Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/QYBO-M8tjPMY8FlbuysodJAelv8.roa
File: QYBO-M8tjPMY8FlbuysodJAelv8.roa (raw, json)
Hash identifier: Hk9QAa6fsK2ZbW86qUyBej5BGEu0qq+7BJaJ4UABv7A=
Subject key identifier: 41:80:4E:F8:CF:2D:8C:F3:18:F0:59:5B:BB:2B:28:74:90:1E:96:FF
Certificate issuer: /CN=96b897d64d9f3ddf6859bf623ac5161a5f19214c
Certificate serial: 0187068D43C06A1EC5ACF89D2D3744993CDD
Authority key identifier: 96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/QYBO-M8tjPMY8FlbuysodJAelv8.roa
Signing time: Tue 21 Mar 2023 23:42:13 +0000
ROA not before: Tue 21 Mar 2023 23:42:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199242
IP address blocks: 176.97.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:06:8d:43:c0:6a:1e:c5:ac:f8:9d:2d:37:44:99:3c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b897d64d9f3ddf6859bf623ac5161a5f19214c
Validity
Not Before: Mar 21 23:42:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41804ef8cf2d8cf318f0595bbb2b2874901e96ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:45:32:c3:f4:98:81:bc:77:7b:47:99:d6:48:
62:a1:3b:8e:ab:3d:78:77:3e:fb:f9:e1:95:ab:95:
d2:9a:25:46:23:59:43:ce:47:51:06:f0:7c:c8:04:
02:11:38:5c:04:cb:29:17:d7:f0:32:7f:06:96:07:
6b:06:9a:fa:91:ad:32:fe:1a:76:1e:bd:0e:c1:04:
80:34:aa:67:89:ee:26:45:00:55:3e:7e:82:8e:9d:
8b:78:86:6a:f5:32:89:b7:e4:c4:87:da:7d:53:f8:
17:b2:df:85:02:d6:ec:b0:a5:ef:1b:20:81:3f:31:
15:34:22:71:ac:1b:9a:16:5c:f8:3b:aa:13:31:9e:
30:fd:27:67:15:57:c2:7b:bb:46:c4:7e:9d:25:38:
ac:88:fb:f4:b6:22:ac:34:37:c2:4d:8f:43:dd:e2:
71:4d:3c:34:ed:78:58:f2:ce:f5:8e:24:06:ff:d3:
e8:23:fc:83:9b:d9:9a:c7:31:6f:89:37:cd:5d:35:
56:7c:96:58:8e:ae:26:d9:35:08:ca:6c:e4:10:7a:
fe:bd:a1:75:0c:47:3c:6f:ef:ba:ed:56:54:25:be:
b7:26:f1:bd:cd:87:0a:07:ae:9f:8c:60:d0:88:50:
ce:2a:3b:1a:b8:59:92:04:70:a9:df:97:75:9a:0e:
87:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:80:4E:F8:CF:2D:8C:F3:18:F0:59:5B:BB:2B:28:74:90:1E:96:FF
X509v3 Authority Key Identifier:
keyid:96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/QYBO-M8tjPMY8FlbuysodJAelv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/lriX1k2fPd9oWb9iOsUWGl8ZIUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.217.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f1:33:fd:47:1b:38:08:0d:ed:3c:b6:cf:33:40:5b:fb:e2:
f3:15:35:0c:d2:c4:ce:56:b2:3c:ac:83:61:d7:6a:f7:1e:4f:
1d:d2:1a:cb:2f:fb:42:ca:0d:9a:13:a9:0c:64:aa:47:d3:ff:
63:49:72:57:3a:05:f5:f1:ad:30:e3:3b:7c:09:33:51:55:22:
5f:9d:f2:af:26:01:27:4f:41:f4:39:16:42:bb:72:40:af:20:
8c:7c:b2:26:87:84:8f:5f:ab:dc:59:4e:8c:d3:9b:21:92:03:
3c:4c:da:12:e5:2f:ea:d8:3b:cb:6d:dd:c7:d5:65:29:91:76:
69:e7:84:a6:ba:55:a2:78:e3:ca:e8:0e:f7:e7:d0:92:f5:08:
62:43:40:76:98:5e:df:ae:09:7c:bb:4f:a1:5d:a3:77:0c:19:
ad:83:c0:cb:c3:df:0e:d3:02:e5:3b:4c:7f:93:82:bd:16:d7:
7f:d6:4d:8e:40:b6:7d:f0:ee:9c:5e:8f:fd:4c:42:4c:4a:7c:
6c:31:b2:a7:ef:1d:c2:e8:c6:6b:aa:e7:e4:70:4e:a0:6e:58:
25:4d:b8:6b:b3:b5:bf:b3:5c:ed:0e:08:e3:fc:c5:36:ec:17:
58:a7:01:e7:3a:d3:5c:40:79:17:4e:3b:4a:05:fc:98:64:29:
cd:c7:b9:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcGjUPAah7FrPidLTdEmTzdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2Yjg5N2Q2NGQ5ZjNkZGY2ODU5YmY2MjNhYzUxNjFhNWYx
OTIxNGMwHhcNMjMwMzIxMjM0MjEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTgwNGVmOGNmMmQ4Y2YzMThmMDU5NWJiYjJiMjg3NDkwMWU5NmZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEUyw/SYgbx3e0eZ1khioTuOqz14
dz77+eGVq5XSmiVGI1lDzkdRBvB8yAQCEThcBMspF9fwMn8GlgdrBpr6ka0y/hp2
Hr0OwQSANKpnie4mRQBVPn6Cjp2LeIZq9TKJt+TEh9p9U/gXst+FAtbssKXvGyCB
PzEVNCJxrBuaFlz4O6oTMZ4w/SdnFVfCe7tGxH6dJTisiPv0tiKsNDfCTY9D3eJx
TTw07XhY8s71jiQG/9PoI/yDm9maxzFviTfNXTVWfJZYjq4m2TUIymzkEHr+vaF1
DEc8b++67VZUJb63JvG9zYcKB66fjGDQiFDOKjsauFmSBHCp35d1mg6HsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEGATvjPLYzzGPBZW7srKHSQHpb/MB8GA1UdIwQY
MBaAFJa4l9ZNnz3faFm/YjrFFhpfGSFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHJpWDFrMmZQZDlvV2I5aU9zVVdHbDhaSVV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81OWE3MzMtN2RjNS00MTExLTllNjIt
NzUzNjYzZDI4YzgyLzEvUVlCTy1NOHRqUE1ZOEZsYnV5c29kSkFlbHY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81OWE3MzMtN2RjNS00MTExLTllNjItNzUzNjYzZDI4Yzgy
LzEvbHJpWDFrMmZQZDlvV2I5aU9zVVdHbDhaSVV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGHZMA0G
CSqGSIb3DQEBCwUAA4IBAQB58TP9Rxs4CA3tPLbPM0Bb++LzFTUM0sTOVrI8rINh
12r3Hk8d0hrLL/tCyg2aE6kMZKpH0/9jSXJXOgX18a0w4zt8CTNRVSJfnfKvJgEn
T0H0ORZCu3JAryCMfLImh4SPX6vcWU6M05shkgM8TNoS5S/q2DvLbd3H1WUpkXZp
54SmulWieOPK6A7359CS9QhiQ0B2mF7frgl8u0+hXaN3DBmtg8DLw98O0wLlO0x/
k4K9Ftd/1k2OQLZ98O6cXo/9TEJMSnxsMbKn7x3C6MZrqufkcE6gblglTbhrs7W/
s1ztDgjj/MU27BdYpwHnOtNcQHkXTjtKBfyYZCnNx7kd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org