Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/4HqrYRoh75lLaMYuSyEnDvP4D3g.roa
File: 4HqrYRoh75lLaMYuSyEnDvP4D3g.roa (raw, json)
Hash identifier: UwoSVe0cgXyEiykNZf/lYJUEunPqzfPEkwR0paTEPUM=
Subject key identifier: E0:7A:AB:61:1A:21:EF:99:4B:68:C6:2E:4B:21:27:0E:F3:F8:0F:78
Certificate issuer: /CN=04d9e5b0f9d1a7fdd3e6bc12e817e673a09ea193
Certificate serial: 0209C5C7
Authority key identifier: 04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/4HqrYRoh75lLaMYuSyEnDvP4D3g.roa
Signing time: Tue 24 May 2022 14:31:13 +0000
ROA not before: Tue 24 May 2022 14:31:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.241.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34194887 (0x209c5c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d9e5b0f9d1a7fdd3e6bc12e817e673a09ea193
Validity
Not Before: May 24 14:31:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e07aab611a21ef994b68c62e4b21270ef3f80f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:17:4d:16:4f:e0:b5:f6:1d:83:61:2c:ad:d9:
f6:f5:0d:0a:9d:87:ac:f8:7b:bd:6d:00:b2:ff:7f:
24:e2:f1:59:c8:8e:fa:d1:68:51:07:1e:19:72:f9:
e4:10:2b:2d:8f:aa:22:e8:cd:59:3d:da:86:af:09:
04:f4:9d:57:5d:08:d6:24:cb:8b:d6:b6:6d:e5:85:
71:c1:cb:8d:39:58:41:5c:32:1f:19:f9:2d:03:27:
b5:99:fd:e7:1f:8f:76:b5:cd:2d:f9:08:a5:41:fe:
6e:0f:c0:34:64:33:83:43:72:82:d8:4b:4a:bc:02:
33:6b:7a:f4:7b:5d:cd:5e:69:e3:ad:c1:7c:e1:49:
43:d4:b8:ba:55:26:09:4c:f9:16:40:f3:8a:60:86:
86:63:ff:43:72:0b:c9:95:82:2c:08:97:3b:0b:5d:
1b:a0:a1:8d:de:40:57:ac:66:66:95:08:dc:aa:ec:
d2:71:c1:7a:45:be:a7:48:1d:a8:5b:7b:76:c3:18:
63:80:a8:99:cf:2b:6f:59:24:49:40:5e:8b:5c:9b:
10:0f:1e:6b:3a:e4:cc:5a:28:bf:0d:f0:b2:dc:eb:
e7:11:9c:f5:e0:28:71:8e:ce:fe:b4:cd:f8:14:71:
ba:87:80:c3:35:42:18:2e:d5:ec:c0:13:32:b7:0d:
92:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:7A:AB:61:1A:21:EF:99:4B:68:C6:2E:4B:21:27:0E:F3:F8:0F:78
X509v3 Authority Key Identifier:
keyid:04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/4HqrYRoh75lLaMYuSyEnDvP4D3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.244.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:d1:87:0e:92:68:c4:b7:99:7a:8d:2f:05:69:f8:ad:ad:94:
3e:c8:bf:e5:57:3a:9a:8e:35:56:ac:c2:e3:ba:1c:bf:50:e8:
74:fe:66:d0:52:05:c3:5f:ea:bd:00:86:65:80:30:51:e9:e0:
16:cc:29:25:f5:ed:90:e0:83:15:91:6c:75:4d:12:0e:06:82:
7b:05:6e:aa:74:fa:24:04:38:6d:48:44:10:a1:f4:6e:81:e3:
39:17:d0:93:74:86:a2:a9:b1:ef:5b:38:83:8e:8c:d7:28:9d:
ed:a4:b7:c7:e4:b9:46:5e:ad:a9:85:f3:07:4b:21:d9:a8:61:
ba:50:16:b8:c9:8f:8d:15:e4:98:d0:36:4a:82:52:64:bd:97:
0b:a3:ca:82:b4:2f:bf:ed:58:57:d5:8b:c2:3c:07:74:fd:60:
f8:40:fd:39:55:09:1b:6b:33:90:b7:bd:85:48:8c:f4:7d:82:
74:15:9d:52:af:a6:fc:f2:b6:16:47:95:ba:b5:ac:cb:6a:82:
af:8b:1f:b4:36:09:84:5f:02:dd:28:e2:6a:a3:af:1e:db:a5:
8d:a2:02:cd:da:a5:dd:e8:c6:1e:96:fe:73:21:66:2a:4f:4b:
12:9c:48:9e:81:62:96:3e:a4:6e:05:4f:92:7a:fc:11:56:23:
eb:93:3e:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAgnFxzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NGQ5ZTViMGY5ZDFhN2ZkZDNlNmJjMTJlODE3ZTY3M2EwOWVhMTkzMB4XDTIyMDUy
NDE0MzExM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTA3YWFiNjExYTIx
ZWY5OTRiNjhjNjJlNGIyMTI3MGVmM2Y4MGY3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANQXTRZP4LX2HYNhLK3Z9vUNCp2HrPh7vW0Asv9/JOLxWciO
+tFoUQceGXL55BArLY+qIujNWT3ahq8JBPSdV10I1iTLi9a2beWFccHLjTlYQVwy
Hxn5LQMntZn95x+PdrXNLfkIpUH+bg/ANGQzg0NygthLSrwCM2t69HtdzV5p463B
fOFJQ9S4ulUmCUz5FkDzimCGhmP/Q3ILyZWCLAiXOwtdG6Chjd5AV6xmZpUI3Krs
0nHBekW+p0gdqFt7dsMYY4Comc8rb1kkSUBei1ybEA8eazrkzFoovw3wstzr5xGc
9eAocY7O/rTN+BRxuoeAwzVCGC7V7MATMrcNklECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTgeqthGiHvmUtoxi5LIScO8/gPeDAfBgNVHSMEGDAWgBQE2eWw+dGn/dPm
vBLoF+ZzoJ6hkzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JObmxzUG5ScF8zVDVyd1M2QmZtYzZDZW9aTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvMDdkZDY3LWU4YzAtNDZiNi04MjljLWU0YzI3ZDJlMjM3Ni8x
LzRIcXJZUm9oNzVsTGFNWXVTeUVuRHZQNEQzZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
MDdkZDY3LWU4YzAtNDZiNi04MjljLWU0YzI3ZDJlMjM3Ni8xL0JObmxzUG5ScF8z
VDVyd1M2QmZtYzZDZW9aTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnx9DANBgkqhkiG9w0BAQsFAAOC
AQEAn9GHDpJoxLeZeo0vBWn4ra2UPsi/5Vc6mo41VqzC47ocv1DodP5m0FIFw1/q
vQCGZYAwUengFswpJfXtkOCDFZFsdU0SDgaCewVuqnT6JAQ4bUhEEKH0boHjORfQ
k3SGoqmx71s4g46M1yid7aS3x+S5Rl6tqYXzB0sh2ahhulAWuMmPjRXkmNA2SoJS
ZL2XC6PKgrQvv+1YV9WLwjwHdP1g+ED9OVUJG2szkLe9hUiM9H2CdBWdUq+m/PK2
FkeVurWsy2qCr4sftDYJhF8C3SjiaqOvHtuljaICzdql3ejGHpb+cyFmKk9LEpxI
noFilj6kbgVPknr8EVYj65M+SA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:42 2024 by rpki-client on console-ams.rpki-client.org