Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KyOpylr1GjYajxkl19udlR52u1Q.roa
File: KyOpylr1GjYajxkl19udlR52u1Q.roa (raw, json)
Hash identifier: ibcrV1nnr8CZ0DH+tODaCFWROEwEnDsw4vGyOsbqW2I=
Subject key identifier: 2B:23:A9:CA:5A:F5:1A:36:1A:8F:19:25:D7:DB:9D:95:1E:76:BB:54
Certificate issuer: /CN=28642ab1790b7f5f359068e9fbb72641c5413079
Certificate serial: 01857169ABE35A6C7CE0CC8D98CD0E800EC2
Authority key identifier: 28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KyOpylr1GjYajxkl19udlR52u1Q.roa
Signing time: Mon 02 Jan 2023 07:37:08 +0000
ROA not before: Mon 02 Jan 2023 07:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202470
IP address blocks: 185.218.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:ab:e3:5a:6c:7c:e0:cc:8d:98:cd:0e:80:0e:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28642ab1790b7f5f359068e9fbb72641c5413079
Validity
Not Before: Jan 2 07:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b23a9ca5af51a361a8f1925d7db9d951e76bb54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2c:97:42:0c:34:84:e0:2d:1c:f4:53:a6:63:
f4:80:eb:6b:cf:de:23:64:f7:2a:e1:f0:d8:5e:dc:
d1:48:b4:d8:a4:b1:05:36:6b:08:dd:5f:90:52:f8:
e7:b4:ba:c7:86:e7:8c:74:32:be:cd:82:e3:d2:ea:
06:0b:67:40:5e:14:1d:b3:10:7a:cc:34:55:9c:45:
c3:a2:d9:31:d0:8a:34:c8:f4:70:5c:b1:18:b2:f3:
a3:ab:e4:ee:97:26:f9:61:82:65:ef:0c:b8:81:77:
ac:67:1a:56:48:8a:fa:b4:30:f1:ec:11:a0:70:e4:
e7:f2:b4:3b:c2:1b:df:80:ba:2e:8e:f3:85:c7:a9:
03:b1:d0:3d:73:25:6a:c9:25:70:98:36:fc:05:cd:
df:f0:ac:4b:0c:90:65:de:d1:62:72:f5:30:cc:bc:
9b:32:76:85:2f:f6:e8:da:be:14:e5:a5:e1:b1:b5:
58:72:16:40:da:54:ca:9d:44:c5:42:ed:7e:ac:91:
97:d4:32:91:71:e8:89:5d:7d:d5:fc:28:9e:5c:34:
c8:71:50:06:96:ff:37:f4:3c:da:22:45:8e:a9:23:
78:49:a2:1e:b3:f9:cf:29:da:a0:af:b7:56:0f:a2:
7a:2f:74:64:9f:d5:97:ee:20:c3:26:23:38:2c:bb:
df:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:23:A9:CA:5A:F5:1A:36:1A:8F:19:25:D7:DB:9D:95:1E:76:BB:54
X509v3 Authority Key Identifier:
keyid:28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KyOpylr1GjYajxkl19udlR52u1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KGQqsXkLf181kGjp-7cmQcVBMHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.184.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:8b:97:6c:c3:b5:72:73:d8:77:d2:bb:7b:65:1d:a7:e8:e4:
1c:c8:4c:06:69:02:fc:20:b5:cc:55:b4:da:f2:04:43:32:d1:
bf:9b:9a:b3:ef:04:e7:96:42:c7:f3:86:35:2a:61:52:9f:d4:
ab:0e:ae:18:82:52:8d:38:c0:d6:6f:70:3a:a3:fa:87:78:45:
7d:ac:6f:74:d5:6a:db:d9:00:b0:74:a8:62:cd:84:a7:db:c2:
4a:32:4e:ac:7f:66:82:11:0a:d4:b8:5f:b0:8d:8e:26:e7:ac:
98:e7:e4:a6:cf:88:46:b2:a9:58:fa:a4:ba:c8:8d:32:f6:dd:
ec:13:fc:92:39:9a:8b:13:7c:ea:29:d1:7f:26:65:9a:4c:f5:
af:6a:0b:0a:d7:aa:30:46:fd:55:e7:bb:93:64:10:97:f5:97:
9b:21:c6:91:5a:8a:16:c9:5c:e7:49:63:51:06:73:87:ff:cd:
ed:fa:24:3b:d9:b0:e3:60:fa:bb:ad:69:27:60:9f:2f:79:95:
07:74:50:88:fd:d2:ea:ee:9e:fe:8f:38:c9:e1:27:38:86:92:
9c:c9:4f:6c:2c:f0:e6:f4:3b:92:ad:d7:b6:4b:b8:fc:83:ea:
81:a3:93:64:14:cc:74:3c:45:3f:50:22:40:90:e5:2e:7d:cf:
bf:98:d1:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxaavjWmx84MyNmM0OgA7CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4NjQyYWIxNzkwYjdmNWYzNTkwNjhlOWZiYjcyNjQxYzU0
MTMwNzkwHhcNMjMwMTAyMDczNzA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjIzYTljYTVhZjUxYTM2MWE4ZjE5MjVkN2RiOWQ5NTFlNzZiYjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSyXQgw0hOAtHPRTpmP0gOtrz94j
ZPcq4fDYXtzRSLTYpLEFNmsI3V+QUvjntLrHhueMdDK+zYLj0uoGC2dAXhQdsxB6
zDRVnEXDotkx0Io0yPRwXLEYsvOjq+Tulyb5YYJl7wy4gXesZxpWSIr6tDDx7BGg
cOTn8rQ7whvfgLoujvOFx6kDsdA9cyVqySVwmDb8Bc3f8KxLDJBl3tFicvUwzLyb
MnaFL/bo2r4U5aXhsbVYchZA2lTKnUTFQu1+rJGX1DKRceiJXX3V/CieXDTIcVAG
lv839DzaIkWOqSN4SaIes/nPKdqgr7dWD6J6L3Rkn9WX7iDDJiM4LLvfnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCsjqcpa9Ro2Go8ZJdfbnZUedrtUMB8GA1UdIwQY
MBaAFChkKrF5C39fNZBo6fu3JkHFQTB5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0dRcXNYa0xmMTgxa0dqcC03Y21RY1ZCTUhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9jMDU5ZDktMGQzMC00MGIzLTgxNGIt
NDkxYTBiNWQyMjNmLzEvS3lPcHlscjFHallhanhrbDE5dWRsUjUydTFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9jMDU5ZDktMGQzMC00MGIzLTgxNGItNDkxYTBiNWQyMjNm
LzEvS0dRcXNYa0xmMTgxa0dqcC03Y21RY1ZCTUhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudq4MA0G
CSqGSIb3DQEBCwUAA4IBAQCki5dsw7Vyc9h30rt7ZR2n6OQcyEwGaQL8ILXMVbTa
8gRDMtG/m5qz7wTnlkLH84Y1KmFSn9SrDq4YglKNOMDWb3A6o/qHeEV9rG901Wrb
2QCwdKhizYSn28JKMk6sf2aCEQrUuF+wjY4m56yY5+Smz4hGsqlY+qS6yI0y9t3s
E/ySOZqLE3zqKdF/JmWaTPWvagsK16owRv1V57uTZBCX9ZebIcaRWooWyVznSWNR
BnOH/83t+iQ72bDjYPq7rWknYJ8veZUHdFCI/dLq7p7+jzjJ4Sc4hpKcyU9sLPDm
9DuSrde2S7j8g+qBo5NkFMx0PEU/UCJAkOUufc+/mNGu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:28 2024 by rpki-client on console-ams.rpki-client.org