Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/y6AGc58nvRaKfpkMKz0nO4cXnBQ.roa
File: y6AGc58nvRaKfpkMKz0nO4cXnBQ.roa (raw, json)
Hash identifier: GOrGL5nutRjzEuETt1EBCRiWb1dv2SzsHSIMVbC+pAo=
Subject key identifier: CB:A0:06:73:9F:27:BD:16:8A:7E:99:0C:2B:3D:27:3B:87:17:9C:14
Certificate issuer: /CN=913f4c9c6388f0a0342762009e324ec13271337e
Certificate serial: 01873BC637825F453EE1567E3B7A0508EC09
Authority key identifier: 91:3F:4C:9C:63:88:F0:A0:34:27:62:00:9E:32:4E:C1:32:71:33:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kT9MnGOI8KA0J2IAnjJOwTJxM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/y6AGc58nvRaKfpkMKz0nO4cXnBQ.roa
Signing time: Sat 01 Apr 2023 07:44:18 +0000
ROA not before: Sat 01 Apr 2023 07:44:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.151.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:3b:c6:37:82:5f:45:3e:e1:56:7e:3b:7a:05:08:ec:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913f4c9c6388f0a0342762009e324ec13271337e
Validity
Not Before: Apr 1 07:44:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cba006739f27bd168a7e990c2b3d273b87179c14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c8:63:41:40:6e:86:18:9d:78:d4:be:8f:3f:
e0:8a:eb:37:a6:2c:99:03:11:ad:4d:15:a3:14:65:
65:d5:a7:c4:fd:34:a1:0e:c8:35:19:19:c2:37:33:
64:e6:76:d3:2c:94:b3:9a:40:41:67:55:43:48:87:
2f:38:4c:c5:05:77:4e:6a:6d:89:eb:98:23:fa:fd:
81:c7:e2:38:47:ad:55:f7:3d:bb:8f:6f:84:2b:c0:
ac:62:39:43:b9:68:93:3e:6b:a1:d4:d6:69:3c:09:
12:1e:46:aa:68:4f:2d:a5:22:05:da:0f:10:7e:e9:
82:5b:1a:07:31:d3:4a:35:49:27:b8:39:f7:eb:7d:
01:14:29:74:8b:17:75:e7:d9:67:ec:0d:01:ef:7a:
9f:78:34:af:0e:30:0e:1e:8a:3c:d1:8f:d8:fa:5b:
3d:c5:4c:93:3e:09:b1:e2:0e:9a:79:96:24:9e:70:
c6:76:14:a7:72:ca:e9:6b:5d:02:80:e1:b9:19:51:
7f:cc:e0:52:9a:47:1c:8e:e9:06:24:ad:e9:3b:0d:
50:de:aa:d2:76:4c:9a:87:15:95:0d:65:43:71:24:
e4:9b:6e:0c:38:fa:a5:21:63:cf:bc:31:86:31:d2:
b4:b9:ae:2b:f9:d6:1d:e5:cf:e1:93:14:2a:20:fe:
48:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A0:06:73:9F:27:BD:16:8A:7E:99:0C:2B:3D:27:3B:87:17:9C:14
X509v3 Authority Key Identifier:
keyid:91:3F:4C:9C:63:88:F0:A0:34:27:62:00:9E:32:4E:C1:32:71:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kT9MnGOI8KA0J2IAnjJOwTJxM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/y6AGc58nvRaKfpkMKz0nO4cXnBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/kT9MnGOI8KA0J2IAnjJOwTJxM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.144.0/24
Signature Algorithm: sha256WithRSAEncryption
60:21:87:a3:0b:4c:14:69:ec:16:06:e2:98:72:06:d3:f4:8f:
8c:6e:a8:44:88:ff:9e:1c:72:59:5d:19:8d:0b:ed:09:66:40:
f0:55:33:06:11:8c:dd:91:0e:ab:e5:df:fb:3c:3c:7e:a6:5c:
04:8a:83:7d:7b:a6:5a:26:39:e3:12:02:30:56:41:eb:a4:37:
df:77:5a:fe:1c:20:a3:f4:cf:0a:0d:e8:28:f3:a2:a7:af:10:
c8:d7:ae:fe:a9:ce:f7:23:df:ae:f7:66:95:48:36:76:29:00:
6b:3c:d1:95:31:c2:96:4b:a7:54:be:24:5d:92:d7:c1:a4:ef:
b3:99:51:8a:cc:11:68:13:87:0e:c0:9f:c2:2e:df:10:fb:e5:
5f:8a:9d:7e:8a:ec:95:ed:e3:67:b8:16:64:92:6a:38:cc:a9:
ee:27:49:94:bc:de:59:5c:92:a6:34:d6:86:7e:c9:d9:61:a7:
2e:4b:94:d6:9b:a0:e0:d1:8c:0c:c9:a2:01:3e:21:d5:b5:d5:
91:7d:8a:4b:0c:3d:eb:ef:d8:c5:46:01:fb:61:77:b0:91:4d:
8e:6c:13:8a:d7:b2:d5:b4:a5:4b:ba:b4:04:35:a0:d5:80:53:
29:38:bf:2f:b2:65:f3:46:ab:71:ec:81:66:81:32:00:d2:37:
9d:86:83:08
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYc7xjeCX0U+4VZ+O3oFCOwJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxM2Y0YzljNjM4OGYwYTAzNDI3NjIwMDllMzI0ZWMxMzI3
MTMzN2UwHhcNMjMwNDAxMDc0NDE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmEwMDY3MzlmMjdiZDE2OGE3ZTk5MGMyYjNkMjczYjg3MTc5YzE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvchjQUBuhhideNS+jz/gius3piyZ
AxGtTRWjFGVl1afE/TShDsg1GRnCNzNk5nbTLJSzmkBBZ1VDSIcvOEzFBXdOam2J
65gj+v2Bx+I4R61V9z27j2+EK8CsYjlDuWiTPmuh1NZpPAkSHkaqaE8tpSIF2g8Q
fumCWxoHMdNKNUknuDn3630BFCl0ixd159ln7A0B73qfeDSvDjAOHoo80Y/Y+ls9
xUyTPgmx4g6aeZYknnDGdhSncsrpa10CgOG5GVF/zOBSmkccjukGJK3pOw1Q3qrS
dkyahxWVDWVDcSTkm24MOPqlIWPPvDGGMdK0ua4r+dYd5c/hkxQqIP5IpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMugBnOfJ70Win6ZDCs9JzuHF5wUMB8GA1UdIwQY
MBaAFJE/TJxjiPCgNCdiAJ4yTsEycTN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1Q5TW5HT0k4S0EwSjJJQW5qSk93VEp4TTM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8xYzc0ODEtZTZhMC00YTFjLTg3ZTYt
NDAyNzQyM2FhMzhjLzEveTZBR2M1OG52UmFLZnBrTUt6MG5PNGNYbkJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi8xYzc0ODEtZTZhMC00YTFjLTg3ZTYtNDAyNzQyM2FhMzhj
LzEva1Q5TW5HT0k4S0EwSjJJQW5qSk93VEp4TTM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZeQMA0G
CSqGSIb3DQEBCwUAA4IBAQBgIYejC0wUaewWBuKYcgbT9I+MbqhEiP+eHHJZXRmN
C+0JZkDwVTMGEYzdkQ6r5d/7PDx+plwEioN9e6ZaJjnjEgIwVkHrpDffd1r+HCCj
9M8KDego86KnrxDI167+qc73I9+u92aVSDZ2KQBrPNGVMcKWS6dUviRdktfBpO+z
mVGKzBFoE4cOwJ/CLt8Q++Vfip1+iuyV7eNnuBZkkmo4zKnuJ0mUvN5ZXJKmNNaG
fsnZYacuS5TWm6Dg0YwMyaIBPiHVtdWRfYpLDD3r79jFRgH7YXewkU2ObBOK17LV
tKVLurQENaDVgFMpOL8vsmXzRqtx7IFmgTIA0jedhoMI
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:31 2024 by rpki-client on console-ams.rpki-client.org