Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/72cf8b-9ae8-401b-9e75-b3f2f24b0108/1/rsF98CiKjnOM_OkPjd9N1Bes7ss.roa
File: rsF98CiKjnOM_OkPjd9N1Bes7ss.roa (raw, json)
Hash identifier: L8HHEqOWzyC4ZTOxwX+YlzefzaFvOuX5Nzn2clqYatw=
Subject key identifier: AE:C1:7D:F0:28:8A:8E:73:8C:FC:E9:0F:8D:DF:4D:D4:17:AC:EE:CB
Certificate issuer: /CN=28a036fa63f759c59c5aa21c6e8f030b58a630ee
Certificate serial: 08665E7F
Authority key identifier: 28:A0:36:FA:63:F7:59:C5:9C:5A:A2:1C:6E:8F:03:0B:58:A6:30:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KKA2-mP3WcWcWqIcbo8DC1imMO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/72cf8b-9ae8-401b-9e75-b3f2f24b0108/1/rsF98CiKjnOM_OkPjd9N1Bes7ss.roa
Signing time: Sat 01 Jan 2022 06:05:09 +0000
ROA not before: Sat 01 Jan 2022 06:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205673
IP address blocks: 185.244.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140926591 (0x8665e7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28a036fa63f759c59c5aa21c6e8f030b58a630ee
Validity
Not Before: Jan 1 06:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aec17df0288a8e738cfce90f8ddf4dd417aceecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:66:25:52:88:10:1d:51:85:f3:76:24:40:bd:
b7:4e:05:a5:41:10:79:ba:77:02:9c:06:e7:ac:b0:
07:9d:08:b0:30:58:3b:05:6d:4b:27:8c:2f:d4:53:
a5:70:d8:5f:87:07:5f:7c:cf:2f:3c:81:0c:75:ce:
c0:54:38:fa:e5:55:90:47:34:56:13:16:db:a0:ec:
ba:dd:03:aa:1e:0e:40:c8:db:1b:f3:9b:68:49:2d:
94:3a:15:9d:c3:ff:9b:b8:80:a6:be:91:d7:c7:3e:
4b:42:50:1b:db:75:78:4e:85:e4:8d:3b:22:5e:72:
a2:1f:0d:70:fb:0e:49:00:c2:d6:b6:83:c0:96:31:
31:d9:19:32:c5:6d:d5:c3:86:a1:38:6f:da:a2:c7:
81:dc:20:2c:9e:c8:dc:72:21:ae:ea:1f:4d:68:fb:
df:50:e6:fe:e6:c4:d0:2e:15:06:ac:c8:e9:0e:31:
3f:52:1f:db:60:37:40:bc:be:07:bc:f8:24:57:70:
c6:c2:2a:d2:41:c0:9d:e9:35:d6:f7:78:e8:c4:50:
a5:1e:3c:46:a0:d8:b3:d3:71:b9:09:ce:4e:c2:26:
dc:61:7a:d1:d5:7a:ab:6e:2e:fd:2c:3c:d7:e0:1e:
24:12:a8:9c:17:2e:97:8f:59:4e:cf:a4:1c:ed:4d:
9d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C1:7D:F0:28:8A:8E:73:8C:FC:E9:0F:8D:DF:4D:D4:17:AC:EE:CB
X509v3 Authority Key Identifier:
keyid:28:A0:36:FA:63:F7:59:C5:9C:5A:A2:1C:6E:8F:03:0B:58:A6:30:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KKA2-mP3WcWcWqIcbo8DC1imMO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72cf8b-9ae8-401b-9e75-b3f2f24b0108/1/rsF98CiKjnOM_OkPjd9N1Bes7ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/72cf8b-9ae8-401b-9e75-b3f2f24b0108/1/KKA2-mP3WcWcWqIcbo8DC1imMO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.168.0/22
Signature Algorithm: sha256WithRSAEncryption
87:68:ad:68:37:ee:9d:b0:de:83:52:57:96:28:f0:a2:33:69:
b1:dc:a4:28:33:14:73:d6:d8:98:dd:cd:55:f8:7e:e4:9b:10:
fd:d3:7d:af:d4:e8:ee:84:04:a7:73:f3:aa:4c:d5:bd:24:2b:
d0:78:0b:19:66:82:ce:82:bb:e4:68:04:fc:25:92:0f:53:39:
71:10:6a:34:66:e3:02:75:ee:b7:02:bc:52:70:ef:cf:2b:eb:
c9:c8:b8:f1:2e:d9:ea:be:26:a8:9d:46:1e:59:6b:ba:38:35:
90:0a:70:b3:ec:80:2a:31:3e:e7:ed:91:51:68:f7:fa:ed:1b:
80:fa:17:e5:fb:6a:65:91:70:9b:4c:7e:2b:a0:cc:bc:7e:90:
fb:42:a3:f7:20:f9:e4:5b:f7:f9:25:ee:47:ab:0c:cf:a1:2d:
ac:a9:13:cc:ce:ff:1a:c7:d5:9f:a1:9f:52:84:84:a3:d0:e3:
6a:2f:a1:72:f3:39:70:8f:76:3b:93:09:96:e1:3b:a2:c6:2e:
1b:c4:98:2b:13:5b:92:f5:c2:a2:e7:e2:50:fd:dc:fd:40:ff:
ac:e2:41:df:61:8b:35:94:49:17:a4:86:4f:38:14:03:70:1b:
af:88:8e:87:ef:41:6c:6f:6a:65:7b:e2:ec:5e:dc:42:98:18:
d5:07:87:4c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECGZefzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OGEwMzZmYTYzZjc1OWM1OWM1YWEyMWM2ZThmMDMwYjU4YTYzMGVlMB4XDTIyMDEw
MTA2MDUwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWVjMTdkZjAyODhh
OGU3MzhjZmNlOTBmOGRkZjRkZDQxN2FjZWVjYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANVmJVKIEB1RhfN2JEC9t04FpUEQebp3ApwG56ywB50IsDBY
OwVtSyeML9RTpXDYX4cHX3zPLzyBDHXOwFQ4+uVVkEc0VhMW26Dsut0Dqh4OQMjb
G/ObaEktlDoVncP/m7iApr6R18c+S0JQG9t1eE6F5I07Il5yoh8NcPsOSQDC1raD
wJYxMdkZMsVt1cOGoThv2qLHgdwgLJ7I3HIhruofTWj731Dm/ubE0C4VBqzI6Q4x
P1If22A3QLy+B7z4JFdwxsIq0kHAnek11vd46MRQpR48RqDYs9NxuQnOTsIm3GF6
0dV6q24u/Sw81+AeJBKonBcul49ZTs+kHO1NnT8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSuwX3wKIqOc4z86Q+N303UF6zuyzAfBgNVHSMEGDAWgBQooDb6Y/dZxZxa
ohxujwMLWKYw7jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tLQTItbVAzV2NXY1dxSWNibzhEQzFpbU1PNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvNzJjZjhiLTlhZTgtNDAxYi05ZTc1LWIzZjJmMjRiMDEwOC8x
L3JzRjk4Q2lLam5PTV9Pa1BqZDlOMUJlczdzcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
NzJjZjhiLTlhZTgtNDAxYi05ZTc1LWIzZjJmMjRiMDEwOC8xL0tLQTItbVAzV2NX
Y1dxSWNibzhEQzFpbU1PNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArn0qDANBgkqhkiG9w0BAQsFAAOC
AQEAh2itaDfunbDeg1JXlijwojNpsdykKDMUc9bYmN3NVfh+5JsQ/dN9r9To7oQE
p3PzqkzVvSQr0HgLGWaCzoK75GgE/CWSD1M5cRBqNGbjAnXutwK8UnDvzyvryci4
8S7Z6r4mqJ1GHllrujg1kApws+yAKjE+5+2RUWj3+u0bgPoX5ftqZZFwm0x+K6DM
vH6Q+0Kj9yD55Fv3+SXuR6sMz6EtrKkTzM7/GsfVn6GfUoSEo9Djai+hcvM5cI92
O5MJluE7osYuG8SYKxNbkvXCoufiUP3c/UD/rOJB32GLNZRJF6SGTzgUA3Abr4iO
h+9BbG9qZXvi7F7cQpgY1QeHTA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:33 2024 by rpki-client on console-ams.rpki-client.org