Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/e2d003-2a0b-4bad-84c9-f976b1400b0b/1/fP0HV7MYx9T4pCKTdZzY4j1g1v4.roa
File: fP0HV7MYx9T4pCKTdZzY4j1g1v4.roa (raw, json)
Hash identifier: N/yGLA/wEao49veto4ZAn+HSFXcuy9pTAmE4jGz8590=
Subject key identifier: 7C:FD:07:57:B3:18:C7:D4:F8:A4:22:93:75:9C:D8:E2:3D:60:D6:FE
Certificate issuer: /CN=c9de87c13ca1d1bfbf09676c9021d0b2386a98f5
Certificate serial: 0472D6B2
Authority key identifier: C9:DE:87:C1:3C:A1:D1:BF:BF:09:67:6C:90:21:D0:B2:38:6A:98:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd6HwTyh0b-_CWdskCHQsjhqmPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/e2d003-2a0b-4bad-84c9-f976b1400b0b/1/fP0HV7MYx9T4pCKTdZzY4j1g1v4.roa
Signing time: Sat 01 Jan 2022 08:03:10 +0000
ROA not before: Sat 01 Jan 2022 08:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207579
IP address blocks: 185.210.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74634930 (0x472d6b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9de87c13ca1d1bfbf09676c9021d0b2386a98f5
Validity
Not Before: Jan 1 08:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cfd0757b318c7d4f8a42293759cd8e23d60d6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:34:39:69:42:66:a7:2f:53:54:33:c5:ff:41:
07:48:09:ac:5c:fa:42:b2:43:86:bb:4f:cf:56:fb:
4b:21:bf:d5:df:6a:b8:9b:e0:21:63:72:2c:cc:6f:
b9:09:f4:5d:91:7a:45:39:1f:23:96:f4:4c:e9:b2:
2d:9b:c3:5e:a2:9b:f2:d9:75:76:30:bc:4f:64:07:
45:a3:9e:49:59:85:72:39:e1:f5:57:8a:31:79:a8:
95:6d:bd:d7:56:0b:bf:26:2b:51:3f:a9:71:bc:89:
0b:16:b7:d3:52:28:89:fd:fc:87:4f:3a:64:fd:af:
17:92:a2:af:ed:c2:63:3d:09:4a:1f:77:2b:9a:8f:
86:36:da:a6:10:0c:a9:b5:b3:c2:82:7f:08:59:fb:
8a:93:7f:af:cc:54:b0:39:62:72:33:08:2f:33:2f:
43:57:b5:db:0a:cb:2a:d5:51:c7:e9:ef:98:f5:5d:
6f:f4:c4:0e:b0:3b:b2:69:bb:1c:b0:2e:46:a1:49:
3e:d3:3c:ea:f7:59:e4:4d:5a:76:29:1b:c8:1b:bd:
3b:38:d8:19:55:74:fa:24:76:4a:35:9a:45:4a:96:
89:53:9f:ce:1a:74:20:20:c4:73:9a:7c:cf:8a:87:
91:fb:2d:9f:01:37:76:5a:95:79:0f:4f:bb:c1:fb:
96:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FD:07:57:B3:18:C7:D4:F8:A4:22:93:75:9C:D8:E2:3D:60:D6:FE
X509v3 Authority Key Identifier:
keyid:C9:DE:87:C1:3C:A1:D1:BF:BF:09:67:6C:90:21:D0:B2:38:6A:98:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd6HwTyh0b-_CWdskCHQsjhqmPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e2d003-2a0b-4bad-84c9-f976b1400b0b/1/fP0HV7MYx9T4pCKTdZzY4j1g1v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e2d003-2a0b-4bad-84c9-f976b1400b0b/1/yd6HwTyh0b-_CWdskCHQsjhqmPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.195.0/24
Signature Algorithm: sha256WithRSAEncryption
91:45:cb:a4:42:34:dc:8e:f5:68:c0:a3:30:40:1a:81:25:85:
4b:85:86:5c:44:59:83:ac:59:2e:2a:a5:b6:85:8b:56:d2:1e:
59:e6:92:ec:d3:8c:b8:c6:a5:38:b1:05:a6:a1:ca:ac:80:8e:
38:4c:01:d2:68:ec:a7:82:d1:fe:6d:54:bf:d7:14:2b:34:e4:
97:37:20:c6:90:62:28:25:54:f6:97:f9:ec:13:95:2e:b9:dc:
ec:38:4e:42:af:28:2e:e2:d7:88:5f:ea:7c:34:0b:d6:04:01:
8c:35:a4:2c:9a:08:79:06:3e:bc:2b:7f:e2:2e:b5:77:7c:f3:
a5:9c:dc:69:07:78:d6:fc:38:4e:df:1c:f6:6b:7b:ac:10:3a:
57:06:94:aa:51:7f:d2:58:d8:88:e7:c4:ee:13:a3:b3:89:5b:
ed:8e:77:b0:dd:e8:d5:1a:ca:c8:bc:0f:9b:d5:9c:96:cf:63:
ce:bc:f6:7a:38:1d:0e:dc:28:c2:6d:14:06:45:66:b5:74:4d:
42:97:cc:57:3a:e8:62:b0:a1:f8:00:43:14:46:7f:5e:10:26:
c5:ca:9e:a4:53:7b:4c:e1:da:c3:a7:67:dc:7b:c9:24:42:31:
b7:fe:b3:9e:15:75:72:a3:9d:e5:58:f4:b6:a1:57:2f:4d:79:
dc:eb:97:d1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBHLWsjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWRlODdjMTNjYTFkMWJmYmYwOTY3NmM5MDIxZDBiMjM4NmE5OGY1MB4XDTIyMDEw
MTA4MDMxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2NmZDA3NTdiMzE4
YzdkNGY4YTQyMjkzNzU5Y2Q4ZTIzZDYwZDZmZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKQ0OWlCZqcvU1Qzxf9BB0gJrFz6QrJDhrtPz1b7SyG/1d9q
uJvgIWNyLMxvuQn0XZF6RTkfI5b0TOmyLZvDXqKb8tl1djC8T2QHRaOeSVmFcjnh
9VeKMXmolW2911YLvyYrUT+pcbyJCxa301Ioif38h086ZP2vF5Kir+3CYz0JSh93
K5qPhjbaphAMqbWzwoJ/CFn7ipN/r8xUsDlicjMILzMvQ1e12wrLKtVRx+nvmPVd
b/TEDrA7smm7HLAuRqFJPtM86vdZ5E1adikbyBu9OzjYGVV0+iR2SjWaRUqWiVOf
zhp0ICDEc5p8z4qHkfstnwE3dlqVeQ9Pu8H7lhsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR8/QdXsxjH1PikIpN1nNjiPWDW/jAfBgNVHSMEGDAWgBTJ3ofBPKHRv78J
Z2yQIdCyOGqY9TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lkNkh3VHloMGItX0NXZHNrQ0hRc2pocW1QVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvZTJkMDAzLTJhMGItNGJhZC04NGM5LWY5NzZiMTQwMGIwYi8x
L2ZQMEhWN01ZeDlUNHBDS1RkWnpZNGoxZzF2NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
ZTJkMDAzLTJhMGItNGJhZC04NGM5LWY5NzZiMTQwMGIwYi8xL3lkNkh3VHloMGIt
X0NXZHNrQ0hRc2pocW1QVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnSwzANBgkqhkiG9w0BAQsFAAOC
AQEAkUXLpEI03I71aMCjMEAagSWFS4WGXERZg6xZLiqltoWLVtIeWeaS7NOMuMal
OLEFpqHKrICOOEwB0mjsp4LR/m1Uv9cUKzTklzcgxpBiKCVU9pf57BOVLrnc7DhO
Qq8oLuLXiF/qfDQL1gQBjDWkLJoIeQY+vCt/4i61d3zzpZzcaQd41vw4Tt8c9mt7
rBA6VwaUqlF/0ljYiOfE7hOjs4lb7Y53sN3o1RrKyLwPm9Wcls9jzrz2ejgdDtwo
wm0UBkVmtXRNQpfMVzroYrCh+ABDFEZ/XhAmxcqepFN7TOHaw6dn3HvJJEIxt/6z
nhV1cqOd5Vj0tqFXL0153OuX0Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:37 2024 by rpki-client on console-ams.rpki-client.org