Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d5d664-db1b-4899-9515-2b792f1b3230/1/71Ag9qUfwbrWl3nNAzYhTt3sC0s.roa
File: 71Ag9qUfwbrWl3nNAzYhTt3sC0s.roa (raw, json)
Hash identifier: 7vXwj29015QxkZDpozGebD8O2kHkXismg77YvtDTSgo=
Subject key identifier: EF:50:20:F6:A5:1F:C1:BA:D6:97:79:CD:03:36:21:4E:DD:EC:0B:4B
Certificate issuer: /CN=9a9bbdaa00011f6c2f69518895fa023d32d5b7d9
Certificate serial: 0D36FE4A
Authority key identifier: 9A:9B:BD:AA:00:01:1F:6C:2F:69:51:88:95:FA:02:3D:32:D5:B7:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpu9qgABH2wvaVGIlfoCPTLVt9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d5d664-db1b-4899-9515-2b792f1b3230/1/71Ag9qUfwbrWl3nNAzYhTt3sC0s.roa
Signing time: Sat 01 Jan 2022 14:59:23 +0000
ROA not before: Sat 01 Jan 2022 14:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35749
IP address blocks: 193.227.254.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221707850 (0xd36fe4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a9bbdaa00011f6c2f69518895fa023d32d5b7d9
Validity
Not Before: Jan 1 14:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef5020f6a51fc1bad69779cd0336214eddec0b4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:43:b1:29:35:17:35:91:6c:be:ad:b1:c8:23:
d0:2c:8c:45:96:f0:61:40:49:73:8a:ee:2a:be:5d:
15:9a:b5:f2:c7:b7:a2:24:07:db:cc:02:d1:5c:82:
93:6e:80:a2:4c:5f:81:44:de:40:8d:77:dc:7c:6e:
17:ea:13:0a:98:7f:d0:20:27:20:c8:cd:02:fe:3d:
a4:89:d4:b3:7d:cf:7d:4e:3b:64:55:30:30:bf:f7:
3f:3a:cb:e4:22:74:5f:b4:96:cb:30:82:c0:eb:f5:
ca:a9:b0:9f:a1:6b:42:88:b8:dc:57:41:e6:2d:2f:
07:aa:90:d9:cc:b1:fd:a3:c5:de:72:46:40:2e:c5:
13:e1:03:a7:66:fe:63:4e:f2:6b:9b:11:11:3c:b9:
bf:ec:5e:c1:9c:26:93:7f:57:ae:a1:50:23:c9:7f:
31:af:6b:37:97:ff:ac:23:1e:5f:82:1f:9c:82:17:
e6:30:f2:30:cf:af:a8:48:50:79:80:43:9c:b8:38:
ff:a8:c3:74:4a:2b:12:f4:cb:2f:2b:a4:4a:41:56:
d2:6d:d0:d0:57:57:43:cd:92:ed:97:d4:02:0d:c0:
62:92:31:05:a9:18:7b:07:42:c6:51:36:be:ce:c8:
12:f5:bb:72:a8:dd:97:10:5b:c5:7f:92:31:84:c6:
29:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:50:20:F6:A5:1F:C1:BA:D6:97:79:CD:03:36:21:4E:DD:EC:0B:4B
X509v3 Authority Key Identifier:
keyid:9A:9B:BD:AA:00:01:1F:6C:2F:69:51:88:95:FA:02:3D:32:D5:B7:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpu9qgABH2wvaVGIlfoCPTLVt9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d5d664-db1b-4899-9515-2b792f1b3230/1/71Ag9qUfwbrWl3nNAzYhTt3sC0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d5d664-db1b-4899-9515-2b792f1b3230/1/mpu9qgABH2wvaVGIlfoCPTLVt9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.227.254.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:af:f8:3a:48:8d:ed:9b:46:0b:ec:64:03:3c:ff:fa:4e:e5:
cd:cf:57:2e:8c:6b:b1:a8:f3:26:82:3a:65:35:92:2e:6a:7e:
83:d0:40:a4:f2:46:0b:af:7a:14:f4:0c:77:ac:18:21:b9:26:
00:d9:3d:d0:6f:03:2d:74:03:fc:2a:c9:cd:fa:98:48:19:37:
a0:6e:15:89:cb:6b:b4:4d:a7:d3:96:50:23:18:d6:ac:84:aa:
6e:5e:ae:d6:27:2a:ce:c9:6f:47:13:58:b2:37:fb:54:67:7a:
4d:9b:01:de:54:27:78:eb:02:b7:a5:d5:89:0a:06:47:81:14:
5e:7b:4e:b2:c5:08:67:bc:98:7b:ff:80:d7:19:21:24:47:dc:
3d:8e:fd:ca:f1:ac:f3:32:ab:01:44:4c:84:30:bf:32:8b:a0:
bc:aa:6a:6c:d3:86:10:a6:5a:c0:7d:23:86:ab:ac:b3:20:15:
28:a8:df:da:b5:cb:f2:63:5f:0c:e7:f9:d3:9d:72:c1:df:10:
01:56:c5:57:fb:14:96:da:ca:63:94:d2:92:90:3c:17:43:8e:
0d:37:d4:ef:09:5d:a7:6c:08:81:f2:c0:50:cc:c6:1a:f0:7c:
e8:9c:14:8e:62:88:f3:3f:14:dd:fd:e7:8c:c7:98:32:2f:5a:
8b:6c:1d:cc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDTb+SjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YTliYmRhYTAwMDExZjZjMmY2OTUxODg5NWZhMDIzZDMyZDViN2Q5MB4XDTIyMDEw
MTE0NTkyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWY1MDIwZjZhNTFm
YzFiYWQ2OTc3OWNkMDMzNjIxNGVkZGVjMGI0YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpDsSk1FzWRbL6tscgj0CyMRZbwYUBJc4ruKr5dFZq18se3
oiQH28wC0VyCk26AokxfgUTeQI133HxuF+oTCph/0CAnIMjNAv49pInUs33PfU47
ZFUwML/3PzrL5CJ0X7SWyzCCwOv1yqmwn6FrQoi43FdB5i0vB6qQ2cyx/aPF3nJG
QC7FE+EDp2b+Y07ya5sRETy5v+xewZwmk39XrqFQI8l/Ma9rN5f/rCMeX4IfnIIX
5jDyMM+vqEhQeYBDnLg4/6jDdEorEvTLLyukSkFW0m3Q0FdXQ82S7ZfUAg3AYpIx
BakYewdCxlE2vs7IEvW7cqjdlxBbxX+SMYTGKd0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTvUCD2pR/ButaXec0DNiFO3ewLSzAfBgNVHSMEGDAWgBSam72qAAEfbC9p
UYiV+gI9MtW32TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21wdTlxZ0FCSDJ3dmFWR0lsZm9DUFRMVnQ5ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvZDVkNjY0LWRiMWItNDg5OS05NTE1LTJiNzkyZjFiMzIzMC8x
LzcxQWc5cVVmd2JyV2wzbk5BelloVHQzc0Mwcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
ZDVkNjY0LWRiMWItNDg5OS05NTE1LTJiNzkyZjFiMzIzMC8xL21wdTlxZ0FCSDJ3
dmFWR0lsZm9DUFRMVnQ5ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcHj/jANBgkqhkiG9w0BAQsFAAOC
AQEAq6/4OkiN7ZtGC+xkAzz/+k7lzc9XLoxrsajzJoI6ZTWSLmp+g9BApPJGC696
FPQMd6wYIbkmANk90G8DLXQD/CrJzfqYSBk3oG4VictrtE2n05ZQIxjWrISqbl6u
1icqzslvRxNYsjf7VGd6TZsB3lQneOsCt6XViQoGR4EUXntOssUIZ7yYe/+A1xkh
JEfcPY79yvGs8zKrAURMhDC/MougvKpqbNOGEKZawH0jhqussyAVKKjf2rXL8mNf
DOf5051ywd8QAVbFV/sUltrKY5TSkpA8F0OODTfU7wldp2wIgfLAUMzGGvB86JwU
jmKI8z8U3f3njMeYMi9ai2wdzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:10 2024 by rpki-client on console-fra.rpki-client.org