Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/23ae52-452d-49ab-a472-fed926b79f2b/1/McBwFi8jZhei-yBpVly1C9OdNVw.roa
File: McBwFi8jZhei-yBpVly1C9OdNVw.roa (raw, json)
Hash identifier: ug4VYgHksbCwPWKNVT9ysW2x69uJPjgwlA9FACBlwB0=
Subject key identifier: 31:C0:70:16:2F:23:66:17:A2:FB:20:69:56:5C:B5:0B:D3:9D:35:5C
Certificate issuer: /CN=70ba306215dd53127eb287fd2141fb45311e0cc6
Certificate serial: 7B44FA
Authority key identifier: 70:BA:30:62:15:DD:53:12:7E:B2:87:FD:21:41:FB:45:31:1E:0C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLowYhXdUxJ-sof9IUH7RTEeDMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/23ae52-452d-49ab-a472-fed926b79f2b/1/McBwFi8jZhei-yBpVly1C9OdNVw.roa
Signing time: Sat 01 Jan 2022 04:01:25 +0000
ROA not before: Sat 01 Jan 2022 04:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 212.18.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8078586 (0x7b44fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70ba306215dd53127eb287fd2141fb45311e0cc6
Validity
Not Before: Jan 1 04:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31c070162f236617a2fb2069565cb50bd39d355c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:79:db:83:75:8a:58:e0:79:a6:64:8d:14:33:
f0:e9:2b:1a:b6:43:ad:04:6a:71:98:36:2d:c4:5a:
e8:4c:71:41:1e:77:1c:9c:72:58:a9:4b:c5:87:54:
33:3f:2a:d7:27:3b:35:b4:81:86:3f:64:71:25:c7:
76:89:0a:55:c8:2b:b8:6f:f2:eb:d5:92:73:71:8e:
96:6a:17:f5:71:c4:f7:18:71:b4:ef:bc:af:6d:d6:
7f:cc:81:34:96:1f:48:01:12:d9:90:66:26:43:95:
09:8a:3d:45:c7:8d:f7:80:35:64:55:2c:d3:92:f0:
58:85:49:77:28:a1:50:3f:cb:eb:3f:84:6d:11:bd:
ea:dd:a0:7e:fa:a8:4e:4c:98:30:54:9e:5e:34:62:
fc:cf:05:ce:e2:6c:cd:5f:49:d8:55:92:30:47:3a:
62:e2:31:35:84:f4:1f:94:fd:43:16:22:7b:38:44:
84:90:4e:3a:49:da:db:1a:91:ee:4b:45:88:c8:33:
15:8a:76:fe:20:25:4f:63:6f:b2:87:9a:9a:dc:b7:
88:e7:47:ce:df:d2:15:af:5c:c9:df:49:5c:35:4d:
59:14:9a:59:dc:4d:78:33:ea:4e:9f:b5:ce:f5:ad:
aa:c7:b1:54:8e:44:1d:55:85:de:dd:d4:70:00:a5:
1f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C0:70:16:2F:23:66:17:A2:FB:20:69:56:5C:B5:0B:D3:9D:35:5C
X509v3 Authority Key Identifier:
keyid:70:BA:30:62:15:DD:53:12:7E:B2:87:FD:21:41:FB:45:31:1E:0C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLowYhXdUxJ-sof9IUH7RTEeDMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/23ae52-452d-49ab-a472-fed926b79f2b/1/McBwFi8jZhei-yBpVly1C9OdNVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/23ae52-452d-49ab-a472-fed926b79f2b/1/cLowYhXdUxJ-sof9IUH7RTEeDMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.118.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:30:a8:f3:a9:8b:d5:c9:ba:77:4a:0f:21:a7:bb:67:ac:f9:
9c:e1:42:64:52:40:16:12:2f:d4:31:43:12:16:a5:b3:e4:84:
1a:8d:c9:a8:2e:f8:67:9d:95:91:b9:48:16:de:59:a4:cb:d4:
08:77:64:bc:7e:f9:0c:44:22:26:2d:7b:68:14:83:c2:19:f5:
35:5c:40:dc:d7:cc:17:1e:3a:15:73:b2:bb:06:99:f5:04:a4:
51:a1:fe:c9:d9:29:61:55:44:bb:5b:b6:e8:cf:6e:44:ed:10:
99:a0:45:e3:83:85:6c:4c:cd:a0:d5:a9:b4:85:75:3b:e5:ff:
1c:2a:aa:20:fe:92:ae:ea:62:fb:8e:ee:c4:36:cc:b9:e3:2f:
cb:80:63:6a:c2:e8:66:a3:b7:2a:ea:3d:3e:8a:ee:dd:48:77:
f0:9f:9b:f5:82:48:32:03:2b:cb:3c:c2:d9:49:6a:9a:a8:f6:
9c:f5:f9:38:b6:86:77:72:4f:ac:28:b0:b5:32:9b:9b:f3:5d:
75:1d:da:1a:5b:c1:96:ff:92:dd:6f:be:b6:b8:aa:1c:36:24:
c3:07:68:f4:34:48:fc:35:d4:19:22:4d:a0:29:3e:93:3f:32:
49:46:23:fc:0c:f2:38:79:7f:f4:5a:7f:87:aa:e9:46:30:be:
0b:fd:66:40
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDe0T6MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDcw
YmEzMDYyMTVkZDUzMTI3ZWIyODdmZDIxNDFmYjQ1MzExZTBjYzYwHhcNMjIwMTAx
MDQwMTI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzMWMwNzAxNjJmMjM2
NjE3YTJmYjIwNjk1NjVjYjUwYmQzOWQzNTVjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAo3nbg3WKWOB5pmSNFDPw6SsatkOtBGpxmDYtxFroTHFBHncc
nHJYqUvFh1QzPyrXJzs1tIGGP2RxJcd2iQpVyCu4b/Lr1ZJzcY6Wahf1ccT3GHG0
77yvbdZ/zIE0lh9IARLZkGYmQ5UJij1Fx433gDVkVSzTkvBYhUl3KKFQP8vrP4Rt
Eb3q3aB++qhOTJgwVJ5eNGL8zwXO4mzNX0nYVZIwRzpi4jE1hPQflP1DFiJ7OESE
kE46SdrbGpHuS0WIyDMVinb+ICVPY2+yh5qa3LeI50fO39IVr1zJ30lcNU1ZFJpZ
3E14M+pOn7XO9a2qx7FUjkQdVYXe3dRwAKUfywIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFDHAcBYvI2YXovsgaVZctQvTnTVcMB8GA1UdIwQYMBaAFHC6MGIV3VMSfrKH
/SFB+0UxHgzGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Y0xvd1loWGRVeEotc29mOUlVSDdSVEVlRE1ZLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kNC8yM2FlNTItNDUyZC00OWFiLWE0NzItZmVkOTI2Yjc5ZjJiLzEv
TWNCd0ZpOGpaaGVpLXlCcFZseTFDOU9kTlZ3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8y
M2FlNTItNDUyZC00OWFiLWE0NzItZmVkOTI2Yjc5ZjJiLzEvY0xvd1loWGRVeEot
c29mOUlVSDdSVEVlRE1ZLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BJ2MA0GCSqGSIb3DQEBCwUAA4IB
AQCLMKjzqYvVybp3Sg8hp7tnrPmc4UJkUkAWEi/UMUMSFqWz5IQajcmoLvhnnZWR
uUgW3lmky9QId2S8fvkMRCImLXtoFIPCGfU1XEDc18wXHjoVc7K7Bpn1BKRRof7J
2SlhVUS7W7boz25E7RCZoEXjg4VsTM2g1am0hXU75f8cKqog/pKu6mL7ju7ENsy5
4y/LgGNqwuhmo7cq6j0+iu7dSHfwn5v1gkgyAyvLPMLZSWqaqPac9fk4toZ3ck+s
KLC1Mpub8111HdoaW8GW/5Ldb762uKocNiTDB2j0NEj8NdQZIk2gKT6TPzJJRiP8
DPI4eX/0Wn+HqulGML4L/WZA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:17 2024 by rpki-client on console-fra.rpki-client.org