Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/Ld85rSUvTVx96uHpgVBLzzpvE2I.roa
File: Ld85rSUvTVx96uHpgVBLzzpvE2I.roa (raw, json)
Hash identifier: D5XQvYuncfHyzUZpGdggK4RikacML2fVDkzdsBf+iB8=
Subject key identifier: 2D:DF:39:AD:25:2F:4D:5C:7D:EA:E1:E9:81:50:4B:CF:3A:6F:13:62
Certificate issuer: /CN=28642ab1790b7f5f359068e9fbb72641c5413079
Certificate serial: CCFC2B
Authority key identifier: 28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/Ld85rSUvTVx96uHpgVBLzzpvE2I.roa
Signing time: Sat 01 Jan 2022 07:58:27 +0000
ROA not before: Sat 01 Jan 2022 07:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.218.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13433899 (0xccfc2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28642ab1790b7f5f359068e9fbb72641c5413079
Validity
Not Before: Jan 1 07:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ddf39ad252f4d5c7deae1e981504bcf3a6f1362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:33:a5:2c:ff:1b:ae:f2:02:30:8c:08:ec:95:
c6:74:16:8c:03:16:2d:2f:c5:b3:59:29:14:0e:15:
1b:f6:48:15:bc:1c:89:84:15:e3:62:a5:49:5d:24:
4d:ac:b3:f9:39:b8:8b:f5:fa:e2:94:42:f5:26:61:
09:0f:a1:7a:fe:27:f7:5c:61:7d:97:63:d3:86:1b:
22:5d:8e:f1:df:a3:cd:a6:85:ac:da:53:79:db:89:
d0:5c:cc:8b:02:19:94:6f:6a:68:7b:7b:82:9f:02:
d1:a3:e6:f7:0e:f5:bd:05:f5:3b:85:99:de:45:2e:
91:a7:16:7d:a6:89:28:f5:03:b5:d7:1a:39:37:69:
34:19:77:e3:62:40:35:5c:23:44:86:40:ff:56:6b:
de:ab:e6:0c:70:80:00:fa:cc:97:58:b9:89:fc:65:
ee:7d:63:a6:89:e2:f8:0d:fc:98:d0:ac:da:1b:dc:
87:85:e3:68:8f:09:3b:25:fa:88:2a:aa:d8:28:5f:
97:21:19:b4:20:7c:7e:b2:70:4e:d8:dd:b8:b8:68:
07:24:5c:44:be:76:b3:29:be:4e:ee:6e:0d:11:ba:
4a:47:09:a3:b2:2d:4d:f2:20:07:0d:bc:36:50:23:
7b:ff:c6:f2:93:80:c2:c8:f2:47:16:44:52:ab:7f:
64:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:DF:39:AD:25:2F:4D:5C:7D:EA:E1:E9:81:50:4B:CF:3A:6F:13:62
X509v3 Authority Key Identifier:
keyid:28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/Ld85rSUvTVx96uHpgVBLzzpvE2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KGQqsXkLf181kGjp-7cmQcVBMHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.184.0/24
Signature Algorithm: sha256WithRSAEncryption
09:21:ef:da:89:05:7e:e2:9e:b9:3f:3b:27:ad:86:2c:31:b8:
1a:ae:5f:41:10:aa:30:a5:6f:28:a1:9a:c9:2b:71:b6:27:3c:
4e:fb:19:ca:86:02:dc:b0:65:db:68:b4:10:63:12:e4:67:83:
6e:4a:8a:f5:c0:7f:c2:93:ad:ca:65:16:42:f2:a3:f9:1e:de:
d3:50:9c:f7:f8:02:78:33:79:ba:5c:af:5c:b4:d9:97:17:cd:
27:43:86:37:0d:89:10:9f:13:9a:cf:85:4d:d4:6e:ed:8a:a4:
da:c7:03:e9:32:d0:4a:95:b0:e8:0b:fb:76:9b:75:e1:a5:6b:
ca:9b:cf:fa:cb:85:3f:83:d3:88:89:79:6f:bd:c0:4d:21:74:
c2:e9:23:1c:be:26:fb:ff:10:8f:68:c5:e5:21:ea:c0:6c:eb:
4e:52:d8:7e:db:ec:bd:73:08:27:b6:bd:25:9a:d7:94:8f:7e:
ca:3d:60:08:50:81:22:3d:a5:e0:80:4c:f3:6e:05:69:d6:78:
64:f1:9a:36:0d:b0:19:88:7e:c1:b4:3b:ea:28:ae:8f:56:f9:
72:b2:75:bd:2c:88:e8:24:32:d9:90:9a:36:7e:65:88:10:91:
90:8a:26:0b:a7:7c:e8:14:b4:23:da:cb:e1:13:54:c1:f5:7e:
89:2f:d3:06
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAMz8KzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ODY0MmFiMTc5MGI3ZjVmMzU5MDY4ZTlmYmI3MjY0MWM1NDEzMDc5MB4XDTIyMDEw
MTA3NTgyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmRkZjM5YWQyNTJm
NGQ1YzdkZWFlMWU5ODE1MDRiY2YzYTZmMTM2MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKUzpSz/G67yAjCMCOyVxnQWjAMWLS/Fs1kpFA4VG/ZIFbwc
iYQV42KlSV0kTayz+Tm4i/X64pRC9SZhCQ+hev4n91xhfZdj04YbIl2O8d+jzaaF
rNpTeduJ0FzMiwIZlG9qaHt7gp8C0aPm9w71vQX1O4WZ3kUukacWfaaJKPUDtdca
OTdpNBl342JANVwjRIZA/1Zr3qvmDHCAAPrMl1i5ifxl7n1jponi+A38mNCs2hvc
h4XjaI8JOyX6iCqq2ChflyEZtCB8frJwTtjduLhoByRcRL52sym+Tu5uDRG6SkcJ
o7ItTfIgBw28NlAje//G8pOAwsjyRxZEUqt/ZHECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQt3zmtJS9NXH3q4emBUEvPOm8TYjAfBgNVHSMEGDAWgBQoZCqxeQt/XzWQ
aOn7tyZBxUEweTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tHUXFzWGtMZjE4MWtHanAtN2NtUWNWQk1Iay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYzA1OWQ5LTBkMzAtNDBiMy04MTRiLTQ5MWEwYjVkMjIzZi8x
L0xkODVyU1V2VFZ4OTZ1SHBnVkJMenpwdkUySS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
YzA1OWQ5LTBkMzAtNDBiMy04MTRiLTQ5MWEwYjVkMjIzZi8xL0tHUXFzWGtMZjE4
MWtHanAtN2NtUWNWQk1Iay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnauDANBgkqhkiG9w0BAQsFAAOC
AQEACSHv2okFfuKeuT87J62GLDG4Gq5fQRCqMKVvKKGayStxtic8TvsZyoYC3LBl
22i0EGMS5GeDbkqK9cB/wpOtymUWQvKj+R7e01Cc9/gCeDN5ulyvXLTZlxfNJ0OG
Nw2JEJ8Tms+FTdRu7Yqk2scD6TLQSpWw6Av7dpt14aVrypvP+suFP4PTiIl5b73A
TSF0wukjHL4m+/8Qj2jF5SHqwGzrTlLYftvsvXMIJ7a9JZrXlI9+yj1gCFCBIj2l
4IBM824FadZ4ZPGaNg2wGYh+wbQ76iiuj1b5crJ1vSyI6CQy2ZCaNn5liBCRkIom
C6d86BS0I9rL4RNUwfV+iS/TBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org