Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/43XaHRcr6oz4CeoytFZdoIgtFCs.roa
File: 43XaHRcr6oz4CeoytFZdoIgtFCs.roa (raw, json)
Hash identifier: 0IGQNussWG/rE9BmrOAW6/oNVyTWiLjm7G5Mw+XEOX0=
Subject key identifier: E3:75:DA:1D:17:2B:EA:8C:F8:09:EA:32:B4:56:5D:A0:88:2D:14:2B
Certificate issuer: /CN=58faf3909ab406103148f3f32f95a79f8de35d0e
Certificate serial: 01856D2F29F3556F35AFC40B919DFB461D1F
Authority key identifier: 58:FA:F3:90:9A:B4:06:10:31:48:F3:F3:2F:95:A7:9F:8D:E3:5D:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/43XaHRcr6oz4CeoytFZdoIgtFCs.roa
Signing time: Sun 01 Jan 2023 11:54:45 +0000
ROA not before: Sun 01 Jan 2023 11:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 188.227.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:29:f3:55:6f:35:af:c4:0b:91:9d:fb:46:1d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58faf3909ab406103148f3f32f95a79f8de35d0e
Validity
Not Before: Jan 1 11:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e375da1d172bea8cf809ea32b4565da0882d142b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b2:0a:48:71:bc:56:d2:d0:68:b4:0f:5b:7e:
0d:ed:4b:e6:b2:8e:d1:29:cf:05:9b:d2:6f:cb:83:
f0:e1:b3:29:e4:58:6f:c2:b8:67:67:5e:7d:84:8b:
6c:ea:67:3f:4f:4e:b5:e6:cf:41:34:32:7b:49:9f:
b6:21:85:f4:a7:ab:9c:12:b1:82:ee:2a:61:d4:43:
02:1b:8d:db:4e:bb:c9:b5:c2:0a:03:1a:5f:02:98:
20:e6:6f:26:79:48:3b:38:c9:fc:33:3c:94:38:96:
68:78:37:48:c8:f6:21:91:44:00:fa:6e:f5:06:32:
34:86:cb:5c:54:77:aa:af:b6:2f:03:f1:45:a7:c5:
42:77:76:89:5b:27:41:ee:a7:ca:b0:3b:cd:70:c7:
2a:ad:23:19:de:35:9b:0a:31:44:2e:49:c6:57:da:
9d:ae:70:be:b1:a0:13:c3:ae:09:0b:e8:8c:46:da:
42:7b:83:94:67:d7:d0:ed:3c:df:7a:09:7b:06:d4:
7a:ca:eb:d7:bb:b7:b7:76:73:45:f6:50:31:44:7a:
ba:f2:84:35:41:dd:6e:20:cc:f7:a8:75:bd:09:12:
56:74:ec:59:12:69:e7:75:75:f5:9c:79:0a:bc:05:
64:75:51:1d:8b:d4:c8:bf:0f:20:98:04:a0:c5:9c:
ec:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:75:DA:1D:17:2B:EA:8C:F8:09:EA:32:B4:56:5D:A0:88:2D:14:2B
X509v3 Authority Key Identifier:
keyid:58:FA:F3:90:9A:B4:06:10:31:48:F3:F3:2F:95:A7:9F:8D:E3:5D:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/43XaHRcr6oz4CeoytFZdoIgtFCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.227.196.0/22
Signature Algorithm: sha256WithRSAEncryption
02:a3:35:eb:16:f0:d5:b7:56:24:8c:a8:87:61:2e:7a:16:6a:
5b:d7:92:7c:68:0b:46:08:f9:b5:0b:66:36:3c:8d:05:3e:9a:
99:69:3f:71:26:f1:3e:6f:73:c0:98:60:91:75:cb:c1:b2:37:
a1:96:a6:4a:dc:b4:c8:07:c0:d5:63:b6:0f:b7:be:c5:af:37:
cf:92:b2:f9:ed:f1:b8:58:87:44:9e:73:df:4b:8d:3d:72:57:
ee:f3:36:b2:b8:5c:7e:ca:7d:32:34:7f:9f:7b:d1:71:9e:a1:
db:75:d8:35:80:ff:1f:e3:8b:5c:ce:51:8b:7a:b2:61:7c:6a:
02:f2:c8:0f:9b:ad:41:cc:c1:d4:69:c0:74:2e:f5:0c:0d:da:
c4:19:7c:e1:61:24:c0:4f:8a:5a:29:16:8d:2f:87:09:49:32:
a4:b1:79:8d:bf:49:9b:e8:d5:6a:cd:a7:37:1c:dd:33:c5:2d:
ab:0e:ab:b0:a7:c4:d3:88:0d:9f:e2:cf:55:83:59:54:37:d3:
c2:4f:4b:f0:6b:8d:a8:ae:85:d7:11:1f:47:5a:3f:12:bf:76:
4f:ff:f0:f2:ca:26:9b:1c:9f:19:df:1a:0a:3b:4f:0b:84:1c:
c8:db:fc:61:43:c4:cd:04:95:50:ab:6c:b0:76:19:0d:ac:c2:
23:48:d7:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtLynzVW81r8QLkZ37Rh0fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4ZmFmMzkwOWFiNDA2MTAzMTQ4ZjNmMzJmOTVhNzlmOGRl
MzVkMGUwHhcNMjMwMTAxMTE1NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzc1ZGExZDE3MmJlYThjZjgwOWVhMzJiNDU2NWRhMDg4MmQxNDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7IKSHG8VtLQaLQPW34N7Uvmso7R
Kc8Fm9Jvy4Pw4bMp5FhvwrhnZ159hIts6mc/T0615s9BNDJ7SZ+2IYX0p6ucErGC
7iph1EMCG43bTrvJtcIKAxpfApgg5m8meUg7OMn8MzyUOJZoeDdIyPYhkUQA+m71
BjI0hstcVHeqr7YvA/FFp8VCd3aJWydB7qfKsDvNcMcqrSMZ3jWbCjFELknGV9qd
rnC+saATw64JC+iMRtpCe4OUZ9fQ7Tzfegl7BtR6yuvXu7e3dnNF9lAxRHq68oQ1
Qd1uIMz3qHW9CRJWdOxZEmnndXX1nHkKvAVkdVEdi9TIvw8gmASgxZzsUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFON12h0XK+qM+AnqMrRWXaCILRQrMB8GA1UdIwQY
MBaAFFj685CatAYQMUjz8y+Vp5+N410OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV1ByemtKcTBCaEF4U1BQekw1V25uNDNqWFE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xYWU3YjktM2U1Ni00Zjg5LWJhZDYt
NmUxYjBkNjQ3OGMwLzEvNDNYYUhSY3I2b3o0Q2VveXRGWmRvSWd0RkNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8xYWU3YjktM2U1Ni00Zjg5LWJhZDYtNmUxYjBkNjQ3OGMw
LzEvV1ByemtKcTBCaEF4U1BQekw1V25uNDNqWFE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvOPEMA0G
CSqGSIb3DQEBCwUAA4IBAQACozXrFvDVt1YkjKiHYS56Fmpb15J8aAtGCPm1C2Y2
PI0FPpqZaT9xJvE+b3PAmGCRdcvBsjehlqZK3LTIB8DVY7YPt77FrzfPkrL57fG4
WIdEnnPfS409clfu8zayuFx+yn0yNH+fe9FxnqHbddg1gP8f44tczlGLerJhfGoC
8sgPm61BzMHUacB0LvUMDdrEGXzhYSTAT4paKRaNL4cJSTKksXmNv0mb6NVqzac3
HN0zxS2rDquwp8TTiA2f4s9Vg1lUN9PCT0vwa42oroXXER9HWj8Sv3ZP//Dyyiab
HJ8Z3xoKO08LhBzI2/xhQ8TNBJVQq2ywdhkNrMIjSNfk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org