Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0d98b2-cc04-46d9-8017-78909573a98b/1/vTIWponjy-cg0VIDFgPrLHG1Kew.roa
File: vTIWponjy-cg0VIDFgPrLHG1Kew.roa (raw, json)
Hash identifier: SBHn3IF5nE/5eirsa6M+dnmVaIHY6wUiqLej8HE6BgM=
Subject key identifier: BD:32:16:A6:89:E3:CB:E7:20:D1:52:03:16:03:EB:2C:71:B5:29:EC
Certificate issuer: /CN=942dd92f420a283345ea93c4d31deaaabfb0fa4b
Certificate serial: 071221CC
Authority key identifier: 94:2D:D9:2F:42:0A:28:33:45:EA:93:C4:D3:1D:EA:AA:BF:B0:FA:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lC3ZL0IKKDNF6pPE0x3qqr-w-ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0d98b2-cc04-46d9-8017-78909573a98b/1/vTIWponjy-cg0VIDFgPrLHG1Kew.roa
Signing time: Sat 01 Jan 2022 13:01:13 +0000
ROA not before: Sat 01 Jan 2022 13:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 193.169.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118628812 (0x71221cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942dd92f420a283345ea93c4d31deaaabfb0fa4b
Validity
Not Before: Jan 1 13:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd3216a689e3cbe720d152031603eb2c71b529ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:a4:3d:8e:c6:51:53:e9:bb:7e:32:e4:d8:
16:9e:83:79:06:a6:d9:b4:aa:33:f7:12:f9:b5:5e:
f5:1f:93:91:9e:78:f6:0f:90:b1:72:3a:7f:3c:6c:
54:13:c4:7f:3b:d0:cd:d6:c4:4d:06:e7:b0:ee:28:
0b:58:a1:da:f6:b4:39:6b:85:42:27:d2:bd:3a:8a:
ce:24:be:8a:91:e5:fe:3d:e7:19:cf:ba:57:37:d1:
e7:e6:02:1d:d0:f1:12:a3:63:e8:64:1b:69:dd:04:
fc:1d:0a:06:d9:70:7d:e5:74:00:b1:ca:dd:5b:8b:
9c:07:7f:ec:82:d2:07:45:07:ef:27:71:ab:ea:33:
5e:a5:c0:e8:9a:11:68:a9:d3:7f:5d:c7:42:0a:43:
e3:4c:71:4f:10:6c:46:24:bc:52:96:c8:04:13:6c:
d0:b6:69:e7:81:69:fe:ad:c1:8a:8c:4a:2f:0a:c2:
e1:85:f2:6a:36:bf:2d:a2:56:59:f1:fa:c7:35:ad:
ad:43:60:e6:4b:68:c1:97:2b:6d:6e:a0:71:31:9a:
71:14:02:5c:94:91:30:fd:4b:e8:54:49:d8:e1:4c:
e6:7b:28:c5:35:6f:96:bd:e9:f5:19:29:7a:08:b2:
3c:b4:54:80:2b:03:63:4a:5d:b2:cd:89:a1:b5:a3:
bc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:32:16:A6:89:E3:CB:E7:20:D1:52:03:16:03:EB:2C:71:B5:29:EC
X509v3 Authority Key Identifier:
keyid:94:2D:D9:2F:42:0A:28:33:45:EA:93:C4:D3:1D:EA:AA:BF:B0:FA:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lC3ZL0IKKDNF6pPE0x3qqr-w-ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0d98b2-cc04-46d9-8017-78909573a98b/1/vTIWponjy-cg0VIDFgPrLHG1Kew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0d98b2-cc04-46d9-8017-78909573a98b/1/lC3ZL0IKKDNF6pPE0x3qqr-w-ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.239.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:eb:ae:e6:d0:32:b6:9a:cc:a9:52:4e:7b:c3:eb:f8:5d:bd:
7d:84:f7:98:e7:a0:95:81:c2:82:34:5a:c3:e4:7a:21:25:d5:
97:03:b9:99:57:09:8a:e0:a9:27:f5:cb:55:58:5e:9c:47:cf:
f6:4c:75:16:ba:df:01:75:cb:31:5d:67:a3:69:0e:ce:c2:1d:
a2:9d:95:70:2b:c4:ff:f2:9f:b2:19:69:1e:c1:e0:0b:3c:1d:
c4:62:a0:72:80:2d:86:fd:1a:13:93:48:b4:9f:cb:6b:5c:c3:
b1:13:df:5e:dd:f7:d0:cc:82:2c:c8:3e:25:95:71:09:ec:d2:
8d:c2:d5:9d:3a:91:5d:aa:b8:6c:69:a1:f8:4c:4d:6d:f1:86:
0d:e7:87:a9:ac:ef:8b:90:54:65:11:df:b8:92:ca:6a:53:23:
c7:6b:f1:d5:bb:0d:76:bc:75:ee:20:97:92:95:87:47:4a:e7:
d4:5a:14:32:14:11:21:dc:76:2c:29:70:58:fc:90:a6:45:78:
38:ce:07:16:a7:c3:0e:1f:29:5f:20:f5:f0:d7:8f:74:80:8d:
64:be:f0:a1:d4:12:b0:71:0b:0e:ee:d1:4a:e1:21:64:2e:d1:
b2:89:a9:97:dd:96:e7:ea:bf:b9:78:0d:7d:23:90:cb:0f:b4:
d9:64:e2:55
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBxIhzDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NDJkZDkyZjQyMGEyODMzNDVlYTkzYzRkMzFkZWFhYWJmYjBmYTRiMB4XDTIyMDEw
MTEzMDExM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQzMjE2YTY4OWUz
Y2JlNzIwZDE1MjAzMTYwM2ViMmM3MWI1MjllYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVnpD2OxlFT6bt+MuTYFp6DeQam2bSqM/cS+bVe9R+TkZ54
9g+QsXI6fzxsVBPEfzvQzdbETQbnsO4oC1ih2va0OWuFQifSvTqKziS+ipHl/j3n
Gc+6VzfR5+YCHdDxEqNj6GQbad0E/B0KBtlwfeV0ALHK3VuLnAd/7ILSB0UH7ydx
q+ozXqXA6JoRaKnTf13HQgpD40xxTxBsRiS8UpbIBBNs0LZp54Fp/q3BioxKLwrC
4YXyaja/LaJWWfH6xzWtrUNg5ktowZcrbW6gcTGacRQCXJSRMP1L6FRJ2OFM5nso
xTVvlr3p9RkpegiyPLRUgCsDY0pdss2JobWjvAUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS9MhamiePL5yDRUgMWA+sscbUp7DAfBgNVHSMEGDAWgBSULdkvQgooM0Xq
k8TTHeqqv7D6SzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xDM1pMMElLS0RORjZwUEUweDNxcXItdy1rcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMGQ5OGIyLWNjMDQtNDZkOS04MDE3LTc4OTA5NTczYTk4Yi8x
L3ZUSVdwb25qeS1jZzBWSURGZ1ByTEhHMUtldy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MGQ5OGIyLWNjMDQtNDZkOS04MDE3LTc4OTA5NTczYTk4Yi8xL2xDM1pMMElLS0RO
RjZwUEUweDNxcXItdy1rcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGp7zANBgkqhkiG9w0BAQsFAAOC
AQEAG+uu5tAytprMqVJOe8Pr+F29fYT3mOeglYHCgjRaw+R6ISXVlwO5mVcJiuCp
J/XLVVhenEfP9kx1FrrfAXXLMV1no2kOzsIdop2VcCvE//KfshlpHsHgCzwdxGKg
coAthv0aE5NItJ/La1zDsRPfXt330MyCLMg+JZVxCezSjcLVnTqRXaq4bGmh+ExN
bfGGDeeHqazvi5BUZRHfuJLKalMjx2vx1bsNdrx17iCXkpWHR0rn1FoUMhQRIdx2
LClwWPyQpkV4OM4HFqfDDh8pXyD18NePdICNZL7wodQSsHELDu7RSuEhZC7Rsomp
l92W5+q/uXgNfSOQyw+02WTiVQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:38 2024 by rpki-client on console-fra.rpki-client.org