Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/de33ac-bf6a-4c50-97c4-93ab5ab261b2/1/2A2va7q1421gyUqg5fre1V0iUP8.roa
File: 2A2va7q1421gyUqg5fre1V0iUP8.roa (raw, json)
Hash identifier: rGXgSuiLx5gVp5sXYn3wM+qErP2HMDZdrYVLJj9ZA78=
Subject key identifier: D8:0D:AF:6B:BA:B5:E3:6D:60:C9:4A:A0:E5:FA:DE:D5:5D:22:50:FF
Certificate issuer: /CN=1f44878ce4969120575ef049c9d6b9148c29db5e
Certificate serial: BE1D15
Authority key identifier: 1F:44:87:8C:E4:96:91:20:57:5E:F0:49:C9:D6:B9:14:8C:29:DB:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0SHjOSWkSBXXvBJyda5FIwp214.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/de33ac-bf6a-4c50-97c4-93ab5ab261b2/1/2A2va7q1421gyUqg5fre1V0iUP8.roa
Signing time: Sat 01 Jan 2022 04:51:29 +0000
ROA not before: Sat 01 Jan 2022 04:51:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 31.222.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12459285 (0xbe1d15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f44878ce4969120575ef049c9d6b9148c29db5e
Validity
Not Before: Jan 1 04:51:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d80daf6bbab5e36d60c94aa0e5faded55d2250ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:d1:1f:23:c8:d3:ed:ad:ff:bb:da:85:d9:
1b:64:15:63:22:d5:89:f5:77:cc:3c:38:6d:2f:ea:
45:e4:22:17:68:f3:3f:67:10:a0:67:67:1f:46:01:
15:25:b7:bb:ca:d2:c7:f7:7a:47:98:3c:39:c4:45:
a8:fd:19:78:11:30:4d:5e:9d:53:db:1c:7b:0a:46:
78:4b:e1:1e:7b:9a:b6:70:c2:da:ed:31:18:10:3d:
a9:20:02:22:2e:fc:0c:63:18:74:e1:c6:fc:e7:1e:
d7:a7:1e:8d:ed:c6:3e:23:99:fa:7a:ea:5e:06:2c:
34:5b:99:16:d8:27:6d:c3:07:b8:c5:8e:01:5a:41:
b5:ae:fd:85:89:1a:6c:2f:b2:ab:43:bf:64:ce:c2:
17:05:45:ab:56:79:48:5c:ab:0b:6e:5f:ba:15:89:
83:00:14:f8:75:62:52:bc:08:74:8f:8d:d6:fa:8e:
95:da:b1:ae:98:0b:73:5a:66:ba:a2:49:cb:ee:93:
db:c0:c1:a5:e2:d0:9a:a7:3b:6a:8a:90:40:bc:9f:
bb:2d:c5:bd:5d:49:3e:11:c4:ec:82:82:3c:24:cf:
fc:84:ad:f4:35:bc:31:c4:d6:c4:00:bd:d3:17:4b:
16:28:00:70:3c:40:e7:73:ef:8d:0c:d8:1b:0d:35:
d3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:0D:AF:6B:BA:B5:E3:6D:60:C9:4A:A0:E5:FA:DE:D5:5D:22:50:FF
X509v3 Authority Key Identifier:
keyid:1F:44:87:8C:E4:96:91:20:57:5E:F0:49:C9:D6:B9:14:8C:29:DB:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0SHjOSWkSBXXvBJyda5FIwp214.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/de33ac-bf6a-4c50-97c4-93ab5ab261b2/1/2A2va7q1421gyUqg5fre1V0iUP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/de33ac-bf6a-4c50-97c4-93ab5ab261b2/1/H0SHjOSWkSBXXvBJyda5FIwp214.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.224.0/24
Signature Algorithm: sha256WithRSAEncryption
34:84:f5:5d:7c:8a:be:33:26:f5:85:98:ab:45:0d:67:23:ec:
23:ae:2b:0f:32:bb:33:ef:f5:a6:8c:75:a4:63:92:e2:ad:e7:
f0:fa:74:75:c7:a3:8c:89:62:9b:92:32:3e:3d:69:d8:3b:a6:
a1:cc:d9:bf:2a:f7:f6:0c:ab:05:fe:76:d9:1d:ee:ed:9b:3f:
c7:1e:e5:1e:76:ec:53:ab:17:0d:7a:02:27:3b:e0:75:cc:f8:
0f:8b:b4:96:8b:87:2f:13:03:8a:96:3e:e8:a9:30:1c:00:04:
c2:a7:15:0b:0d:03:7b:46:db:41:0c:98:cf:45:3b:b0:66:ef:
c0:93:57:79:c0:e9:31:b6:f9:bc:d8:df:38:db:fc:a7:52:57:
2a:dc:85:d6:9e:6f:2d:61:e3:0e:ce:60:c9:28:84:df:10:9b:
18:01:90:c1:65:92:8c:70:c5:8e:2c:94:aa:0d:28:88:e7:13:
db:2f:d9:5d:be:d1:17:b0:cb:19:e3:ea:7e:71:26:64:44:5a:
d6:4c:53:7c:3d:7e:2a:a3:ed:c2:e6:12:45:99:5a:67:8d:32:
7d:0f:93:84:81:37:82:1a:be:5d:03:5d:6d:96:d6:cc:ef:3a:
91:2c:78:4e:fc:20:b7:47:97:10:03:42:54:99:40:d4:84:f8:
13:25:fe:4d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAL4dFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZjQ0ODc4Y2U0OTY5MTIwNTc1ZWYwNDljOWQ2YjkxNDhjMjlkYjVlMB4XDTIyMDEw
MTA0NTEyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDgwZGFmNmJiYWI1
ZTM2ZDYwYzk0YWEwZTVmYWRlZDU1ZDIyNTBmZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVj0R8jyNPtrf+72oXZG2QVYyLVifV3zDw4bS/qReQiF2jz
P2cQoGdnH0YBFSW3u8rSx/d6R5g8OcRFqP0ZeBEwTV6dU9scewpGeEvhHnuatnDC
2u0xGBA9qSACIi78DGMYdOHG/Oce16ceje3GPiOZ+nrqXgYsNFuZFtgnbcMHuMWO
AVpBta79hYkabC+yq0O/ZM7CFwVFq1Z5SFyrC25fuhWJgwAU+HViUrwIdI+N1vqO
ldqxrpgLc1pmuqJJy+6T28DBpeLQmqc7aoqQQLyfuy3FvV1JPhHE7IKCPCTP/ISt
9DW8McTWxAC90xdLFigAcDxA53PvjQzYGw010xECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTYDa9rurXjbWDJSqDl+t7VXSJQ/zAfBgNVHSMEGDAWgBQfRIeM5JaRIFde
8EnJ1rkUjCnbXjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gwU0hqT1NXa1NCWFh2Qkp5ZGE1Rkl3cDIxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvZGUzM2FjLWJmNmEtNGM1MC05N2M0LTkzYWI1YWIyNjFiMi8x
LzJBMnZhN3ExNDIxZ3lVcWc1ZnJlMVYwaVVQOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
ZGUzM2FjLWJmNmEtNGM1MC05N2M0LTkzYWI1YWIyNjFiMi8xL0gwU0hqT1NXa1NC
WFh2Qkp5ZGE1Rkl3cDIxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB/e4DANBgkqhkiG9w0BAQsFAAOC
AQEANIT1XXyKvjMm9YWYq0UNZyPsI64rDzK7M+/1pox1pGOS4q3n8Pp0dcejjIli
m5IyPj1p2DumoczZvyr39gyrBf522R3u7Zs/xx7lHnbsU6sXDXoCJzvgdcz4D4u0
louHLxMDipY+6KkwHAAEwqcVCw0De0bbQQyYz0U7sGbvwJNXecDpMbb5vNjfONv8
p1JXKtyF1p5vLWHjDs5gySiE3xCbGAGQwWWSjHDFjiyUqg0oiOcT2y/ZXb7RF7DL
GePqfnEmZERa1kxTfD1+KqPtwuYSRZlaZ40yfQ+ThIE3ghq+XQNdbZbWzO86kSx4
Tvwgt0eXEANCVJlA1IT4EyX+TQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:45 2024 by rpki-client on console-fra.rpki-client.org