Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/KZ7KeZVAo-m2QcRzYFmzinzimIo.roa
File: KZ7KeZVAo-m2QcRzYFmzinzimIo.roa (raw, json)
Hash identifier: wGNUo0YhUPxNrt2Ra1nevzsiI1A2yAOeL4MHXsL5sv8=
Subject key identifier: 29:9E:CA:79:95:40:A3:E9:B6:41:C4:73:60:59:B3:8A:7C:E2:98:8A
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27D900376D0841B7CCCB15B2E3AF4D
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/KZ7KeZVAo-m2QcRzYFmzinzimIo.roa
Signing time: Fri 28 Oct 2022 10:33:58 +0000
ROA not before: Fri 28 Oct 2022 10:33:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206995
IP address blocks: 89.117.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:d9:00:37:6d:08:41:b7:cc:cb:15:b2:e3:af:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=299eca799540a3e9b641c4736059b38a7ce2988a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:36:14:d1:0e:79:ec:27:31:03:d7:2b:8a:9b:
90:4f:c9:75:14:b7:66:d7:ae:fb:f4:86:97:5f:dc:
83:7c:67:72:d1:1a:b1:a7:d6:1a:21:aa:5a:de:1f:
f0:11:df:07:41:df:6d:0b:e3:5b:86:15:94:55:67:
b9:c7:d3:f2:b7:2c:6a:c2:7c:f9:d8:65:ef:5f:d2:
99:78:08:a5:b7:eb:ab:38:7a:36:40:8b:7a:f6:21:
55:ed:97:aa:06:c0:b9:8b:5e:ae:cb:c2:84:e0:59:
30:ab:81:14:e8:9a:60:d7:b7:75:d9:30:5a:8b:20:
69:99:55:42:41:df:0d:48:37:a4:13:a6:32:56:ec:
07:3b:b0:af:dc:32:7d:c5:cc:13:42:95:e3:86:e2:
6b:8b:2b:26:b2:e7:bd:b8:cb:c5:39:49:f1:7f:75:
c0:bc:54:da:f6:43:62:cd:26:98:fc:bb:fe:80:8a:
30:0a:82:12:27:8f:a9:b7:ad:49:c6:d5:9b:df:e4:
a7:af:2d:5e:ec:33:a7:31:68:79:a1:36:db:f1:ad:
f8:42:c5:ae:09:ba:53:0b:e1:99:0a:41:4b:1d:33:
b9:0e:3d:94:f0:a6:9b:26:b6:b9:be:a9:15:40:dd:
7c:3c:7e:9a:b1:7d:97:e8:e6:bf:e5:4d:e2:d9:f7:
ea:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9E:CA:79:95:40:A3:E9:B6:41:C4:73:60:59:B3:8A:7C:E2:98:8A
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/KZ7KeZVAo-m2QcRzYFmzinzimIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.167.0/24
Signature Algorithm: sha256WithRSAEncryption
37:39:25:52:ae:65:0f:35:29:4b:5c:08:61:eb:99:99:bf:7c:
76:74:10:79:63:7a:7e:1f:d5:bd:9e:a8:a1:d6:e0:f6:08:5b:
0b:a7:da:fb:37:4f:99:a4:42:b0:ae:35:af:ba:4d:44:6d:85:
88:9e:f7:a6:c4:bc:5b:ed:4e:bf:a5:09:48:1b:b1:db:9a:d0:
71:4c:42:91:16:2c:e4:2b:fd:c3:9a:20:7f:6c:59:70:17:0e:
f4:b5:8a:68:fe:96:76:b1:61:c1:8e:3d:a4:9c:72:fd:e9:a1:
db:96:0f:6d:24:5e:09:a0:dd:e0:74:51:31:bc:51:e4:70:cd:
75:29:fa:e5:e4:9b:27:29:d0:41:b4:cc:31:7f:5a:af:04:3f:
67:9b:3d:71:2f:fc:4b:36:7a:f2:a5:26:93:e4:69:68:1d:9f:
5b:e1:93:d1:f3:5d:eb:36:f9:9f:5a:29:fa:b5:3e:9c:08:c8:
19:ec:2a:01:24:a9:31:84:3b:0d:a7:1c:34:63:ac:57:1b:57:
d7:6f:0e:b9:12:a0:44:b3:a9:48:e7:e9:3d:da:9c:38:d5:1a:
87:83:75:00:90:67:bc:7a:c0:d3:4f:0d:5a:4d:37:95:28:1a:
83:24:b6:6e:81:62:f1:60:11:69:2c:7e:f9:de:33:96:06:54:
49:f7:98:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQeJ9kAN20IQbfMyxWy469NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjNWI1M2RmYTgzMTYwOTNjMTcyYjQzMTU5MjJlZjE3ZTY1
ZjA1MWQwHhcNMjIxMDI4MTAzMzU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTllY2E3OTk1NDBhM2U5YjY0MWM0NzM2MDU5YjM4YTdjZTI5ODhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhDYU0Q557CcxA9cripuQT8l1FLdm
16779IaXX9yDfGdy0Rqxp9YaIapa3h/wEd8HQd9tC+NbhhWUVWe5x9Pytyxqwnz5
2GXvX9KZeAilt+urOHo2QIt69iFV7ZeqBsC5i16uy8KE4Fkwq4EU6Jpg17d12TBa
iyBpmVVCQd8NSDekE6YyVuwHO7Cv3DJ9xcwTQpXjhuJriysmsue9uMvFOUnxf3XA
vFTa9kNizSaY/Lv+gIowCoISJ4+pt61JxtWb3+Snry1e7DOnMWh5oTbb8a34QsWu
CbpTC+GZCkFLHTO5Dj2U8KabJra5vqkVQN18PH6asX2X6Oa/5U3i2ffqZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCmeynmVQKPptkHEc2BZs4p84piKMB8GA1UdIwQY
MBaAFPxbU9+oMWCTwXK0MVki7xfmXwUdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0Z0VDM2Z3hZSlBCY3JReFdTTHZGLVpmQlIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC81ZDU2ZTUtODM4YS00M2YzLWI1MmMt
MTRlZmM5ODI4NjdmLzEvS1o3S2VaVkFvLW0yUWNSellGbXppbnppbUlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC81ZDU2ZTUtODM4YS00M2YzLWI1MmMtMTRlZmM5ODI4Njdm
LzEvX0Z0VDM2Z3hZSlBCY3JReFdTTHZGLVpmQlIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWXWnMA0G
CSqGSIb3DQEBCwUAA4IBAQA3OSVSrmUPNSlLXAhh65mZv3x2dBB5Y3p+H9W9nqih
1uD2CFsLp9r7N0+ZpEKwrjWvuk1EbYWInvemxLxb7U6/pQlIG7HbmtBxTEKRFizk
K/3DmiB/bFlwFw70tYpo/pZ2sWHBjj2knHL96aHblg9tJF4JoN3gdFExvFHkcM11
Kfrl5JsnKdBBtMwxf1qvBD9nmz1xL/xLNnrypSaT5GloHZ9b4ZPR813rNvmfWin6
tT6cCMgZ7CoBJKkxhDsNpxw0Y6xXG1fXbw65EqBEs6lI5+k92pw41RqHg3UAkGe8
esDTTw1aTTeVKBqDJLZugWLxYBFpLH753jOWBlRJ95h8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:18 2024 by rpki-client on console-fra.rpki-client.org