Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/18cb86-f8f3-4042-a26a-9b53a517a157/1/XvaKaxI4O3XG2Eocc1QLHXpNzD8.roa
File: XvaKaxI4O3XG2Eocc1QLHXpNzD8.roa (raw, json)
Hash identifier: IiDoG6IKKIwBbbs45tSKbKGXKgg+U03HXB12f/zGchY=
Subject key identifier: 5E:F6:8A:6B:12:38:3B:75:C6:D8:4A:1C:73:54:0B:1D:7A:4D:CC:3F
Certificate issuer: /CN=85fccaab6898aa22242fa847ce02a5ba1a67dd22
Certificate serial: 01882086B1046A77745469B64564D630498D
Authority key identifier: 85:FC:CA:AB:68:98:AA:22:24:2F:A8:47:CE:02:A5:BA:1A:67:DD:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfzKq2iYqiIkL6hHzgKluhpn3SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/18cb86-f8f3-4042-a26a-9b53a517a157/1/XvaKaxI4O3XG2Eocc1QLHXpNzD8.roa
Signing time: Mon 15 May 2023 17:47:58 +0000
ROA not before: Mon 15 May 2023 17:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 91.247.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b1:04:6a:77:74:54:69:b6:45:64:d6:30:49:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fccaab6898aa22242fa847ce02a5ba1a67dd22
Validity
Not Before: May 15 17:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ef68a6b12383b75c6d84a1c73540b1d7a4dcc3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:35:10:71:1d:5f:9a:99:33:0c:dc:de:67:
fe:55:c4:f2:8a:5a:a3:10:99:7f:72:3d:ca:25:d7:
65:50:ad:3d:86:31:f0:66:7d:98:3f:2f:05:ae:9a:
70:70:0d:29:0d:25:50:47:fe:da:ea:56:26:c3:a3:
c8:d5:d9:cc:bd:3f:18:09:cb:a9:ff:92:4b:43:e5:
18:b6:ce:90:41:e7:8d:91:b5:5e:58:16:10:dd:ed:
36:88:3d:b3:9a:db:35:ec:3d:95:db:c2:29:c1:0d:
86:ee:7c:7c:d5:45:8f:89:ae:9c:42:dc:5a:74:b7:
cf:1c:6f:38:8a:27:0b:f1:5f:61:f8:40:1a:14:fc:
dc:38:86:f6:14:b5:4e:c6:92:ca:42:0c:bc:ab:5c:
4e:31:7c:c8:d5:81:a5:43:6d:dd:0c:87:2e:e9:3a:
4d:b0:eb:cf:50:03:67:ec:b8:13:d3:c5:0c:64:3d:
d0:43:03:f5:c8:34:4e:6c:9b:62:0f:46:9d:01:b2:
54:94:25:b2:f5:d2:95:3b:0c:e0:31:4e:85:57:ad:
ed:79:fc:5a:2b:df:01:e0:43:12:ad:99:2e:5c:39:
86:7c:c6:f8:d1:dd:9b:94:f5:6d:de:7c:7f:e1:80:
b1:7f:43:b1:9d:3a:a1:d5:b3:5f:eb:a0:55:d5:b5:
90:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F6:8A:6B:12:38:3B:75:C6:D8:4A:1C:73:54:0B:1D:7A:4D:CC:3F
X509v3 Authority Key Identifier:
keyid:85:FC:CA:AB:68:98:AA:22:24:2F:A8:47:CE:02:A5:BA:1A:67:DD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfzKq2iYqiIkL6hHzgKluhpn3SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/18cb86-f8f3-4042-a26a-9b53a517a157/1/XvaKaxI4O3XG2Eocc1QLHXpNzD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/18cb86-f8f3-4042-a26a-9b53a517a157/1/hfzKq2iYqiIkL6hHzgKluhpn3SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.172.0/24
Signature Algorithm: sha256WithRSAEncryption
92:b0:46:b5:1d:51:33:36:84:b7:cd:a7:de:f5:ba:01:6a:af:
f7:3f:9b:fd:25:04:a9:e7:cb:0d:e9:3c:57:6e:2d:18:eb:2d:
62:0d:5b:eb:9a:af:cf:59:e7:75:76:17:3b:a4:cd:8f:5b:99:
58:54:b2:07:91:50:b5:00:e3:87:29:1a:07:6a:1e:08:e2:1d:
5f:5d:84:fc:60:35:9a:23:e8:4c:bf:5d:93:77:ec:75:0d:31:
93:11:06:2e:6d:5b:de:20:08:fe:58:6d:20:0d:d0:15:db:0c:
85:8a:2d:1a:0a:13:98:96:79:22:b5:3d:d5:1c:42:e8:ee:03:
c0:fa:66:7e:0e:a9:ef:d3:b2:2d:da:34:94:12:e5:71:e4:e2:
4a:3f:4d:ed:b9:f5:e6:87:c0:73:63:7e:64:cf:53:5d:ba:a2:
4b:f2:44:e2:54:f5:38:50:d9:a5:1f:80:f5:a9:12:0b:55:1d:
77:02:16:0d:46:3c:95:1d:f1:50:ef:b1:02:60:1c:1f:be:60:
a9:3c:be:c9:4a:94:c5:bf:a9:e3:72:f3:e4:31:d6:7e:6b:7e:
ca:ac:11:a4:7e:33:5d:26:fb:a1:7c:11:e9:c6:d8:2b:84:15:
a8:73:c6:2b:9f:24:bb:f4:16:f9:9b:df:1a:6d:64:6d:8a:16:
ba:d5:ec:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgghrEEand0VGm2RWTWMEmNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZmNjYWFiNjg5OGFhMjIyNDJmYTg0N2NlMDJhNWJhMWE2
N2RkMjIwHhcNMjMwNTE1MTc0NzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZWY2OGE2YjEyMzgzYjc1YzZkODRhMWM3MzU0MGIxZDdhNGRjYzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJI1EHEdX5qZMwzc3mf+VcTyilqj
EJl/cj3KJddlUK09hjHwZn2YPy8FrppwcA0pDSVQR/7a6lYmw6PI1dnMvT8YCcup
/5JLQ+UYts6QQeeNkbVeWBYQ3e02iD2zmts17D2V28IpwQ2G7nx81UWPia6cQtxa
dLfPHG84iicL8V9h+EAaFPzcOIb2FLVOxpLKQgy8q1xOMXzI1YGlQ23dDIcu6TpN
sOvPUANn7LgT08UMZD3QQwP1yDRObJtiD0adAbJUlCWy9dKVOwzgMU6FV63tefxa
K98B4EMSrZkuXDmGfMb40d2blPVt3nx/4YCxf0OxnTqh1bNf66BV1bWQ/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF72imsSODt1xthKHHNUCx16Tcw/MB8GA1UdIwQY
MBaAFIX8yqtomKoiJC+oR84CpboaZ90iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGZ6S3EyaVlxaUlrTDZoSHpnS2x1aHBuM1NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8xOGNiODYtZjhmMy00MDQyLWEyNmEt
OWI1M2E1MTdhMTU3LzEvWHZhS2F4STRPM1hHMkVvY2MxUUxIWHBOekQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8xOGNiODYtZjhmMy00MDQyLWEyNmEtOWI1M2E1MTdhMTU3
LzEvaGZ6S3EyaVlxaUlrTDZoSHpnS2x1aHBuM1NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/esMA0G
CSqGSIb3DQEBCwUAA4IBAQCSsEa1HVEzNoS3zafe9boBaq/3P5v9JQSp58sN6TxX
bi0Y6y1iDVvrmq/PWed1dhc7pM2PW5lYVLIHkVC1AOOHKRoHah4I4h1fXYT8YDWa
I+hMv12Td+x1DTGTEQYubVveIAj+WG0gDdAV2wyFii0aChOYlnkitT3VHELo7gPA
+mZ+Dqnv07It2jSUEuVx5OJKP03tufXmh8BzY35kz1NduqJL8kTiVPU4UNmlH4D1
qRILVR13AhYNRjyVHfFQ77ECYBwfvmCpPL7JSpTFv6njcvPkMdZ+a37KrBGkfjNd
JvuhfBHpxtgrhBWoc8YrnyS79Bb5m98abWRtiha61exz
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:49 2024 by rpki-client on console-fra.rpki-client.org