Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/R2W7uJtmg4UxVvFip8XK0MsKcvQ.roa
File: R2W7uJtmg4UxVvFip8XK0MsKcvQ.roa (raw, json)
Hash identifier: +iIpweu1esYO5Nu9rQl+Jrdgncy92fSRyjwv8JSjSQw=
Subject key identifier: 47:65:BB:B8:9B:66:83:85:31:56:F1:62:A7:C5:CA:D0:CB:0A:72:F4
Certificate issuer: /CN=96b897d64d9f3ddf6859bf623ac5161a5f19214c
Certificate serial: A0EBDB
Authority key identifier: 96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/R2W7uJtmg4UxVvFip8XK0MsKcvQ.roa
Signing time: Sat 01 Jan 2022 03:54:30 +0000
ROA not before: Sat 01 Jan 2022 03:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 176.97.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10546139 (0xa0ebdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b897d64d9f3ddf6859bf623ac5161a5f19214c
Validity
Not Before: Jan 1 03:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4765bbb89b6683853156f162a7c5cad0cb0a72f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5e:6b:de:4c:7c:f9:7a:e8:ec:20:a6:b6:72:
ed:10:e3:e0:35:18:1d:ce:e0:2d:61:30:ff:de:5c:
82:be:93:42:59:f3:09:0c:86:67:ce:ab:ea:25:94:
84:d1:27:1b:d3:2c:a8:a5:15:ee:75:5e:c0:85:37:
8c:01:a1:59:8f:40:de:b5:74:b9:d1:f6:31:b5:16:
d1:2b:3c:40:fc:4f:7b:01:08:03:3c:e1:7a:bb:08:
f6:dc:ba:22:17:d7:8d:a8:58:e9:73:ec:6d:60:b3:
c4:77:8a:68:0e:e4:00:63:9a:36:0e:5f:52:dd:fa:
21:f9:05:07:b1:03:05:2a:de:18:49:18:0e:d3:5d:
59:2c:e3:d5:82:41:f6:f4:1c:d8:b4:fe:60:ab:0a:
cb:8e:f0:10:f0:3c:98:5a:88:79:7b:7b:de:78:f1:
2c:d9:86:a7:90:e1:8b:ed:05:dc:b1:09:69:29:05:
90:58:d3:17:45:61:9b:56:8c:0a:cf:50:be:e2:79:
14:7f:63:93:eb:47:88:35:0d:f8:ff:56:65:06:73:
11:dc:ce:07:b0:81:63:30:af:73:d4:35:67:a0:b0:
1a:7e:1f:f2:9e:89:14:8a:eb:05:a2:85:64:5f:79:
9b:32:07:a6:b4:ef:53:73:7d:fb:ed:0d:55:a0:54:
7a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:65:BB:B8:9B:66:83:85:31:56:F1:62:A7:C5:CA:D0:CB:0A:72:F4
X509v3 Authority Key Identifier:
keyid:96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/R2W7uJtmg4UxVvFip8XK0MsKcvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/lriX1k2fPd9oWb9iOsUWGl8ZIUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.217.0/24
Signature Algorithm: sha256WithRSAEncryption
74:46:8e:48:0d:68:5a:12:3a:4a:df:f2:4a:fe:2a:9d:94:b1:
d8:4b:4d:e1:24:8d:1e:78:3e:d4:3d:24:8a:e7:43:db:31:3a:
06:7e:1b:5d:27:5a:54:3c:90:0b:31:c2:e6:4f:bf:12:11:95:
09:f3:4f:25:a3:2f:cd:63:ed:c0:1a:90:70:dd:20:65:cd:0d:
94:c6:61:17:0d:eb:a9:f5:ba:69:bf:19:cc:83:3d:f3:f4:d2:
5f:0c:31:38:cb:6a:c0:fe:32:85:a7:44:ba:d6:30:21:83:2e:
f0:85:c2:43:49:4e:40:bf:54:50:66:22:66:5b:bc:1a:08:a5:
be:01:ff:c8:17:c4:e8:8d:93:5f:fd:8b:10:bf:9a:c3:df:38:
25:e1:aa:a6:d2:00:fe:0d:e2:97:ba:f7:70:0a:ea:aa:c8:9e:
3e:b8:a6:82:90:49:4a:a2:b9:25:a3:95:7e:2e:45:67:95:c6:
60:bf:ca:7b:8d:5d:2f:e6:e9:2d:b0:21:ed:c3:62:ad:4e:38:
df:a3:2b:af:20:dc:17:1d:98:a5:da:85:40:20:a9:5d:8d:63:
52:63:e7:92:eb:fb:63:c5:c3:80:e2:0f:30:4d:a3:c2:69:c4:
c3:7f:f6:be:2f:66:31:8f:29:d1:8b:2f:a2:c9:75:d6:87:53:
42:b7:99:98
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAKDr2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NmI4OTdkNjRkOWYzZGRmNjg1OWJmNjIzYWM1MTYxYTVmMTkyMTRjMB4XDTIyMDEw
MTAzNTQzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc2NWJiYjg5YjY2
ODM4NTMxNTZmMTYyYTdjNWNhZDBjYjBhNzJmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMRea95MfPl66OwgprZy7RDj4DUYHc7gLWEw/95cgr6TQlnz
CQyGZ86r6iWUhNEnG9MsqKUV7nVewIU3jAGhWY9A3rV0udH2MbUW0Ss8QPxPewEI
AzzhersI9ty6IhfXjahY6XPsbWCzxHeKaA7kAGOaNg5fUt36IfkFB7EDBSreGEkY
DtNdWSzj1YJB9vQc2LT+YKsKy47wEPA8mFqIeXt73njxLNmGp5Dhi+0F3LEJaSkF
kFjTF0Vhm1aMCs9QvuJ5FH9jk+tHiDUN+P9WZQZzEdzOB7CBYzCvc9Q1Z6CwGn4f
8p6JFIrrBaKFZF95mzIHprTvU3N9++0NVaBUensCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHZbu4m2aDhTFW8WKnxcrQywpy9DAfBgNVHSMEGDAWgBSWuJfWTZ8932hZ
v2I6xRYaXxkhTDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xyaVgxazJmUGQ5b1diOWlPc1VXR2w4WklVdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTAvNTlhNzMzLTdkYzUtNDExMS05ZTYyLTc1MzY2M2QyOGM4Mi8x
L1IyVzd1SnRtZzRVeFZ2RmlwOFhLME1zS2N2US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAv
NTlhNzMzLTdkYzUtNDExMS05ZTYyLTc1MzY2M2QyOGM4Mi8xL2xyaVgxazJmUGQ5
b1diOWlPc1VXR2w4WklVdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALBh2TANBgkqhkiG9w0BAQsFAAOC
AQEAdEaOSA1oWhI6St/ySv4qnZSx2EtN4SSNHng+1D0kiudD2zE6Bn4bXSdaVDyQ
CzHC5k+/EhGVCfNPJaMvzWPtwBqQcN0gZc0NlMZhFw3rqfW6ab8ZzIM98/TSXwwx
OMtqwP4yhadEutYwIYMu8IXCQ0lOQL9UUGYiZlu8GgilvgH/yBfE6I2TX/2LEL+a
w984JeGqptIA/g3il7r3cArqqsiePrimgpBJSqK5JaOVfi5FZ5XGYL/Ke41dL+bp
LbAh7cNirU4436MrryDcFx2YpdqFQCCpXY1jUmPnkuv7Y8XDgOIPME2jwmnEw3/2
vi9mMY8p0Ysvosl11odTQreZmA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org