00:
bb:be:37:e7:bb:d3:ac:23:46:80:18:ac:23:b9:ad:e6:11:58:
f4:07:1f:74:4b:5d:6e:84:df:d2:6c:ce:5c:13:08:7e:b1:a7:
47:17:6b:6d:87:6e:a6:47:eb:e4:4b:51:0a:2e:57:a5:54:41:
78:df:21:75:26:3e:81:7a:cd:5b:09:75:c5:fe:21:e1:9a:1d:
79:eb:d0:3b:a4:21:0b:77:68:44:3f:1e:c7:7d:dd:e7:47:e3:
6c:8a:d1:85:71:63:4a:fc:83:ef:f3:9b:f4:7b:9f:34:f6:16:
8e:ad:44:b8:26:c0:a8:da:57:18:80:b8:41:ee:5d:39:55:3c:
4a:cb:07:b0:e9:ff:9e:44:5d:e0:fb:13:be:a9:a2:dc:69:63:
86:ee:d4:00:48:c7:cb:76:ef:81:59:6c:01:34:3b:98:ea:39:
54:05:68:a3:b6:31:76:44:85:62:86:b0:53:d1:5c:9a:2c:f2:
fa:ba:84:73:20:a5:9b:67:fc:9c:bb:14:8f:34:c9:68:46:b0:
91:fa:f7:9c:7f:5c:f2:76:b7:a6:b8:00:c2:8c:21:03:db:cc:
b2:40:63:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuL4u0hLivfkUYzeNZrnVnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNmNlMGY0NmZiYmJlMmRkMzgxYjM1MzI4OTljMzFkYzQw
YzFhNDIwHhcNMjMwMTAxMTYzNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjM4OTgwOWI1ZTA0N2IxYWQ0ZTEzOWVlYWI5OThkYjcxNTVmYjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrogHnzSVqumYq8GEBDt3bXuqnBE
ElFOkEM5csp1tShZp2ha4pBDWgIv9v/QSgYS13ViA50qAhaal1xYEYSZXgGtCrxP
ePF9j7Eod1v5DXWFrDXTNbcAhvxsZVUizqSnhD+kcZ5hn9CGkSn0IlGLyHrhSTFP
iD0ZPVn2dQSYIieR2vvhOtTBjc2HG0UC7t6smDlvLMBsIDflpyRTznQRnEFdHvc0
r3oOnvF2ieSUzEpVm0SM2YCwYgpwqtefX+D13hTF0sC2TDEjJhchWlZPyO/z8nPJ
gOk9/6QKlrLI/L9Q8Ku1zV5z8kpYKd1/52bploKJK0Tuq0THsm92yivNywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP84mAm14EexrU4Tnuq5mNtxVftkMB8GA1UdIwQY
MBaAFPJs4PRvu74t04GzUyiZwx3EDBpCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG16ZzlHLTd2aTNUZ2JOVEtKbkRIY1FNR2tJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC80MTZjYjAtMmUzNS00ZWUwLWFiYzYt
ODU5Y2E3MDFiMzU0LzEvX3ppWUNiWGdSN0d0VGhPZTZybVkyM0ZWLTJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC80MTZjYjAtMmUzNS00ZWUwLWFiYzYtODU5Y2E3MDFiMzU0
LzEvOG16ZzlHLTd2aTNUZ2JOVEtKbkRIY1FNR2tJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGnpMA0G
CSqGSIb3DQEBCwUAA4IBAQB3NkibqgqV+kiJIGxMFBbh7PExTK3G8Bmt0AhO3gvr
MnvRvgC7vjfnu9OsI0aAGKwjua3mEVj0Bx90S11uhN/SbM5cEwh+sadHF2tth26m
R+vkS1EKLlelVEF43yF1Jj6Bes1bCXXF/iHhmh1569A7pCELd2hEPx7Hfd3nR+Ns
itGFcWNK/IPv85v0e5809haOrUS4JsCo2lcYgLhB7l05VTxKywew6f+eRF3g+xO+
qaLcaWOG7tQASMfLdu+BWWwBNDuY6jlUBWijtjF2RIVihrBT0VyaLPL6uoRzIKWb
Z/ycuxSPNMloRrCR+vecf1zydremuADCjCED28yyQGPx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:54 2024 by rpki-client on console-fra.rpki-client.org