Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/gOSoifGq6qr2qP0zQDPZdOA_zkA.roa
File: gOSoifGq6qr2qP0zQDPZdOA_zkA.roa (raw, json)
Hash identifier: +TLnqno0AaT369NJxg1p8SrGVky4f5dGOLH4v1DLbMo=
Subject key identifier: 80:E4:A8:89:F1:AA:EA:AA:F6:A8:FD:33:40:33:D9:74:E0:3F:CE:40
Certificate issuer: /CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Certificate serial: 01860D1B83BA01B99C04B1C4C4272D2A9E48
Authority key identifier: 87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/gOSoifGq6qr2qP0zQDPZdOA_zkA.roa
Signing time: Wed 01 Feb 2023 13:12:32 +0000
ROA not before: Wed 01 Feb 2023 13:12:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207967
IP address blocks: 176.53.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0d:1b:83:ba:01:b9:9c:04:b1:c4:c4:27:2d:2a:9e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Validity
Not Before: Feb 1 13:12:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80e4a889f1aaeaaaf6a8fd334033d974e03fce40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5c:97:5f:d0:87:59:7f:01:d9:bf:4d:e3:4c:
e1:37:2a:2d:14:32:2b:6f:bf:7d:7d:d4:9f:72:6b:
a6:82:5d:22:c1:15:41:fd:f6:5d:46:fd:de:97:e0:
54:45:a0:06:6c:05:2f:cf:fc:f0:c0:25:cd:fe:9f:
82:db:73:28:92:25:25:3d:f2:cc:56:43:75:7f:fe:
7e:ee:c6:5c:bd:0f:8d:f4:a4:9c:dd:cc:bb:96:a5:
45:8d:2c:11:5e:82:14:bb:3a:1e:81:93:7d:9f:da:
1c:fb:54:42:3e:17:d3:e1:a4:bd:42:5e:69:88:14:
ac:01:09:5a:a3:6b:fd:18:f8:ae:73:f8:01:b9:fb:
37:d9:88:ec:52:21:07:7f:c6:19:88:94:1c:f7:7e:
fd:ef:3f:a8:b8:6d:9e:48:93:fc:03:ef:ab:4e:f5:
2b:ee:e3:e8:ef:b8:1e:bb:11:b3:39:08:bc:1d:0d:
ac:46:8f:d4:be:b1:8f:40:8f:c3:e0:4c:69:19:09:
33:7a:d0:59:d1:f0:09:b0:c3:60:9e:fe:d5:26:6a:
21:7d:5a:4c:6b:42:99:34:c4:67:be:eb:8b:05:5c:
14:b9:84:79:be:66:59:8d:93:8c:b1:50:5c:ab:fb:
1e:e4:0a:9c:a8:bc:7f:66:47:48:b7:b7:fb:40:86:
e5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E4:A8:89:F1:AA:EA:AA:F6:A8:FD:33:40:33:D9:74:E0:3F:CE:40
X509v3 Authority Key Identifier:
keyid:87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/gOSoifGq6qr2qP0zQDPZdOA_zkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/hz7BW5jibospu33PSmBSys5tJoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.147.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:61:d6:75:cf:0a:de:31:d0:eb:92:97:bb:80:be:b7:69:55:
73:62:f3:6d:40:37:cf:40:b7:a5:51:c0:48:ac:79:69:15:62:
88:99:48:31:3e:81:65:e0:25:57:0f:01:a8:d4:3d:5f:ac:c7:
0c:16:5c:e3:76:2d:e0:53:c7:62:af:9d:e2:b1:93:f4:4c:ec:
7c:65:6f:b2:ca:79:ab:4e:3d:ea:63:80:68:4d:c2:0b:fc:1c:
ef:23:22:91:bc:2a:15:ce:3e:6d:38:88:59:17:a8:59:9f:4f:
44:dc:75:d0:16:a3:34:fb:cf:86:82:de:76:f4:0d:80:79:72:
a5:f7:1e:07:09:73:52:91:04:88:77:c1:de:f7:fe:06:4d:c8:
7a:4c:ec:67:65:28:3b:ad:dc:c0:3c:d4:a9:7d:74:2d:ba:35:
b2:cd:8b:a2:53:38:a2:10:30:40:64:f8:53:a2:4c:37:76:ae:
9f:51:86:11:1f:e2:77:ea:08:2e:c1:3b:26:63:06:e0:4a:f5:
cc:9b:b7:41:82:4c:91:d7:20:ea:d4:40:15:1b:cc:73:93:8a:
37:ae:5c:0e:cd:c5:9e:86:6c:6a:06:86:39:89:32:f1:f3:ae:
ae:bd:43:db:4c:d5:3b:e8:32:84:12:f4:da:7e:0c:c9:04:8c:
da:5a:af:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYNG4O6AbmcBLHExCctKp5IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3M2VjMTViOThlMjZlOGIyOWJiN2RjZjRhNjA1MmNhY2U2
ZDI2ODMwHhcNMjMwMjAxMTMxMjMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGU0YTg4OWYxYWFlYWFhZjZhOGZkMzM0MDMzZDk3NGUwM2ZjZTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3VyXX9CHWX8B2b9N40zhNyotFDIr
b799fdSfcmumgl0iwRVB/fZdRv3el+BURaAGbAUvz/zwwCXN/p+C23MokiUlPfLM
VkN1f/5+7sZcvQ+N9KSc3cy7lqVFjSwRXoIUuzoegZN9n9oc+1RCPhfT4aS9Ql5p
iBSsAQlao2v9GPiuc/gBufs32YjsUiEHf8YZiJQc93797z+ouG2eSJP8A++rTvUr
7uPo77geuxGzOQi8HQ2sRo/UvrGPQI/D4ExpGQkzetBZ0fAJsMNgnv7VJmohfVpM
a0KZNMRnvuuLBVwUuYR5vmZZjZOMsVBcq/se5AqcqLx/ZkdIt7f7QIblsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIDkqInxquqq9qj9M0Az2XTgP85AMB8GA1UdIwQY
MBaAFIc+wVuY4m6LKbt9z0pgUsrObSaDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHo3Qlc1amlib3NwdTMzUFNtQlN5czV0Sm9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8zZWM1OWUtZWE4NS00MGNiLWEyODUt
MDdkZWQyMGUzYzYzLzEvZ09Tb2lmR3E2cXIycVAwelFEUFpkT0FfemtBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8zZWM1OWUtZWE4NS00MGNiLWEyODUtMDdkZWQyMGUzYzYz
LzEvaHo3Qlc1amlib3NwdTMzUFNtQlN5czV0Sm9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsDWTMA0G
CSqGSIb3DQEBCwUAA4IBAQCeYdZ1zwreMdDrkpe7gL63aVVzYvNtQDfPQLelUcBI
rHlpFWKImUgxPoFl4CVXDwGo1D1frMcMFlzjdi3gU8dir53isZP0TOx8ZW+yynmr
Tj3qY4BoTcIL/BzvIyKRvCoVzj5tOIhZF6hZn09E3HXQFqM0+8+Ggt529A2AeXKl
9x4HCXNSkQSId8He9/4GTch6TOxnZSg7rdzAPNSpfXQtujWyzYuiUziiEDBAZPhT
okw3dq6fUYYRH+J36gguwTsmYwbgSvXMm7dBgkyR1yDq1EAVG8xzk4o3rlwOzcWe
hmxqBoY5iTLx866uvUPbTNU76DKEEvTafgzJBIzaWq+h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:58 2024 by rpki-client on console-fra.rpki-client.org