Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/cyKmDwaWzD-WFnkWuXAL18FOwKM.roa
File: cyKmDwaWzD-WFnkWuXAL18FOwKM.roa (raw, json)
Hash identifier: iddf2hIzxHE6BF52iVrFhpSSMYHVkVEeDMzm5fXtlLE=
Subject key identifier: 73:22:A6:0F:06:96:CC:3F:96:16:79:16:B9:70:0B:D7:C1:4E:C0:A3
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 0630BF83
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/cyKmDwaWzD-WFnkWuXAL18FOwKM.roa
Signing time: Sat 01 Jan 2022 14:05:39 +0000
ROA not before: Sat 01 Jan 2022 14:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44277
IP address blocks: 86.107.180.0/24 maxlen: 24
188.213.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103858051 (0x630bf83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Jan 1 14:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7322a60f0696cc3f96167916b9700bd7c14ec0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:74:0a:dd:5e:09:88:83:1e:79:82:41:a7:1d:
d2:3f:73:b0:d0:4c:83:bb:dd:e5:a7:92:ef:02:3c:
cf:eb:65:ab:e7:04:04:15:04:52:60:20:7d:a9:19:
6c:61:a2:9d:68:12:0f:89:0b:92:9a:ad:07:5f:4b:
a5:54:ef:24:1e:54:ee:90:73:eb:9f:cd:c1:cc:6c:
4e:00:d8:fc:b2:94:a2:62:24:d4:24:c4:bb:4b:b3:
1f:38:51:38:92:64:16:03:4d:96:b2:ad:1b:97:1e:
5c:74:ca:35:ac:75:bf:b6:f2:95:44:d9:06:c5:81:
b3:c3:ab:66:2d:73:e1:0f:3b:c1:a0:18:50:1a:bd:
e4:da:ca:4f:ab:98:92:a3:47:63:e3:04:fc:98:5a:
43:7d:7f:60:e8:38:28:7c:34:9a:38:7d:70:4c:75:
50:8e:cd:74:e0:18:f3:a4:0d:78:87:cc:d2:08:e1:
9b:4f:d6:4a:66:9d:00:ce:e6:ae:89:ea:91:04:d4:
91:e8:ee:cf:b4:a3:46:9e:27:06:73:de:76:19:ad:
cb:99:26:5e:65:61:7b:56:ee:aa:68:9a:28:9f:5f:
82:32:27:80:fa:1e:a9:48:88:13:30:9c:45:f1:35:
0f:d7:b5:16:77:60:4a:f9:0c:64:c7:18:08:7b:62:
7c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:22:A6:0F:06:96:CC:3F:96:16:79:16:B9:70:0B:D7:C1:4E:C0:A3
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/cyKmDwaWzD-WFnkWuXAL18FOwKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.180.0/24
188.213.51.0/24
Signature Algorithm: sha256WithRSAEncryption
14:5b:af:96:2b:d2:96:da:5f:1d:65:ed:c2:57:4a:cb:80:ac:
0c:60:5a:b9:0f:4f:e6:37:d0:21:c9:32:0c:bb:d1:61:2a:cb:
98:44:2c:01:b9:cf:15:ae:59:c4:26:98:4e:5d:be:37:e5:44:
9d:80:4d:da:99:18:38:88:fd:be:3b:1c:c3:24:1d:73:1a:cf:
0d:ad:06:8e:31:53:76:a3:15:2b:10:e8:a1:6a:7c:d5:ef:d5:
d4:6f:7e:71:b8:6a:64:a6:39:0b:f7:4f:7d:81:ef:97:28:c2:
44:30:67:c5:49:37:30:38:4b:2d:f1:ef:72:7a:a1:50:74:98:
01:6a:48:c9:c0:5e:14:bb:21:a0:7a:35:30:e0:82:41:c4:84:
13:f2:bf:e7:2b:8b:e6:2e:c3:29:54:a3:96:1a:99:45:8a:4b:
0b:88:ed:45:46:6e:8f:f9:84:69:1d:0d:65:7a:a1:6f:64:07:
2d:a9:14:0a:23:c3:b4:d6:90:d9:69:6b:72:f7:27:8f:e3:ce:
04:32:be:2a:50:5a:fe:83:ef:b9:93:0c:7b:52:26:d7:40:12:
2e:99:50:96:9d:cd:b0:9a:22:79:50:e0:d4:4b:ae:ef:2f:29:
06:cc:d2:95:c0:6c:dd:69:96:2b:29:82:ca:65:e4:90:5b:0a:
de:ec:37:69
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBjC/gzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OGE4NTUwNjU5YmI2OGU3NzBkOGIwMTI2YjcyNjFmYjg3ZDgyNDBiMB4XDTIyMDEw
MTE0MDUzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzMyMmE2MGYwNjk2
Y2MzZjk2MTY3OTE2Yjk3MDBiZDdjMTRlYzBhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALl0Ct1eCYiDHnmCQacd0j9zsNBMg7vd5aeS7wI8z+tlq+cE
BBUEUmAgfakZbGGinWgSD4kLkpqtB19LpVTvJB5U7pBz65/NwcxsTgDY/LKUomIk
1CTEu0uzHzhROJJkFgNNlrKtG5ceXHTKNax1v7bylUTZBsWBs8OrZi1z4Q87waAY
UBq95NrKT6uYkqNHY+ME/JhaQ31/YOg4KHw0mjh9cEx1UI7NdOAY86QNeIfM0gjh
m0/WSmadAM7mronqkQTUkejuz7SjRp4nBnPedhmty5kmXmVhe1buqmiaKJ9fgjIn
gPoeqUiIEzCcRfE1D9e1FndgSvkMZMcYCHtifDECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRzIqYPBpbMP5YWeRa5cAvXwU7AozAfBgNVHSMEGDAWgBQ4qFUGWbto53DY
sBJrcmH7h9gkCzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09LaFZCbG03YU9kdzJMQVNhM0poLTRmWUpBcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDIvN2RjZTczLWM0ZGYtNDMzMy04ZTgxLTFkNzAzYjQ5NjYzNC8x
L2N5S21Ed2FXekQtV0Zua1d1WEFMMThGT3dLTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDIv
N2RjZTczLWM0ZGYtNDMzMy04ZTgxLTFkNzAzYjQ5NjYzNC8xL09LaFZCbG03YU9k
dzJMQVNhM0poLTRmWUpBcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFZrtAMEALzVMzANBgkqhkiG9w0B
AQsFAAOCAQEAFFuvlivSltpfHWXtwldKy4CsDGBauQ9P5jfQIckyDLvRYSrLmEQs
AbnPFa5ZxCaYTl2+N+VEnYBN2pkYOIj9vjscwyQdcxrPDa0GjjFTdqMVKxDooWp8
1e/V1G9+cbhqZKY5C/dPfYHvlyjCRDBnxUk3MDhLLfHvcnqhUHSYAWpIycBeFLsh
oHo1MOCCQcSEE/K/5yuL5i7DKVSjlhqZRYpLC4jtRUZuj/mEaR0NZXqhb2QHLakU
CiPDtNaQ2Wlrcvcnj+POBDK+KlBa/oPvuZMMe1Im10ASLplQlp3NsJoieVDg1Euu
7y8pBszSlcBs3WmWKymCymXkkFsK3uw3aQ==
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:57:31 2025 by rpki-client