Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/4c00a5-81c6-49e7-b5d8-1ab461f64318/1/k-Hwld7ITprc8YagICVdY53VvLQ.roa
File: k-Hwld7ITprc8YagICVdY53VvLQ.roa (raw, json)
Hash identifier: 4RADwj3yJ1bK+A1LSi04PUoLWPkZQ4ZfMaOqpcIG+7Y=
Subject key identifier: 93:E1:F0:95:DE:C8:4E:9A:DC:F1:86:A0:20:25:5D:63:9D:D5:BC:B4
Certificate issuer: /CN=5e09c0a07411c94730e0d2f2da08ab97963adb5b
Certificate serial: 1D9E804E
Authority key identifier: 5E:09:C0:A0:74:11:C9:47:30:E0:D2:F2:DA:08:AB:97:96:3A:DB:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XgnAoHQRyUcw4NLy2girl5Y621s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/4c00a5-81c6-49e7-b5d8-1ab461f64318/1/k-Hwld7ITprc8YagICVdY53VvLQ.roa
Signing time: Fri 20 May 2022 08:57:29 +0000
ROA not before: Fri 20 May 2022 08:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8935
IP address blocks: 185.116.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 496926798 (0x1d9e804e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e09c0a07411c94730e0d2f2da08ab97963adb5b
Validity
Not Before: May 20 08:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93e1f095dec84e9adcf186a020255d639dd5bcb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2f:a0:d7:63:39:1e:05:ea:ba:77:41:be:d2:
c0:a0:d1:2a:97:77:e6:db:e2:14:62:61:96:7e:a0:
17:61:9f:05:1c:01:a2:87:92:be:db:02:3b:c0:59:
87:c6:6d:52:2e:b3:6b:e4:ed:aa:b3:79:de:d4:9f:
69:25:8e:23:9b:1d:fd:bd:f2:32:05:8a:5f:63:b9:
cd:6d:69:29:d0:6f:ce:67:64:ac:83:73:31:3b:f5:
92:80:ea:cb:d3:44:07:14:49:b6:db:40:67:49:db:
be:e2:c4:69:89:e0:fa:ad:24:97:05:9f:7d:fb:5b:
16:c1:91:6e:ca:10:e5:90:b9:e4:6e:91:b7:e1:e8:
57:df:95:da:a0:6c:06:6a:7e:4f:18:72:34:6d:c4:
07:25:fa:1d:82:b3:39:f3:35:09:f3:65:f4:ab:c2:
87:24:48:3f:f4:03:2f:b2:42:e6:6d:5c:a2:00:da:
24:52:ef:15:86:c8:33:72:80:2c:d3:80:27:b3:7a:
b2:b1:6c:e5:3c:a4:a1:45:9e:59:7e:79:52:1c:62:
f9:f8:b3:d6:3d:69:6c:71:c0:b6:e2:2c:74:e6:64:
a4:77:1c:78:36:b7:96:37:eb:e3:28:6a:7a:62:ba:
8a:f7:74:e3:f6:09:ab:63:1d:33:6d:78:91:73:2d:
ac:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E1:F0:95:DE:C8:4E:9A:DC:F1:86:A0:20:25:5D:63:9D:D5:BC:B4
X509v3 Authority Key Identifier:
keyid:5E:09:C0:A0:74:11:C9:47:30:E0:D2:F2:DA:08:AB:97:96:3A:DB:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XgnAoHQRyUcw4NLy2girl5Y621s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4c00a5-81c6-49e7-b5d8-1ab461f64318/1/k-Hwld7ITprc8YagICVdY53VvLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4c00a5-81c6-49e7-b5d8-1ab461f64318/1/XgnAoHQRyUcw4NLy2girl5Y621s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.12.0/22
Signature Algorithm: sha256WithRSAEncryption
58:67:59:bd:bc:e4:62:2b:39:d5:2b:77:95:39:4a:0e:29:12:
40:db:b2:92:92:78:c0:ec:1a:67:39:fa:31:a9:59:21:c6:ed:
3e:ca:0c:4f:cb:1e:5e:48:36:39:6a:a6:19:91:c3:c7:55:30:
41:cd:ad:89:08:46:a4:28:f5:9c:6f:f0:b6:71:37:59:a1:ba:
5b:1f:65:ad:b1:a4:db:0e:35:07:a9:0f:7d:2d:8e:f1:96:36:
15:68:db:74:b9:9f:96:60:95:35:ba:2a:ea:4f:ce:cc:ab:a4:
74:9a:92:27:8e:7f:08:b2:5e:b4:86:bd:5e:ea:96:54:7f:bc:
e5:9a:f8:c1:d4:a6:38:13:fa:e1:0d:92:e6:9b:bd:48:17:a5:
80:83:aa:64:84:28:06:96:19:78:ef:2c:13:0f:64:8f:f7:f1:
a4:3d:df:be:c1:12:5d:f5:16:72:e3:e8:4c:49:c1:d4:de:24:
6a:f0:92:d7:97:fe:11:54:86:16:dd:99:66:c7:a6:77:7b:06:
22:cb:d8:7f:b1:81:01:15:e0:56:27:7e:b0:c7:10:f9:d5:61:
44:71:69:19:d4:0d:19:aa:66:a1:ae:f9:40:71:f8:ef:56:80:
e2:a9:48:0f:a5:05:bc:ce:5e:d4:1e:98:9d:18:fa:fa:0b:48:
0b:67:98:a3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHZ6ATjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZTA5YzBhMDc0MTFjOTQ3MzBlMGQyZjJkYTA4YWI5Nzk2M2FkYjViMB4XDTIyMDUy
MDA4NTcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTNlMWYwOTVkZWM4
NGU5YWRjZjE4NmEwMjAyNTVkNjM5ZGQ1YmNiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ8voNdjOR4F6rp3Qb7SwKDRKpd35tviFGJhln6gF2GfBRwB
ooeSvtsCO8BZh8ZtUi6za+TtqrN53tSfaSWOI5sd/b3yMgWKX2O5zW1pKdBvzmdk
rINzMTv1koDqy9NEBxRJtttAZ0nbvuLEaYng+q0klwWffftbFsGRbsoQ5ZC55G6R
t+HoV9+V2qBsBmp+TxhyNG3EByX6HYKzOfM1CfNl9KvChyRIP/QDL7JC5m1cogDa
JFLvFYbIM3KALNOAJ7N6srFs5TykoUWeWX55Uhxi+fiz1j1pbHHAtuIsdOZkpHcc
eDa3ljfr4yhqemK6ivd04/YJq2MdM214kXMtrCUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBST4fCV3shOmtzxhqAgJV1jndW8tDAfBgNVHSMEGDAWgBReCcCgdBHJRzDg
0vLaCKuXljrbWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hnbkFvSFFSeVVjdzROTHkyZ2lybDVZNjIxcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDEvNGMwMGE1LTgxYzYtNDllNy1iNWQ4LTFhYjQ2MWY2NDMxOC8x
L2stSHdsZDdJVHByYzhZYWdJQ1ZkWTUzVnZMUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEv
NGMwMGE1LTgxYzYtNDllNy1iNWQ4LTFhYjQ2MWY2NDMxOC8xL1hnbkFvSFFSeVVj
dzROTHkyZ2lybDVZNjIxcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArl0DDANBgkqhkiG9w0BAQsFAAOC
AQEAWGdZvbzkYis51St3lTlKDikSQNuykpJ4wOwaZzn6MalZIcbtPsoMT8seXkg2
OWqmGZHDx1UwQc2tiQhGpCj1nG/wtnE3WaG6Wx9lrbGk2w41B6kPfS2O8ZY2FWjb
dLmflmCVNboq6k/OzKukdJqSJ45/CLJetIa9XuqWVH+85Zr4wdSmOBP64Q2S5pu9
SBelgIOqZIQoBpYZeO8sEw9kj/fxpD3fvsESXfUWcuPoTEnB1N4kavCS15f+EVSG
Ft2ZZsemd3sGIsvYf7GBARXgVid+sMcQ+dVhRHFpGdQNGapmoa75QHH471aA4qlI
D6UFvM5e1B6YnRj6+gtIC2eYow==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org