Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/NQZM9GvSr2PSV6zAn1wXIBNdt3s.roa
File: NQZM9GvSr2PSV6zAn1wXIBNdt3s.roa (raw, json)
Hash identifier: JCgy89OnnlGdHDkJiivhZjXXu6PKWz+CiJETgB5gpGw=
Subject key identifier: 35:06:4C:F4:6B:D2:AF:63:D2:57:AC:C0:9F:5C:17:20:13:5D:B7:7B
Certificate issuer: /CN=651698c0cd983797915e7d793fb6d18c481e84c5
Certificate serial: 01849E1A0580D46F92300C5A89EDA2FE3566
Authority key identifier: 65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/NQZM9GvSr2PSV6zAn1wXIBNdt3s.roa
Signing time: Tue 22 Nov 2022 06:50:16 +0000
ROA not before: Tue 22 Nov 2022 06:50:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 178.211.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:1a:05:80:d4:6f:92:30:0c:5a:89:ed:a2:fe:35:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651698c0cd983797915e7d793fb6d18c481e84c5
Validity
Not Before: Nov 22 06:50:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35064cf46bd2af63d257acc09f5c1720135db77b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4b:43:e1:bc:b3:e6:d7:f6:f4:15:13:8e:d9:
90:85:fd:5c:ba:f5:44:39:8b:49:74:d9:56:f1:9c:
41:99:84:64:0f:43:b9:ae:8d:10:e1:d5:64:58:27:
5a:9e:bc:05:cf:3a:cb:ea:3d:5b:9f:53:b7:47:fb:
dd:3b:5f:42:59:cb:e3:5b:39:2d:f5:0c:10:26:49:
91:a7:8e:a6:65:e8:c1:d3:19:a3:3f:93:ba:c1:45:
22:b8:89:44:78:e2:2e:c6:bc:13:c1:ac:88:c8:c3:
c6:f1:26:12:ee:9f:d9:53:39:ad:04:f8:86:72:8b:
0e:05:f9:31:e2:f9:bc:19:9f:48:6b:4c:5e:6d:6a:
23:e6:c4:78:56:0b:64:47:7d:4f:68:eb:c3:80:26:
14:ea:df:7d:f0:f4:32:80:d5:66:f7:ba:96:d4:aa:
1a:b6:fc:31:82:b5:73:8c:e3:22:5a:27:c8:a1:4a:
8c:43:40:78:1e:89:37:28:b9:6a:08:b7:c4:ad:3a:
f2:f3:15:34:90:3b:74:bb:e2:40:f9:f8:88:7a:fa:
a6:0e:34:a5:bf:94:e6:7e:14:1c:35:7b:80:7b:27:
03:8a:8f:14:08:c0:55:df:c5:06:14:9b:f3:88:b4:
be:bc:8e:c9:0d:0e:be:c8:45:2a:ba:82:ec:b7:ba:
15:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:06:4C:F4:6B:D2:AF:63:D2:57:AC:C0:9F:5C:17:20:13:5D:B7:7B
X509v3 Authority Key Identifier:
keyid:65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/NQZM9GvSr2PSV6zAn1wXIBNdt3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/ZRaYwM2YN5eRXn15P7bRjEgehMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.132.0/24
Signature Algorithm: sha256WithRSAEncryption
60:5d:03:8b:08:3a:b7:52:cd:01:e8:e4:0c:ac:fd:3a:b0:3c:
00:9e:01:30:35:a2:f1:76:d8:09:72:4d:a3:5d:4e:e5:21:f1:
5c:c7:d8:7a:f6:ed:3f:bd:e0:05:61:22:d1:85:fd:b5:24:89:
84:91:50:ec:24:b4:89:d1:89:eb:fd:89:c1:dd:cb:2f:b3:49:
7c:ec:4d:1b:ec:47:20:12:d0:84:65:ec:9d:c2:c0:04:55:be:
43:08:bc:fb:98:b8:1e:49:8f:e3:6f:33:f5:59:22:1e:7f:9f:
4c:60:b4:b2:89:4d:da:db:81:33:26:f9:b4:56:2b:b0:6e:bb:
17:89:3a:d0:87:83:8d:47:f6:ca:df:21:a1:0d:0a:46:e0:4c:
5e:cf:c0:cb:0e:de:2a:a8:44:b3:2d:4a:14:d5:28:43:54:cd:
40:c7:cb:97:1c:76:8c:65:b6:03:48:6e:07:f0:f3:1c:ae:d7:
97:8c:9c:3f:23:f0:b7:a6:8c:ca:ea:e8:78:a0:4b:15:72:0f:
2c:76:eb:e3:39:33:78:96:2c:61:ce:f3:63:74:23:93:83:2d:
9c:5e:4c:e8:cf:75:c4:15:cd:95:58:9c:ca:01:14:f0:6c:8f:
79:0c:5a:92:d1:73:75:15:99:2c:3a:74:c6:6f:55:8c:46:02:
78:46:a9:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSeGgWA1G+SMAxaie2i/jVmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1MTY5OGMwY2Q5ODM3OTc5MTVlN2Q3OTNmYjZkMThjNDgx
ZTg0YzUwHhcNMjIxMTIyMDY1MDE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTA2NGNmNDZiZDJhZjYzZDI1N2FjYzA5ZjVjMTcyMDEzNWRiNzdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEtD4byz5tf29BUTjtmQhf1cuvVE
OYtJdNlW8ZxBmYRkD0O5ro0Q4dVkWCdanrwFzzrL6j1bn1O3R/vdO19CWcvjWzkt
9QwQJkmRp46mZejB0xmjP5O6wUUiuIlEeOIuxrwTwayIyMPG8SYS7p/ZUzmtBPiG
cosOBfkx4vm8GZ9Ia0xebWoj5sR4VgtkR31PaOvDgCYU6t998PQygNVm97qW1Koa
tvwxgrVzjOMiWifIoUqMQ0B4Hok3KLlqCLfErTry8xU0kDt0u+JA+fiIevqmDjSl
v5TmfhQcNXuAeycDio8UCMBV38UGFJvziLS+vI7JDQ6+yEUquoLst7oV0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDUGTPRr0q9j0leswJ9cFyATXbd7MB8GA1UdIwQY
MBaAFGUWmMDNmDeXkV59eT+20YxIHoTFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlJhWXdNMllONWVSWG4xNVA3YlJqRWdlaE1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZTVkOWItYzhlNi00OTlhLWFhZWIt
ZTVlNzQyZjQ1NzdmLzEvTlFaTTlHdlNyMlBTVjZ6QW4xd1hJQk5kdDNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9lZTVkOWItYzhlNi00OTlhLWFhZWItZTVlNzQyZjQ1Nzdm
LzEvWlJhWXdNMllONWVSWG4xNVA3YlJqRWdlaE1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstOEMA0G
CSqGSIb3DQEBCwUAA4IBAQBgXQOLCDq3Us0B6OQMrP06sDwAngEwNaLxdtgJck2j
XU7lIfFcx9h69u0/veAFYSLRhf21JImEkVDsJLSJ0Ynr/YnB3csvs0l87E0b7Ecg
EtCEZeydwsAEVb5DCLz7mLgeSY/jbzP1WSIef59MYLSyiU3a24EzJvm0ViuwbrsX
iTrQh4ONR/bK3yGhDQpG4Exez8DLDt4qqESzLUoU1ShDVM1Ax8uXHHaMZbYDSG4H
8PMcrteXjJw/I/C3pozK6uh4oEsVcg8sduvjOTN4lixhzvNjdCOTgy2cXkzoz3XE
Fc2VWJzKARTwbI95DFqS0XN1FZksOnTGb1WMRgJ4Rqnr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org