Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/TV5GhvIx1KB7wNQRGAmqYSNM-Go.roa
File: TV5GhvIx1KB7wNQRGAmqYSNM-Go.roa (raw, json)
Hash identifier: oyKD+ZhmDPg6F3kjIbbqUPrnx0BO2LQDsbBWzidjLlg=
Subject key identifier: 4D:5E:46:86:F2:31:D4:A0:7B:C0:D4:11:18:09:AA:61:23:4C:F8:6A
Certificate issuer: /CN=2b3840b5d3c3525981c8616166679de920e350f5
Certificate serial: 018C3F8BCA81074FA8600745925990601E12
Authority key identifier: 2B:38:40:B5:D3:C3:52:59:81:C8:61:61:66:67:9D:E9:20:E3:50:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KzhAtdPDUlmByGFhZmed6SDjUPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/TV5GhvIx1KB7wNQRGAmqYSNM-Go.roa
Signing time: Wed 06 Dec 2023 14:32:55 +0000
ROA not before: Wed 06 Dec 2023 14:32:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216398
IP address blocks: 185.184.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:8b:ca:81:07:4f:a8:60:07:45:92:59:90:60:1e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3840b5d3c3525981c8616166679de920e350f5
Validity
Not Before: Dec 6 14:32:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d5e4686f231d4a07bc0d4111809aa61234cf86a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:ce:17:43:a7:87:7d:3a:90:f2:96:13:83:
56:54:a7:d9:33:67:a9:f3:5e:f0:5b:47:6e:4a:07:
b2:68:d0:92:1f:41:56:2f:6e:c1:f7:19:97:ae:d2:
ef:57:6f:c0:2f:2b:1d:57:f3:4b:d1:1b:0c:2d:c6:
4e:b2:5e:19:88:34:69:31:c3:e6:11:b7:55:ca:c2:
b5:27:8b:3e:33:dd:fe:a9:de:0c:c1:38:a0:18:d5:
86:36:be:d1:87:b7:c9:c0:f4:b1:f9:ad:a5:fe:e5:
1a:f6:8e:fd:49:c8:bd:69:2c:3a:2a:a4:6c:06:20:
6b:d6:4a:21:88:49:e4:43:4b:7c:eb:48:70:99:17:
f0:21:2c:50:9c:c0:32:a0:49:b9:98:6f:99:cc:0b:
79:68:c8:d5:42:f2:5c:a3:fa:3a:e4:ae:2b:31:dc:
6f:9e:cf:93:ff:4b:66:c1:0a:89:21:5a:14:d4:c4:
ea:54:03:59:47:d2:cc:19:bc:c5:18:4f:f7:47:58:
e6:09:8d:ac:19:44:cd:7b:f3:4b:9f:68:1b:86:ab:
b5:48:74:f8:54:a2:34:71:de:f8:27:7a:f2:52:bd:
6a:db:b1:b2:be:d3:eb:02:52:96:1f:24:77:5c:d4:
24:ee:23:42:61:36:5e:24:b8:29:e7:ca:7d:46:94:
cd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5E:46:86:F2:31:D4:A0:7B:C0:D4:11:18:09:AA:61:23:4C:F8:6A
X509v3 Authority Key Identifier:
keyid:2B:38:40:B5:D3:C3:52:59:81:C8:61:61:66:67:9D:E9:20:E3:50:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KzhAtdPDUlmByGFhZmed6SDjUPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/TV5GhvIx1KB7wNQRGAmqYSNM-Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/KzhAtdPDUlmByGFhZmed6SDjUPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.196.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:3b:05:26:ad:5b:92:aa:d2:7e:ab:e0:1c:e8:5c:54:a4:fd:
a4:36:23:df:5b:50:7c:13:49:75:f7:60:7f:37:8c:8b:ce:68:
66:70:20:93:89:a3:3f:58:c6:09:3a:48:8b:34:d2:39:85:de:
7b:bb:83:57:f5:37:fe:37:3d:7d:5a:6e:17:23:3f:b0:6f:81:
f7:c5:f6:39:fb:d1:f4:31:3f:df:2a:6c:a7:a3:fc:61:28:41:
94:b8:f6:37:3b:5d:84:89:d6:dc:cf:bd:6f:78:22:b1:eb:58:
6d:b0:7a:6b:2b:45:70:67:bf:bd:b0:46:09:7a:53:5d:b6:30:
7f:31:0d:7f:92:c1:04:72:ba:c2:56:87:f7:df:9b:0c:7c:e5:
d3:f2:92:22:8e:fc:b1:0c:64:7f:99:7a:88:fa:5c:4c:0e:a4:
ab:68:c2:64:aa:99:6f:0d:79:e8:1b:af:95:ae:4b:2f:30:ac:
7a:ec:4e:28:84:2c:d0:7f:c2:8b:d6:3e:56:22:ed:c3:81:dc:
be:50:de:e7:8f:f0:46:5d:29:f9:13:ec:48:2f:93:42:1a:93:
9d:3a:6a:d6:4a:af:9b:59:4e:0a:54:cb:7a:6e:2c:1c:1d:07:
94:90:6f:a7:78:a0:8f:b2:89:1b:ea:79:60:85:41:a1:f5:46:
fc:b9:66:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYw/i8qBB0+oYAdFklmQYB4SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMzg0MGI1ZDNjMzUyNTk4MWM4NjE2MTY2Njc5ZGU5MjBl
MzUwZjUwHhcNMjMxMjA2MTQzMjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDVlNDY4NmYyMzFkNGEwN2JjMGQ0MTExODA5YWE2MTIzNGNmODZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUfOF0Onh306kPKWE4NWVKfZM2ep
817wW0duSgeyaNCSH0FWL27B9xmXrtLvV2/ALysdV/NL0RsMLcZOsl4ZiDRpMcPm
EbdVysK1J4s+M93+qd4MwTigGNWGNr7Rh7fJwPSx+a2l/uUa9o79Sci9aSw6KqRs
BiBr1kohiEnkQ0t860hwmRfwISxQnMAyoEm5mG+ZzAt5aMjVQvJco/o65K4rMdxv
ns+T/0tmwQqJIVoU1MTqVANZR9LMGbzFGE/3R1jmCY2sGUTNe/NLn2gbhqu1SHT4
VKI0cd74J3ryUr1q27GyvtPrAlKWHyR3XNQk7iNCYTZeJLgp58p9RpTNKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE1eRobyMdSge8DUERgJqmEjTPhqMB8GA1UdIwQY
MBaAFCs4QLXTw1JZgchhYWZnnekg41D1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3poQXRkUERVbG1CeUdGaFptZWQ2U0RqVVBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8yYjk1ZWQtOTg4Mi00MmZhLWE5ZjUt
YWQ4MGU3NTZkMjU2LzEvVFY1R2h2SXgxS0I3d05RUkdBbXFZU05NLUdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS8yYjk1ZWQtOTg4Mi00MmZhLWE5ZjUtYWQ4MGU3NTZkMjU2
LzEvS3poQXRkUERVbG1CeUdGaFptZWQ2U0RqVVBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubjEMA0G
CSqGSIb3DQEBCwUAA4IBAQArOwUmrVuSqtJ+q+Ac6FxUpP2kNiPfW1B8E0l192B/
N4yLzmhmcCCTiaM/WMYJOkiLNNI5hd57u4NX9Tf+Nz19Wm4XIz+wb4H3xfY5+9H0
MT/fKmyno/xhKEGUuPY3O12Eidbcz71veCKx61htsHprK0VwZ7+9sEYJelNdtjB/
MQ1/ksEEcrrCVof335sMfOXT8pIijvyxDGR/mXqI+lxMDqSraMJkqplvDXnoG6+V
rksvMKx67E4ohCzQf8KL1j5WIu3Dgdy+UN7nj/BGXSn5E+xIL5NCGpOdOmrWSq+b
WU4KVMt6biwcHQeUkG+neKCPsokb6nlghUGh9Ub8uWaU
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:16 2024 by rpki-client on console-ams.rpki-client.org