Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/wCHIZboMktDHvUd9PYjxh1ARSVQ.roa
File: wCHIZboMktDHvUd9PYjxh1ARSVQ.roa (raw, json)
Hash identifier: JTsnS5+GdDE8LN7LDE0USohtOWoWZWcE55naVg1QaQ0=
Subject key identifier: C0:21:C8:65:BA:0C:92:D0:C7:BD:47:7D:3D:88:F1:87:50:11:49:54
Certificate issuer: /CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Certificate serial: 01DEEC1A
Authority key identifier: 85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/wCHIZboMktDHvUd9PYjxh1ARSVQ.roa
Signing time: Sat 09 Apr 2022 04:24:47 +0000
ROA not before: Sat 09 Apr 2022 04:24:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.212.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31386650 (0x1deec1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Validity
Not Before: Apr 9 04:24:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c021c865ba0c92d0c7bd477d3d88f18750114954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:64:85:8f:49:85:1e:0e:92:69:bb:01:91:8c:
5e:1f:72:1e:13:7b:88:65:e8:26:2b:5f:88:40:24:
11:bf:43:ee:30:4a:62:ce:3a:7d:4f:0d:c9:71:cb:
43:2f:66:cf:33:43:a0:48:bc:80:74:03:86:a9:4b:
37:f6:57:73:a1:b8:be:1d:4d:54:86:a2:86:ab:31:
c9:30:4b:9d:33:3c:d8:e2:7f:10:68:e9:ed:d1:13:
b0:24:67:39:64:ca:1c:1a:c1:31:03:fe:a4:5f:1c:
ff:e7:86:3c:9e:33:5e:ba:b4:20:40:79:18:13:29:
0b:90:16:af:72:5c:94:d5:c5:e4:93:72:7e:a5:59:
7c:f1:91:a9:92:c1:85:65:2c:b6:6b:ba:4e:df:89:
f2:cb:c6:86:b7:b5:cf:91:63:aa:0a:78:e7:40:25:
49:03:c6:19:ca:79:6e:a0:45:0c:bd:8e:51:24:1a:
c5:e2:c7:70:e2:4a:7c:ad:87:68:13:2b:28:14:64:
71:43:e1:48:8d:fe:d1:eb:09:6c:e6:b8:1b:e1:53:
13:16:11:7e:08:15:28:8f:0b:99:84:7e:16:8a:16:
c0:e2:c4:37:69:c7:b2:5f:d0:ad:b1:c1:6e:f3:1a:
e3:a0:32:63:11:d7:6b:ec:92:8c:43:f0:18:ac:78:
22:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:21:C8:65:BA:0C:92:D0:C7:BD:47:7D:3D:88:F1:87:50:11:49:54
X509v3 Authority Key Identifier:
keyid:85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/wCHIZboMktDHvUd9PYjxh1ARSVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/hcP2qehVDAkLw7JX9yuPZbaan2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.119.0/24
Signature Algorithm: sha256WithRSAEncryption
00:08:7e:e5:cc:6b:f4:ef:72:ae:ef:ac:72:74:45:0a:f3:34:
fa:b5:3c:62:09:9d:60:45:7f:a4:ea:20:81:ce:f4:9a:72:eb:
d5:2c:34:9e:ca:ce:cb:20:f8:32:be:74:36:92:ef:90:ca:e5:
56:fb:39:bd:3b:bb:d0:56:15:e8:f3:19:69:38:08:0c:ca:26:
a9:ef:0a:8e:bc:64:00:4f:b3:1c:50:f8:fd:1b:c8:3c:2d:51:
24:48:35:b8:2a:7e:02:de:cb:91:de:95:4a:23:18:7a:4b:e4:
7b:f1:02:61:67:39:74:f2:28:94:98:a4:7a:85:ff:da:93:99:
ad:6f:70:6a:78:67:d7:b4:c2:06:b0:c7:13:c0:1c:4d:24:0d:
30:cc:34:0b:96:31:ea:08:fe:e1:de:f1:9f:cf:c8:63:e4:56:
7f:61:ac:70:d6:fd:7c:df:e6:0d:08:c0:27:0f:72:79:33:6b:
3f:15:ce:a2:b3:da:e7:18:46:57:b1:d5:53:0b:23:59:30:40:
4b:1c:37:d5:37:99:fe:54:58:81:fd:95:4b:7a:84:80:72:06:
92:b5:b1:b7:3d:e3:84:a8:d9:52:fb:bb:2c:ab:f9:c1:28:55:
6f:c0:0f:73:c5:32:a5:c2:00:99:dd:c3:56:f7:33:74:f1:2b:
5d:00:b3:8d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAd7sGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NWMzZjZhOWU4NTUwYzA5MGJjM2IyNTdmNzJiOGY2NWI2OWE5ZjYxMB4XDTIyMDQw
OTA0MjQ0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzAyMWM4NjViYTBj
OTJkMGM3YmQ0NzdkM2Q4OGYxODc1MDExNDk1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKxkhY9JhR4Okmm7AZGMXh9yHhN7iGXoJitfiEAkEb9D7jBK
Ys46fU8NyXHLQy9mzzNDoEi8gHQDhqlLN/ZXc6G4vh1NVIaihqsxyTBLnTM82OJ/
EGjp7dETsCRnOWTKHBrBMQP+pF8c/+eGPJ4zXrq0IEB5GBMpC5AWr3JclNXF5JNy
fqVZfPGRqZLBhWUstmu6Tt+J8svGhre1z5Fjqgp450AlSQPGGcp5bqBFDL2OUSQa
xeLHcOJKfK2HaBMrKBRkcUPhSI3+0esJbOa4G+FTExYRfggVKI8LmYR+FooWwOLE
N2nHsl/QrbHBbvMa46AyYxHXa+ySjEPwGKx4IlUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTAIchlugyS0Me9R309iPGHUBFJVDAfBgNVHSMEGDAWgBSFw/ap6FUMCQvD
slf3K49ltpqfYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hjUDJxZWhWREFrTHc3Slg5eXVQWmJhYW4yRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGEvNTI0YmE1LTA5NmQtNDdmZi1hOGY0LWRjOGEyZDllYzZmMy8x
L3dDSElaYm9Na3RESHZVZDlQWWp4aDFBUlNWUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGEv
NTI0YmE1LTA5NmQtNDdmZi1hOGY0LWRjOGEyZDllYzZmMy8xL2hjUDJxZWhWREFr
THc3Slg5eXVQWmJhYW4yRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnUdzANBgkqhkiG9w0BAQsFAAOC
AQEAAAh+5cxr9O9yru+scnRFCvM0+rU8YgmdYEV/pOoggc70mnLr1Sw0nsrOyyD4
Mr50NpLvkMrlVvs5vTu70FYV6PMZaTgIDMomqe8KjrxkAE+zHFD4/RvIPC1RJEg1
uCp+At7Lkd6VSiMYekvke/ECYWc5dPIolJikeoX/2pOZrW9wanhn17TCBrDHE8Ac
TSQNMMw0C5Yx6gj+4d7xn8/IY+RWf2GscNb9fN/mDQjAJw9yeTNrPxXOorPa5xhG
V7HVUwsjWTBASxw31TeZ/lRYgf2VS3qEgHIGkrWxtz3jhKjZUvu7LKv5wShVb8AP
c8UypcIAmd3DVvczdPErXQCzjQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:05 2025 by rpki-client