Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/oDXPSEecRltoCvrYpdqEOFfkHoY.roa
File: oDXPSEecRltoCvrYpdqEOFfkHoY.roa (raw, json)
Hash identifier: NNtvUG4+UOCfR5CkwIPO4jOTMhJyimYuvxmkG4zjj3I=
Subject key identifier: A0:35:CF:48:47:9C:46:5B:68:0A:FA:D8:A5:DA:84:38:57:E4:1E:86
Certificate issuer: /CN=96b897d64d9f3ddf6859bf623ac5161a5f19214c
Certificate serial: 018571279EC4399053F15EFBECF2260F3399
Authority key identifier: 96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/oDXPSEecRltoCvrYpdqEOFfkHoY.roa
Signing time: Mon 02 Jan 2023 06:24:59 +0000
ROA not before: Mon 02 Jan 2023 06:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 176.97.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:9e:c4:39:90:53:f1:5e:fb:ec:f2:26:0f:33:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b897d64d9f3ddf6859bf623ac5161a5f19214c
Validity
Not Before: Jan 2 06:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a035cf48479c465b680afad8a5da843857e41e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:cb:41:b0:56:ac:3e:e8:f3:5d:61:51:db:
78:ea:c9:a6:65:7d:3f:f8:96:b4:4a:90:d1:53:ae:
15:2a:70:bb:de:27:e9:95:96:bc:98:19:81:0d:ca:
cc:57:c3:ff:09:87:c3:16:4e:11:07:0a:cd:c1:85:
c2:84:41:62:18:b4:f4:b6:75:de:ad:88:e8:2c:7a:
77:68:97:ac:f0:cb:71:01:33:f7:50:c7:ea:65:87:
2e:94:46:d1:45:33:3c:cc:38:10:24:95:dc:20:ae:
38:5a:e9:b2:fd:f2:b8:93:5d:ee:5d:f2:4f:f0:d1:
05:c8:8f:d7:b3:c8:f9:1b:16:1a:6c:3a:0b:52:26:
be:28:1f:b0:62:19:96:9a:92:a8:32:97:16:f0:6f:
86:ff:21:93:e9:33:ba:a9:e5:f9:1d:4c:82:61:56:
27:33:83:f1:e7:7c:8d:82:66:ce:6a:6f:b8:f9:12:
79:1d:2b:e2:f8:eb:3e:7f:9b:b7:00:6b:c6:a2:03:
93:58:78:92:7e:95:5c:ff:ff:53:98:72:97:9c:cd:
87:6a:c6:93:5d:23:bf:e1:82:da:1d:14:ab:6f:89:
26:67:27:56:9d:f5:8d:e4:e4:02:ed:fc:b2:48:77:
e1:1c:da:fa:b8:ae:8d:b2:f0:5e:ca:1c:6e:b5:4b:
0f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:35:CF:48:47:9C:46:5B:68:0A:FA:D8:A5:DA:84:38:57:E4:1E:86
X509v3 Authority Key Identifier:
keyid:96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/oDXPSEecRltoCvrYpdqEOFfkHoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/lriX1k2fPd9oWb9iOsUWGl8ZIUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.217.0/24
Signature Algorithm: sha256WithRSAEncryption
61:72:f6:73:78:6c:77:d3:eb:04:de:e9:ce:e7:d1:02:e5:ca:
4d:32:2e:9e:40:f8:98:ef:87:d8:19:12:34:66:cc:45:1c:e4:
4d:66:c7:65:ea:83:07:35:d9:64:68:c1:ae:23:2a:7d:d5:d7:
4c:63:5c:d6:a1:88:94:1a:98:81:02:bc:ba:c0:cf:bd:24:cc:
14:b4:b0:f0:2a:23:91:56:bd:20:cb:85:ef:11:a4:e9:25:c6:
0c:8c:a2:77:b5:03:bb:dc:ef:72:34:f5:50:74:73:c4:26:d2:
1b:be:85:02:45:24:7b:3a:b2:16:4e:c6:af:ed:46:ac:55:eb:
cb:45:1e:3d:cb:eb:57:73:27:35:1e:1c:ea:5c:61:81:8d:6c:
67:1f:5c:75:1e:24:f3:b8:2e:9b:25:c7:4e:b0:d7:1d:3e:36:
1b:25:08:1b:fa:94:a3:62:5c:c9:e1:37:3e:e9:87:a0:6a:9f:
9c:29:30:7b:b7:68:ac:8e:74:5c:14:70:0d:db:1e:47:9a:26:
c7:39:3d:4d:2b:50:84:13:d1:29:11:11:10:4e:a6:eb:47:e3:
e9:37:78:89:2f:09:4a:59:26:56:89:c4:82:87:31:ab:3a:04:
02:7c:0d:aa:68:01:c1:20:2c:7f:c2:a1:47:ba:bf:7b:50:ec:
7b:0f:03:8b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxJ57EOZBT8V777PImDzOZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2Yjg5N2Q2NGQ5ZjNkZGY2ODU5YmY2MjNhYzUxNjFhNWYx
OTIxNGMwHhcNMjMwMTAyMDYyNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDM1Y2Y0ODQ3OWM0NjViNjgwYWZhZDhhNWRhODQzODU3ZTQxZTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApovLQbBWrD7o811hUdt46smmZX0/
+Ja0SpDRU64VKnC73ifplZa8mBmBDcrMV8P/CYfDFk4RBwrNwYXChEFiGLT0tnXe
rYjoLHp3aJes8MtxATP3UMfqZYculEbRRTM8zDgQJJXcIK44Wumy/fK4k13uXfJP
8NEFyI/Xs8j5GxYabDoLUia+KB+wYhmWmpKoMpcW8G+G/yGT6TO6qeX5HUyCYVYn
M4Px53yNgmbOam+4+RJ5HSvi+Os+f5u3AGvGogOTWHiSfpVc//9TmHKXnM2HasaT
XSO/4YLaHRSrb4kmZydWnfWN5OQC7fyySHfhHNr6uK6NsvBeyhxutUsPMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKA1z0hHnEZbaAr62KXahDhX5B6GMB8GA1UdIwQY
MBaAFJa4l9ZNnz3faFm/YjrFFhpfGSFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHJpWDFrMmZQZDlvV2I5aU9zVVdHbDhaSVV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81OWE3MzMtN2RjNS00MTExLTllNjIt
NzUzNjYzZDI4YzgyLzEvb0RYUFNFZWNSbHRvQ3ZyWXBkcUVPRmZrSG9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81OWE3MzMtN2RjNS00MTExLTllNjItNzUzNjYzZDI4Yzgy
LzEvbHJpWDFrMmZQZDlvV2I5aU9zVVdHbDhaSVV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGHZMA0G
CSqGSIb3DQEBCwUAA4IBAQBhcvZzeGx30+sE3unO59EC5cpNMi6eQPiY74fYGRI0
ZsxFHORNZsdl6oMHNdlkaMGuIyp91ddMY1zWoYiUGpiBAry6wM+9JMwUtLDwKiOR
Vr0gy4XvEaTpJcYMjKJ3tQO73O9yNPVQdHPEJtIbvoUCRSR7OrIWTsav7UasVevL
RR49y+tXcyc1HhzqXGGBjWxnH1x1HiTzuC6bJcdOsNcdPjYbJQgb+pSjYlzJ4Tc+
6Yegap+cKTB7t2isjnRcFHAN2x5HmibHOT1NK1CEE9EpEREQTqbrR+PpN3iJLwlK
WSZWicSChzGrOgQCfA2qaAHBICx/wqFHur97UOx7DwOL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org