Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/3ca17b-fad9-4904-81ea-c0859dd0929f/1/qwWwbjjyWsXnbutyTTRH1eHusIQ.roa
File: qwWwbjjyWsXnbutyTTRH1eHusIQ.roa (raw, json)
Hash identifier: L81/E6Pm0LtjFTdo5kLI43qHr9DYhq9fRkfeow1LHME=
Subject key identifier: AB:05:B0:6E:38:F2:5A:C5:E7:6E:EB:72:4D:34:47:D5:E1:EE:B0:84
Certificate issuer: /CN=a4d73b8edf57ee172769734a35e6b098cae12ffb
Certificate serial: 01856E01B684967B4DFBFD2566DC2E00C67A
Authority key identifier: A4:D7:3B:8E:DF:57:EE:17:27:69:73:4A:35:E6:B0:98:CA:E1:2F:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNc7jt9X7hcnaXNKNeawmMrhL_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/3ca17b-fad9-4904-81ea-c0859dd0929f/1/qwWwbjjyWsXnbutyTTRH1eHusIQ.roa
Signing time: Sun 01 Jan 2023 15:44:44 +0000
ROA not before: Sun 01 Jan 2023 15:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 178.212.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:b6:84:96:7b:4d:fb:fd:25:66:dc:2e:00:c6:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d73b8edf57ee172769734a35e6b098cae12ffb
Validity
Not Before: Jan 1 15:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab05b06e38f25ac5e76eeb724d3447d5e1eeb084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7d:d1:69:44:da:89:14:ee:71:a5:97:5a:9f:
92:38:47:5e:a2:b8:f3:92:a5:2c:d1:87:7f:6d:22:
b2:c9:a2:9c:f4:ae:55:45:0d:c0:d4:82:83:05:b5:
69:7f:af:8a:37:b3:7c:8f:ac:06:9f:45:7b:44:96:
d2:3c:b9:3c:be:3a:ef:5b:49:c0:6e:04:98:ea:44:
fe:55:e2:51:88:95:9c:b4:a2:6c:7a:33:80:a4:47:
9c:65:80:01:25:6b:81:c8:50:7e:7f:cd:35:ae:13:
e1:fe:8d:c9:6d:da:d3:d1:8c:60:c2:f8:db:08:25:
e3:35:2a:a0:54:67:f9:be:dd:84:84:74:75:56:b6:
b9:48:a9:5f:f3:0f:d3:43:b8:ed:eb:d9:5f:56:51:
77:0f:ab:f0:4d:cc:79:c1:0b:05:8b:b6:79:14:35:
1d:f9:4f:52:9f:b4:82:dc:ae:50:dc:1b:9d:51:02:
6c:87:3d:aa:a9:61:a0:bc:d8:c2:74:65:92:97:8e:
ad:2f:71:bf:f1:e0:19:20:09:5f:fb:c2:a5:68:15:
8c:1d:35:3f:e6:3d:bd:2f:8f:78:8d:7c:71:46:03:
f9:73:2d:40:62:75:2b:ff:8c:21:fb:7d:a2:91:9f:
5d:86:48:d8:27:c5:48:1d:7e:ab:89:f9:18:48:85:
df:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:05:B0:6E:38:F2:5A:C5:E7:6E:EB:72:4D:34:47:D5:E1:EE:B0:84
X509v3 Authority Key Identifier:
keyid:A4:D7:3B:8E:DF:57:EE:17:27:69:73:4A:35:E6:B0:98:CA:E1:2F:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNc7jt9X7hcnaXNKNeawmMrhL_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/3ca17b-fad9-4904-81ea-c0859dd0929f/1/qwWwbjjyWsXnbutyTTRH1eHusIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/3ca17b-fad9-4904-81ea-c0859dd0929f/1/pNc7jt9X7hcnaXNKNeawmMrhL_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.72.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:8c:a0:69:9b:56:b5:2b:9d:cd:15:87:83:ce:a6:b6:db:92:
b1:0a:0f:ce:ef:4c:eb:d0:e2:0e:be:fc:fe:21:88:ba:e0:bf:
7c:74:27:bc:e0:23:67:43:ae:01:43:f1:4d:4f:51:9b:4a:32:
1f:04:dd:30:5f:6f:ad:9d:ea:e2:c1:64:e2:03:58:8a:2f:ab:
32:ef:8d:64:b9:2f:96:c0:7b:c1:42:f4:7d:8e:89:0a:36:9c:
bc:a1:bb:34:4c:18:af:25:d4:65:52:5e:9a:e0:b1:64:6c:72:
c1:7a:6e:e5:6a:90:46:38:fc:ff:dd:ce:71:c1:3f:7c:83:39:
9f:6a:98:d8:65:0c:07:1c:45:92:65:79:0f:9c:47:93:b4:92:
20:98:c1:34:a1:9b:72:53:59:0d:7a:2c:fc:f6:3c:48:d6:48:
93:89:bd:1c:d0:5f:9f:d7:28:37:c1:36:ec:40:68:ae:c9:a6:
13:9e:0a:28:5d:5f:24:37:8c:94:24:99:cd:f1:f7:f1:8d:44:
98:b5:07:bb:73:ca:40:20:23:e2:51:72:c8:0c:64:78:72:2e:
ca:59:df:3f:d3:ac:61:05:10:2d:9b:98:78:02:5b:f1:3b:5d:
05:b6:3d:bd:77:7b:e9:2e:92:ce:a0:fc:8e:82:4b:63:d0:e3:
3e:ca:7c:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuAbaElntN+/0lZtwuAMZ6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZDczYjhlZGY1N2VlMTcyNzY5NzM0YTM1ZTZiMDk4Y2Fl
MTJmZmIwHhcNMjMwMTAxMTU0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjA1YjA2ZTM4ZjI1YWM1ZTc2ZWViNzI0ZDM0NDdkNWUxZWViMDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApX3RaUTaiRTucaWXWp+SOEdeorjz
kqUs0Yd/bSKyyaKc9K5VRQ3A1IKDBbVpf6+KN7N8j6wGn0V7RJbSPLk8vjrvW0nA
bgSY6kT+VeJRiJWctKJsejOApEecZYABJWuByFB+f801rhPh/o3JbdrT0Yxgwvjb
CCXjNSqgVGf5vt2EhHR1Vra5SKlf8w/TQ7jt69lfVlF3D6vwTcx5wQsFi7Z5FDUd
+U9Sn7SC3K5Q3BudUQJshz2qqWGgvNjCdGWSl46tL3G/8eAZIAlf+8KlaBWMHTU/
5j29L494jXxxRgP5cy1AYnUr/4wh+32ikZ9dhkjYJ8VIHX6rifkYSIXfDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKsFsG448lrF527rck00R9Xh7rCEMB8GA1UdIwQY
MBaAFKTXO47fV+4XJ2lzSjXmsJjK4S/7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE5jN2p0OVg3aGNuYVhOS05lYXdtTXJoTF9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8zY2ExN2ItZmFkOS00OTA0LTgxZWEt
YzA4NTlkZDA5MjlmLzEvcXdXd2JqanlXc1huYnV0eVRUUkgxZUh1c0lRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8zY2ExN2ItZmFkOS00OTA0LTgxZWEtYzA4NTlkZDA5Mjlm
LzEvcE5jN2p0OVg3aGNuYVhOS05lYXdtTXJoTF9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstRIMA0G
CSqGSIb3DQEBCwUAA4IBAQB9jKBpm1a1K53NFYeDzqa225KxCg/O70zr0OIOvvz+
IYi64L98dCe84CNnQ64BQ/FNT1GbSjIfBN0wX2+tneriwWTiA1iKL6sy741kuS+W
wHvBQvR9jokKNpy8obs0TBivJdRlUl6a4LFkbHLBem7lapBGOPz/3c5xwT98gzmf
apjYZQwHHEWSZXkPnEeTtJIgmME0oZtyU1kNeiz89jxI1kiTib0c0F+f1yg3wTbs
QGiuyaYTngooXV8kN4yUJJnN8ffxjUSYtQe7c8pAICPiUXLIDGR4ci7KWd8/06xh
BRAtm5h4AlvxO10Ftj29d3vpLpLOoPyOgktj0OM+ynwX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:10 2024 by rpki-client on console-fra.rpki-client.org