Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/jUIa6Qps_rQ3Z1v3k3wulv3jkhs.roa
File: jUIa6Qps_rQ3Z1v3k3wulv3jkhs.roa (raw, json)
Hash identifier: XBOUAoLXB12j0KqQ/Qmx6sLnYwOZAaEcumHJmdoIMDI=
Subject key identifier: 8D:42:1A:E9:0A:6C:FE:B4:37:67:5B:F7:93:7C:2E:96:FD:E3:92:1B
Certificate issuer: /CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Certificate serial: 01856D8AF44451726E9C39120CA01188AE1D
Authority key identifier: 73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/jUIa6Qps_rQ3Z1v3k3wulv3jkhs.roa
Signing time: Sun 01 Jan 2023 13:35:01 +0000
ROA not before: Sun 01 Jan 2023 13:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212761
IP address blocks: 185.41.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:f4:44:51:72:6e:9c:39:12:0c:a0:11:88:ae:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Validity
Not Before: Jan 1 13:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d421ae90a6cfeb437675bf7937c2e96fde3921b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6c:d4:40:f4:5a:42:46:40:d4:3d:e6:11:86:
76:68:92:16:e8:22:00:99:a3:fe:3c:bf:c3:b6:10:
d6:e3:e2:b8:18:2e:8e:49:e9:ff:c8:4f:7d:7f:55:
a8:ed:18:1c:ba:03:39:01:78:17:b5:37:eb:70:93:
11:d8:b3:02:89:d4:60:e0:17:2e:92:0a:ad:9b:51:
21:a3:2d:a5:ba:5f:ad:b7:9f:37:54:e0:6e:20:34:
27:39:08:a5:a5:5a:15:3e:ba:bd:81:b0:74:e9:03:
bf:ac:8b:18:51:9f:d2:0a:4b:e1:ca:89:42:41:54:
58:f9:9e:86:05:9f:1f:b9:f5:60:cf:2d:6e:ae:aa:
e2:1f:c4:00:30:c7:be:55:df:9a:f2:00:53:f2:05:
50:a7:e5:e7:88:f1:5b:4e:11:c6:f3:bf:59:f1:e3:
17:3c:8b:ca:e3:8a:e8:e1:0a:5e:65:13:5c:38:b4:
a6:9b:84:85:86:b2:27:3d:5e:1c:d3:17:1d:a9:84:
a3:8d:ae:26:c0:1a:99:db:ee:0e:c3:e6:63:12:98:
db:30:04:39:4c:3d:08:fa:7c:95:e4:c3:69:3d:58:
ac:89:7b:c9:43:47:82:51:63:55:a0:d6:ce:bb:e5:
87:fa:74:41:8a:2a:bf:e2:c2:3f:17:37:68:7b:ef:
9c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:42:1A:E9:0A:6C:FE:B4:37:67:5B:F7:93:7C:2E:96:FD:E3:92:1B
X509v3 Authority Key Identifier:
keyid:73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/jUIa6Qps_rQ3Z1v3k3wulv3jkhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/c9_uqcfeJG5tfRpQdAYoWyJvkoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.23.0/24
Signature Algorithm: sha256WithRSAEncryption
15:05:b9:71:b5:7e:75:03:60:99:c1:ec:e7:49:f7:f9:fa:b6:
bc:4d:05:f7:44:1d:b4:75:1d:7e:84:05:da:cc:1c:cd:a8:89:
ba:4a:88:1e:d7:ee:88:bf:59:04:24:3d:bc:e2:22:8a:3e:b8:
b7:9c:64:bb:8c:f0:c2:be:e0:1c:d9:dc:46:78:d2:66:ae:2f:
49:fb:51:63:cc:cf:d9:d5:41:e3:52:fc:c2:e8:44:78:29:b3:
f3:a5:ca:b5:bc:aa:f3:bb:58:d3:f4:84:2d:21:c2:dc:35:2a:
80:af:17:d5:76:6f:9e:18:36:34:a4:7e:3d:66:65:66:22:07:
52:d7:66:a8:b6:d7:74:70:7c:7a:97:f8:1f:90:91:95:20:a4:
24:5d:db:1a:b0:d7:40:7d:e6:b0:b0:63:37:8b:a5:29:92:7f:
c4:29:22:55:d4:d0:a3:b2:92:c3:e8:72:43:86:e0:cb:21:0b:
d8:f6:9d:0c:c1:19:0d:b8:bc:a1:8a:6f:f1:88:49:46:62:0e:
9e:b7:92:27:df:2d:05:b0:d8:f6:7e:cb:26:43:d0:77:d6:50:
fb:5e:05:b3:b9:d9:43:64:bd:f6:9f:b7:cd:d8:d6:7a:5d:09:
d8:c3:16:31:6e:c0:c6:5b:60:a9:5e:73:99:d4:c3:97:1f:c2:
d5:4b:ce:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtivREUXJunDkSDKARiK4dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZGZlZWE5YzdkZTI0NmU2ZDdkMWE1MDc0MDYyODViMjI2
ZjkyODYwHhcNMjMwMTAxMTMzNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDQyMWFlOTBhNmNmZWI0Mzc2NzViZjc5MzdjMmU5NmZkZTM5MjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmzUQPRaQkZA1D3mEYZ2aJIW6CIA
maP+PL/DthDW4+K4GC6OSen/yE99f1Wo7RgcugM5AXgXtTfrcJMR2LMCidRg4Bcu
kgqtm1Ehoy2lul+tt583VOBuIDQnOQilpVoVPrq9gbB06QO/rIsYUZ/SCkvhyolC
QVRY+Z6GBZ8fufVgzy1urqriH8QAMMe+Vd+a8gBT8gVQp+XniPFbThHG879Z8eMX
PIvK44ro4QpeZRNcOLSmm4SFhrInPV4c0xcdqYSjja4mwBqZ2+4Ow+ZjEpjbMAQ5
TD0I+nyV5MNpPVisiXvJQ0eCUWNVoNbOu+WH+nRBiiq/4sI/Fzdoe++cpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI1CGukKbP60N2db95N8Lpb945IbMB8GA1UdIwQY
MBaAFHPf7qnH3iRubX0aUHQGKFsib5KGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzlfdXFjZmVKRzV0ZlJwUWRBWW9XeUp2a29ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS85YzBhN2UtOTk2My00YzBkLTk0YWMt
NDQ2ZDBhN2U5NDA0LzEvalVJYTZRcHNfclEzWjF2M2szd3VsdjNqa2hzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS85YzBhN2UtOTk2My00YzBkLTk0YWMtNDQ2ZDBhN2U5NDA0
LzEvYzlfdXFjZmVKRzV0ZlJwUWRBWW9XeUp2a29ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSkXMA0G
CSqGSIb3DQEBCwUAA4IBAQAVBblxtX51A2CZweznSff5+ra8TQX3RB20dR1+hAXa
zBzNqIm6Soge1+6Iv1kEJD284iKKPri3nGS7jPDCvuAc2dxGeNJmri9J+1FjzM/Z
1UHjUvzC6ER4KbPzpcq1vKrzu1jT9IQtIcLcNSqArxfVdm+eGDY0pH49ZmVmIgdS
12aottd0cHx6l/gfkJGVIKQkXdsasNdAfeawsGM3i6Upkn/EKSJV1NCjspLD6HJD
huDLIQvY9p0MwRkNuLyhim/xiElGYg6et5In3y0FsNj2fssmQ9B31lD7XgWzudlD
ZL32n7fN2NZ6XQnYwxYxbsDGW2CpXnOZ1MOXH8LVS845
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:55 2024 by rpki-client on console-fra.rpki-client.org