Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/QUtrNSQ-9bXb8-8NDkP6vA7esYY.roa
File: QUtrNSQ-9bXb8-8NDkP6vA7esYY.roa (raw, json)
Hash identifier: eSaVFoccnrlGFBeluxvlR/t717ENzrFfGffTwSXIH0Y=
Subject key identifier: 41:4B:6B:35:24:3E:F5:B5:DB:F3:EF:0D:0E:43:FA:BC:0E:DE:B1:86
Certificate issuer: /CN=651698c0cd983797915e7d793fb6d18c481e84c5
Certificate serial: 0189DE099A8745C6DB0F61CF84E5A029D087
Authority key identifier: 65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/QUtrNSQ-9bXb8-8NDkP6vA7esYY.roa
Signing time: Thu 10 Aug 2023 06:01:58 +0000
ROA not before: Thu 10 Aug 2023 06:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 178.211.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:09:9a:87:45:c6:db:0f:61:cf:84:e5:a0:29:d0:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651698c0cd983797915e7d793fb6d18c481e84c5
Validity
Not Before: Aug 10 06:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=414b6b35243ef5b5dbf3ef0d0e43fabc0edeb186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f1:f6:e1:b5:29:23:e9:e4:95:60:2d:e5:8e:
e4:34:be:df:c4:06:cf:ea:9d:f9:62:c7:3c:04:89:
2a:62:44:bb:06:e9:53:63:2b:e6:ce:9d:e4:9b:6c:
ba:3a:59:29:dd:c4:13:b5:ee:d4:cc:ad:86:80:60:
94:91:d6:ce:f1:d6:e3:24:2d:14:a3:8c:1e:3a:ab:
0a:ab:f7:9e:4e:05:ec:d0:37:d2:c6:91:16:f9:77:
d1:82:ea:8b:d6:1c:3e:7a:f0:04:37:b2:7f:7a:3b:
c0:3f:4b:5b:ac:6a:e5:64:b3:87:16:c0:74:d4:0b:
dc:7d:0d:fa:fb:0a:b9:4d:a9:26:97:da:56:f8:8d:
7f:ad:fe:8e:45:21:0e:6d:d5:05:6b:ec:75:bf:fb:
a2:d5:90:1c:c0:48:2c:3a:e2:8f:52:7d:05:b9:f7:
86:06:f9:78:c0:fc:a4:0c:0f:bf:7b:72:22:6b:7d:
06:fc:5d:05:26:b7:21:b9:25:64:05:d5:c2:23:5f:
8e:5d:14:ae:19:8c:49:e3:b5:05:0c:cb:ba:7e:14:
66:b1:12:b8:c6:ff:ee:3b:8a:67:af:de:a0:90:93:
da:2e:a2:cc:7e:b4:07:30:a7:e3:fc:70:87:d1:c6:
44:c7:48:50:0c:5d:d2:fd:91:03:5b:5c:7a:77:9b:
70:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4B:6B:35:24:3E:F5:B5:DB:F3:EF:0D:0E:43:FA:BC:0E:DE:B1:86
X509v3 Authority Key Identifier:
keyid:65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/QUtrNSQ-9bXb8-8NDkP6vA7esYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/ZRaYwM2YN5eRXn15P7bRjEgehMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.132.0/24
Signature Algorithm: sha256WithRSAEncryption
81:45:c6:d7:80:1f:8b:b6:9c:1e:17:fd:e0:79:7a:a4:3b:7e:
70:4f:20:da:3a:53:a7:16:56:5f:0c:04:dc:21:90:08:7b:da:
35:c3:78:ee:12:fc:3c:16:1a:c3:8e:2e:4b:6c:e6:b5:1e:bb:
1b:ae:cc:4e:1a:b8:0c:e8:d3:bf:cc:be:6a:4b:5c:de:bc:61:
de:05:a1:08:b5:e5:c7:17:25:4b:ee:44:9b:37:80:c4:6d:d3:
2f:ba:71:cc:a4:78:7f:04:bd:45:46:32:b7:19:b1:06:70:53:
7d:e1:e3:a6:7a:48:fb:cb:5b:12:52:7c:ea:5c:09:c6:dc:e4:
1d:75:e7:6c:6d:a7:58:94:d2:8c:8f:7e:11:2d:05:14:b1:a5:
82:06:11:6a:7c:46:35:47:9f:dd:d5:aa:00:a2:b5:90:a1:ea:
d1:8d:ce:46:43:c6:79:7d:2c:a8:ae:be:67:65:cc:54:20:e6:
2e:19:8c:e0:c1:81:35:b7:1d:1b:bf:b7:fe:fc:8f:6b:0d:d8:
c7:b0:76:06:6d:d8:44:b0:0a:2b:86:5b:5d:a3:4d:f1:65:ef:
68:3c:a4:5e:11:29:c2:f4:dd:4a:c2:09:58:81:b5:84:ca:c1:
cd:00:4e:5c:b3:db:37:2b:ab:ff:7e:df:df:5d:be:08:a4:33:
d9:5a:f6:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYneCZqHRcbbD2HPhOWgKdCHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1MTY5OGMwY2Q5ODM3OTc5MTVlN2Q3OTNmYjZkMThjNDgx
ZTg0YzUwHhcNMjMwODEwMDYwMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTRiNmIzNTI0M2VmNWI1ZGJmM2VmMGQwZTQzZmFiYzBlZGViMTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPH24bUpI+nklWAt5Y7kNL7fxAbP
6p35Ysc8BIkqYkS7BulTYyvmzp3km2y6Olkp3cQTte7UzK2GgGCUkdbO8dbjJC0U
o4weOqsKq/eeTgXs0DfSxpEW+XfRguqL1hw+evAEN7J/ejvAP0tbrGrlZLOHFsB0
1AvcfQ36+wq5Takml9pW+I1/rf6ORSEObdUFa+x1v/ui1ZAcwEgsOuKPUn0FufeG
Bvl4wPykDA+/e3Iia30G/F0FJrchuSVkBdXCI1+OXRSuGYxJ47UFDMu6fhRmsRK4
xv/uO4pnr96gkJPaLqLMfrQHMKfj/HCH0cZEx0hQDF3S/ZEDW1x6d5twlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEFLazUkPvW12/PvDQ5D+rwO3rGGMB8GA1UdIwQY
MBaAFGUWmMDNmDeXkV59eT+20YxIHoTFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlJhWXdNMllONWVSWG4xNVA3YlJqRWdlaE1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZTVkOWItYzhlNi00OTlhLWFhZWIt
ZTVlNzQyZjQ1NzdmLzEvUVV0ck5TUS05YlhiOC04TkRrUDZ2QTdlc1lZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9lZTVkOWItYzhlNi00OTlhLWFhZWItZTVlNzQyZjQ1Nzdm
LzEvWlJhWXdNMllONWVSWG4xNVA3YlJqRWdlaE1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstOEMA0G
CSqGSIb3DQEBCwUAA4IBAQCBRcbXgB+LtpweF/3geXqkO35wTyDaOlOnFlZfDATc
IZAIe9o1w3juEvw8FhrDji5LbOa1HrsbrsxOGrgM6NO/zL5qS1zevGHeBaEIteXH
FyVL7kSbN4DEbdMvunHMpHh/BL1FRjK3GbEGcFN94eOmekj7y1sSUnzqXAnG3OQd
dedsbadYlNKMj34RLQUUsaWCBhFqfEY1R5/d1aoAorWQoerRjc5GQ8Z5fSyorr5n
ZcxUIOYuGYzgwYE1tx0bv7f+/I9rDdjHsHYGbdhEsAorhltdo03xZe9oPKReESnC
9N1KwglYgbWEysHNAE5cs9s3K6v/ft/fXb4IpDPZWvZQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org