Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/H7_D-TFH2rUFrAqVGT_02oXROM4.roa
File: H7_D-TFH2rUFrAqVGT_02oXROM4.roa (raw, json)
Hash identifier: yLNlH0xWq5BeIO3DOHZ1Xq1P3r2yNNMCTb06l9ehsSA=
Subject key identifier: 1F:BF:C3:F9:31:47:DA:B5:05:AC:0A:95:19:3F:F4:DA:85:D1:38:CE
Certificate issuer: /CN=4a4ab91141d5181bdc0f713bd3c0fd073c1a9074
Certificate serial: 018572F12ECB4B762AD905CE4153A6F8AD36
Authority key identifier: 4A:4A:B9:11:41:D5:18:1B:DC:0F:71:3B:D3:C0:FD:07:3C:1A:90:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skq5EUHVGBvcD3E708D9BzwakHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/H7_D-TFH2rUFrAqVGT_02oXROM4.roa
Signing time: Mon 02 Jan 2023 14:44:46 +0000
ROA not before: Mon 02 Jan 2023 14:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 195.64.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:2e:cb:4b:76:2a:d9:05:ce:41:53:a6:f8:ad:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a4ab91141d5181bdc0f713bd3c0fd073c1a9074
Validity
Not Before: Jan 2 14:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fbfc3f93147dab505ac0a95193ff4da85d138ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:28:8f:82:fb:89:3e:df:14:bf:db:22:54:
47:47:84:00:8e:b2:a8:d4:54:a1:75:3c:04:c8:25:
71:55:23:00:84:a5:5e:50:7d:af:95:f0:a8:19:6c:
82:df:4c:2f:2c:e3:c7:84:52:34:3f:45:3c:dc:af:
9b:d6:1c:1e:6c:94:02:17:8c:0e:f4:7f:87:f0:cf:
40:fc:20:05:9d:6b:39:02:36:ce:56:a8:28:42:ff:
32:07:de:74:d0:f2:64:cb:e9:7a:6c:9d:bd:5c:c2:
7a:24:bf:43:6b:f5:3d:a6:fe:cf:f2:75:33:d3:bc:
91:2c:52:17:11:92:85:ae:2d:fd:a2:62:7a:94:61:
60:b6:21:bf:7e:39:39:d9:42:27:5b:f5:53:03:f1:
14:e7:ab:d1:02:f9:d0:b4:82:7d:96:48:59:60:14:
5e:43:6f:16:1e:fb:3e:4a:5d:48:7d:d5:e2:09:ca:
85:de:21:94:d1:ae:50:94:69:17:f1:e2:f3:89:1a:
5f:10:76:71:84:9e:0b:0a:da:33:c0:21:15:7e:22:
95:b0:6b:82:3b:df:c3:73:00:92:aa:92:b4:43:d6:
50:76:0e:2d:a8:64:69:6c:e8:ec:30:db:c1:35:b6:
84:14:de:bb:f5:1b:3e:85:08:74:29:7e:19:81:b4:
74:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:BF:C3:F9:31:47:DA:B5:05:AC:0A:95:19:3F:F4:DA:85:D1:38:CE
X509v3 Authority Key Identifier:
keyid:4A:4A:B9:11:41:D5:18:1B:DC:0F:71:3B:D3:C0:FD:07:3C:1A:90:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skq5EUHVGBvcD3E708D9BzwakHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/H7_D-TFH2rUFrAqVGT_02oXROM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/90c7ae-3681-4c30-9664-c27faa8e4b6f/1/Skq5EUHVGBvcD3E708D9BzwakHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.107.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:8e:84:97:f6:a4:d6:68:0f:cd:83:87:2a:fc:d4:a4:ca:c9:
21:50:28:d2:81:f6:b1:4b:c5:7c:f7:c9:75:08:b3:56:d9:2c:
f1:00:95:3a:ae:f4:64:5f:7f:5e:a9:72:0b:38:10:30:19:bc:
e6:e9:15:20:5c:96:03:e8:cd:94:cb:32:a3:7b:19:b4:73:cc:
e2:cb:d9:b0:f8:1d:a0:3b:f3:59:ed:82:3b:c3:ca:4f:75:0c:
ca:80:b2:0c:b6:77:35:39:75:12:97:99:d8:8d:27:42:b4:6a:
dd:4b:18:ed:e7:77:6c:d2:af:32:26:38:a3:14:3b:87:e7:56:
7c:7c:ba:a3:2e:fe:cc:e9:8e:a3:44:bd:fa:d3:ea:62:75:e0:
37:43:2b:db:6b:c2:59:43:b6:4c:25:b5:da:25:d3:f8:fe:bf:
95:0f:d9:c8:62:27:eb:4d:e1:6d:55:c5:7f:23:a9:ef:1d:40:
df:23:d9:3b:c7:00:f9:db:cb:25:17:91:2f:54:7c:91:2f:5c:
91:84:15:88:43:a9:47:73:8d:04:b5:75:ef:3a:01:43:b0:41:
12:06:b0:23:0e:2e:ad:0d:24:e7:6d:0f:5c:f0:b9:95:1b:f5:
dc:a2:d2:18:ea:cc:70:a9:2d:66:50:23:e1:b6:54:cc:a0:e8:
54:53:8b:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVy8S7LS3Yq2QXOQVOm+K02MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNGFiOTExNDFkNTE4MWJkYzBmNzEzYmQzYzBmZDA3M2Mx
YTkwNzQwHhcNMjMwMTAyMTQ0NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmJmYzNmOTMxNDdkYWI1MDVhYzBhOTUxOTNmZjRkYTg1ZDEzOGNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm8Aoj4L7iT7fFL/bIlRHR4QAjrKo
1FShdTwEyCVxVSMAhKVeUH2vlfCoGWyC30wvLOPHhFI0P0U83K+b1hwebJQCF4wO
9H+H8M9A/CAFnWs5AjbOVqgoQv8yB9500PJky+l6bJ29XMJ6JL9Da/U9pv7P8nUz
07yRLFIXEZKFri39omJ6lGFgtiG/fjk52UInW/VTA/EU56vRAvnQtIJ9lkhZYBRe
Q28WHvs+Sl1IfdXiCcqF3iGU0a5QlGkX8eLziRpfEHZxhJ4LCtozwCEVfiKVsGuC
O9/DcwCSqpK0Q9ZQdg4tqGRpbOjsMNvBNbaEFN679Rs+hQh0KX4ZgbR01wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB+/w/kxR9q1BawKlRk/9NqF0TjOMB8GA1UdIwQY
MBaAFEpKuRFB1Rgb3A9xO9PA/Qc8GpB0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2txNUVVSFZHQnZjRDNFNzA4RDlCendha0hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85MGM3YWUtMzY4MS00YzMwLTk2NjQt
YzI3ZmFhOGU0YjZmLzEvSDdfRC1URkgyclVGckFxVkdUXzAyb1hST000LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC85MGM3YWUtMzY4MS00YzMwLTk2NjQtYzI3ZmFhOGU0YjZm
LzEvU2txNUVVSFZHQnZjRDNFNzA4RDlCendha0hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0BrMA0G
CSqGSIb3DQEBCwUAA4IBAQAejoSX9qTWaA/Ng4cq/NSkyskhUCjSgfaxS8V898l1
CLNW2SzxAJU6rvRkX39eqXILOBAwGbzm6RUgXJYD6M2UyzKjexm0c8ziy9mw+B2g
O/NZ7YI7w8pPdQzKgLIMtnc1OXUSl5nYjSdCtGrdSxjt53ds0q8yJjijFDuH51Z8
fLqjLv7M6Y6jRL360+pideA3Qyvba8JZQ7ZMJbXaJdP4/r+VD9nIYifrTeFtVcV/
I6nvHUDfI9k7xwD528slF5EvVHyRL1yRhBWIQ6lHc40EtXXvOgFDsEESBrAjDi6t
DSTnbQ9c8LmVG/XcotIY6sxwqS1mUCPhtlTMoOhUU4v6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:56 2024 by rpki-client on console-fra.rpki-client.org