Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/c14eaf-7b9a-4502-b645-2406da244ce8/1/TaMEvJt_xkhRmb9JeBVE5gJBD9c.roa
File: TaMEvJt_xkhRmb9JeBVE5gJBD9c.roa (raw, json)
Hash identifier: UA7xNc7Ye3b4os5YN5R5NVRCGIGSLEUsvr2dsrWHuqE=
Subject key identifier: 4D:A3:04:BC:9B:7F:C6:48:51:99:BF:49:78:15:44:E6:02:41:0F:D7
Certificate issuer: /CN=de3f2c5f21530c8873b1fae57dd74c69cfb35dce
Certificate serial: 01856F26B5E882585F6F24A6B63401FF2B4E
Authority key identifier: DE:3F:2C:5F:21:53:0C:88:73:B1:FA:E5:7D:D7:4C:69:CF:B3:5D:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j8sXyFTDIhzsfrlfddMac-zXc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/c14eaf-7b9a-4502-b645-2406da244ce8/1/TaMEvJt_xkhRmb9JeBVE5gJBD9c.roa
Signing time: Sun 01 Jan 2023 21:04:45 +0000
ROA not before: Sun 01 Jan 2023 21:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42010
IP address blocks: 185.135.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:b5:e8:82:58:5f:6f:24:a6:b6:34:01:ff:2b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3f2c5f21530c8873b1fae57dd74c69cfb35dce
Validity
Not Before: Jan 1 21:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4da304bc9b7fc6485199bf49781544e602410fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:47:49:1d:cd:77:2a:78:9d:cb:b2:76:51:1f:
53:16:a0:14:81:93:ef:48:8e:0b:cb:dc:ea:81:fe:
b1:6b:9b:1d:d2:fb:38:a9:8e:3b:cb:2c:e8:24:72:
0c:04:65:c5:86:97:21:fc:78:a9:43:fc:23:d1:14:
46:d6:f6:90:d2:03:34:d9:d3:4c:e8:35:37:f2:46:
da:8d:dd:b1:f0:90:7e:4b:a5:47:23:07:70:45:f2:
7e:c8:61:f9:43:b4:f7:8e:6c:86:46:ec:84:b3:12:
49:bd:14:06:80:44:e2:ca:a8:e1:3e:fb:cb:4f:42:
ea:da:ea:36:2b:df:4e:51:46:f9:86:41:0f:7f:54:
71:30:db:4e:2b:1e:ac:2b:ec:16:0b:a1:73:3b:f6:
bf:4f:1a:e9:ed:87:85:aa:b8:4e:24:b8:8b:26:b8:
0a:f0:bf:91:22:40:a2:dd:45:39:28:04:57:b6:1d:
97:2d:f6:37:9b:fd:b4:bb:03:1e:e9:a7:5d:bf:c2:
84:66:b0:6a:f0:9c:60:0f:31:94:af:5f:b2:5d:b6:
17:89:f2:73:39:89:03:50:35:a5:26:15:5c:7f:18:
c6:91:75:02:53:1c:c0:7f:0d:1e:1a:af:6e:0b:fa:
c3:40:11:19:23:5c:a7:d3:b1:a6:76:96:ab:6c:21:
16:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A3:04:BC:9B:7F:C6:48:51:99:BF:49:78:15:44:E6:02:41:0F:D7
X509v3 Authority Key Identifier:
keyid:DE:3F:2C:5F:21:53:0C:88:73:B1:FA:E5:7D:D7:4C:69:CF:B3:5D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j8sXyFTDIhzsfrlfddMac-zXc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/c14eaf-7b9a-4502-b645-2406da244ce8/1/TaMEvJt_xkhRmb9JeBVE5gJBD9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/c14eaf-7b9a-4502-b645-2406da244ce8/1/3j8sXyFTDIhzsfrlfddMac-zXc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.168.0/22
Signature Algorithm: sha256WithRSAEncryption
18:12:20:47:1e:b3:73:c9:27:1d:fc:c0:83:72:33:aa:43:42:
67:fb:9c:37:0d:a4:19:7c:9d:ae:4d:2d:e2:5b:60:9f:e2:45:
78:7c:dd:c1:39:54:36:4a:60:ef:e6:ca:6c:98:5b:61:fd:f7:
ed:cd:cd:4e:53:fd:13:96:1e:07:b7:35:82:12:24:07:e8:70:
4f:f2:5e:71:72:fb:68:53:0c:12:87:a8:b0:de:0c:63:b0:54:
49:74:ca:b2:70:c7:34:b0:7b:45:a6:13:f3:9a:11:00:0c:f2:
61:c9:3e:e7:26:ae:45:19:92:2e:bb:4c:0e:6c:9a:a0:49:aa:
b0:bc:77:27:30:8a:53:98:23:cb:af:b3:13:69:d8:fc:e4:c3:
1c:eb:94:a3:51:70:03:47:fa:8f:85:f8:c8:a0:04:9e:bd:be:
ed:7d:df:df:49:c1:1f:1c:34:c0:41:b3:f6:45:18:44:16:52:
61:8a:db:5e:4b:3a:bd:77:11:cf:a3:ac:71:8e:da:42:a9:26:
5b:d6:66:4d:ec:1c:4c:23:e6:20:8a:e9:09:98:30:f0:a0:a8:
43:f7:52:25:6d:97:7c:cc:74:7e:76:14:3e:c6:43:ab:e2:4a:
2b:90:07:2c:a1:2d:53:87:01:17:cd:83:57:57:ef:8a:fb:f6:
17:ae:ab:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvJrXoglhfbySmtjQB/ytOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlM2YyYzVmMjE1MzBjODg3M2IxZmFlNTdkZDc0YzY5Y2Zi
MzVkY2UwHhcNMjMwMTAxMjEwNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGEzMDRiYzliN2ZjNjQ4NTE5OWJmNDk3ODE1NDRlNjAyNDEwZmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUdJHc13Knidy7J2UR9TFqAUgZPv
SI4Ly9zqgf6xa5sd0vs4qY47yyzoJHIMBGXFhpch/HipQ/wj0RRG1vaQ0gM02dNM
6DU38kbajd2x8JB+S6VHIwdwRfJ+yGH5Q7T3jmyGRuyEsxJJvRQGgETiyqjhPvvL
T0Lq2uo2K99OUUb5hkEPf1RxMNtOKx6sK+wWC6FzO/a/Txrp7YeFqrhOJLiLJrgK
8L+RIkCi3UU5KARXth2XLfY3m/20uwMe6addv8KEZrBq8JxgDzGUr1+yXbYXifJz
OYkDUDWlJhVcfxjGkXUCUxzAfw0eGq9uC/rDQBEZI1yn07GmdparbCEW+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE2jBLybf8ZIUZm/SXgVROYCQQ/XMB8GA1UdIwQY
MBaAFN4/LF8hUwyIc7H65X3XTGnPs13OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2o4c1h5RlRESWh6c2ZybGZkZE1hYy16WGM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9jMTRlYWYtN2I5YS00NTAyLWI2NDUt
MjQwNmRhMjQ0Y2U4LzEvVGFNRXZKdF94a2hSbWI5SmVCVkU1Z0pCRDljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9jMTRlYWYtN2I5YS00NTAyLWI2NDUtMjQwNmRhMjQ0Y2U4
LzEvM2o4c1h5RlRESWh6c2ZybGZkZE1hYy16WGM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYeoMA0G
CSqGSIb3DQEBCwUAA4IBAQAYEiBHHrNzyScd/MCDcjOqQ0Jn+5w3DaQZfJ2uTS3i
W2Cf4kV4fN3BOVQ2SmDv5spsmFth/fftzc1OU/0Tlh4HtzWCEiQH6HBP8l5xcvto
UwwSh6iw3gxjsFRJdMqycMc0sHtFphPzmhEADPJhyT7nJq5FGZIuu0wObJqgSaqw
vHcnMIpTmCPLr7MTadj85MMc65SjUXADR/qPhfjIoASevb7tfd/fScEfHDTAQbP2
RRhEFlJhitteSzq9dxHPo6xxjtpCqSZb1mZN7BxMI+YgiukJmDDwoKhD91IlbZd8
zHR+dhQ+xkOr4korkAcsoS1ThwEXzYNXV++K+/YXrqtI
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:10 2023 by rpki-client on console-fra.rpki-client.org