Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/lbl6ZNAdj4UsBCET9BfWtZ_RCB4.roa
File: lbl6ZNAdj4UsBCET9BfWtZ_RCB4.roa (raw, json)
Hash identifier: MJNeZUu2gouCDhTO8+RjarCby3PCJDdigYkFBaKFvUc=
Subject key identifier: 95:B9:7A:64:D0:1D:8F:85:2C:04:21:13:F4:17:D6:B5:9F:D1:08:1E
Certificate issuer: /CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Certificate serial: 0188D45B28A82807FAFCCC676F39E6886E67
Authority key identifier: 87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/lbl6ZNAdj4UsBCET9BfWtZ_RCB4.roa
Signing time: Mon 19 Jun 2023 15:52:03 +0000
ROA not before: Mon 19 Jun 2023 15:52:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 176.53.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d4:5b:28:a8:28:07:fa:fc:cc:67:6f:39:e6:88:6e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Validity
Not Before: Jun 19 15:52:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95b97a64d01d8f852c042113f417d6b59fd1081e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:77:12:37:a0:86:7c:42:3e:72:18:60:56:b4:
51:7d:bd:32:cd:74:ce:a3:53:f0:22:e7:aa:d8:00:
75:1a:c9:c9:55:b3:91:29:02:d0:40:ff:c2:de:cb:
3d:91:51:2c:80:28:91:f3:e1:a0:b6:79:15:58:59:
d5:e4:53:83:20:16:e7:03:6f:5e:b5:17:c5:8d:c5:
a5:cf:e7:9b:85:e7:7a:05:bd:b5:81:dd:54:5c:67:
e6:69:cd:02:a0:ae:51:42:b5:91:44:00:79:6a:17:
6c:33:b0:9a:79:3a:0c:8f:d2:03:62:9b:f3:45:7e:
3b:c3:15:6b:65:82:fc:78:74:0c:12:81:e0:e3:38:
14:3e:6b:66:3c:e1:dd:70:7f:0a:9c:fd:89:de:cc:
bd:81:8f:e9:df:8a:aa:23:df:35:3c:7b:ce:15:92:
4f:50:24:e1:88:17:12:74:4f:0f:b3:a5:b5:c0:cd:
a3:a8:60:3d:24:82:21:47:a7:d0:fb:0d:cf:fd:47:
49:7f:56:67:80:29:20:9b:93:b7:50:bc:e9:be:a3:
f2:93:18:52:d7:12:3a:31:2d:cc:2b:84:2e:eb:f5:
88:87:32:c3:57:1f:f2:ba:88:16:f2:5b:f6:c7:2f:
d0:e1:ee:70:05:09:92:20:65:fc:a8:f8:85:ee:6b:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B9:7A:64:D0:1D:8F:85:2C:04:21:13:F4:17:D6:B5:9F:D1:08:1E
X509v3 Authority Key Identifier:
keyid:87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/lbl6ZNAdj4UsBCET9BfWtZ_RCB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/hz7BW5jibospu33PSmBSys5tJoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.147.0/24
Signature Algorithm: sha256WithRSAEncryption
31:13:bd:28:bd:64:dd:e9:2e:b4:4d:88:5a:60:df:81:2e:44:
2b:e0:d2:a1:a7:1e:f3:8e:ba:93:50:49:5e:5c:53:d7:02:90:
df:93:27:80:7c:6e:5f:9b:f8:70:21:cc:bb:75:e3:0b:ff:1c:
96:9d:6f:4f:36:08:a9:a2:d8:05:d9:c8:4e:15:23:65:35:0e:
18:e8:17:0c:6b:0d:fe:79:2e:94:f8:23:bd:38:6d:59:7d:b1:
87:46:a3:1b:58:81:cc:ee:ca:df:f0:32:a7:1a:75:61:90:8b:
61:c1:1f:97:c7:a9:a4:1b:a3:86:5c:02:1d:62:da:6f:15:78:
d2:3a:6d:e2:bd:11:2c:ae:9c:cf:58:39:c3:e7:2e:bf:e5:08:
b7:65:77:6f:21:92:16:98:e8:68:07:61:b2:37:5b:4c:c9:ee:
80:14:a7:d4:d1:7e:24:c5:57:1e:10:f4:8a:44:1f:ee:9f:44:
73:0e:a5:b2:da:ec:38:91:b6:4c:c8:10:e7:92:df:b8:2a:c8:
b1:5c:98:28:1a:bc:2a:2c:f2:05:b0:92:57:30:71:d5:54:c3:
00:c0:ec:ae:cb:9e:b8:41:01:70:4f:e4:de:0a:e0:d6:e0:67:
55:ac:ac:22:d5:e5:ff:2f:ec:22:c3:b4:cf:b8:bd:5c:44:52:
55:0f:9f:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjUWyioKAf6/MxnbznmiG5nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3M2VjMTViOThlMjZlOGIyOWJiN2RjZjRhNjA1MmNhY2U2
ZDI2ODMwHhcNMjMwNjE5MTU1MjAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWI5N2E2NGQwMWQ4Zjg1MmMwNDIxMTNmNDE3ZDZiNTlmZDEwODFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3cSN6CGfEI+chhgVrRRfb0yzXTO
o1PwIueq2AB1GsnJVbORKQLQQP/C3ss9kVEsgCiR8+GgtnkVWFnV5FODIBbnA29e
tRfFjcWlz+ebhed6Bb21gd1UXGfmac0CoK5RQrWRRAB5ahdsM7CaeToMj9IDYpvz
RX47wxVrZYL8eHQMEoHg4zgUPmtmPOHdcH8KnP2J3sy9gY/p34qqI981PHvOFZJP
UCThiBcSdE8Ps6W1wM2jqGA9JIIhR6fQ+w3P/UdJf1ZngCkgm5O3ULzpvqPykxhS
1xI6MS3MK4Qu6/WIhzLDVx/yuogW8lv2xy/Q4e5wBQmSIGX8qPiF7mvB/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJW5emTQHY+FLAQhE/QX1rWf0QgeMB8GA1UdIwQY
MBaAFIc+wVuY4m6LKbt9z0pgUsrObSaDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHo3Qlc1amlib3NwdTMzUFNtQlN5czV0Sm9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8zZWM1OWUtZWE4NS00MGNiLWEyODUt
MDdkZWQyMGUzYzYzLzEvbGJsNlpOQWRqNFVzQkNFVDlCZld0Wl9SQ0I0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8zZWM1OWUtZWE4NS00MGNiLWEyODUtMDdkZWQyMGUzYzYz
LzEvaHo3Qlc1amlib3NwdTMzUFNtQlN5czV0Sm9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsDWTMA0G
CSqGSIb3DQEBCwUAA4IBAQAxE70ovWTd6S60TYhaYN+BLkQr4NKhpx7zjrqTUEle
XFPXApDfkyeAfG5fm/hwIcy7deML/xyWnW9PNgipotgF2chOFSNlNQ4Y6BcMaw3+
eS6U+CO9OG1ZfbGHRqMbWIHM7srf8DKnGnVhkIthwR+Xx6mkG6OGXAIdYtpvFXjS
Om3ivREsrpzPWDnD5y6/5Qi3ZXdvIZIWmOhoB2GyN1tMye6AFKfU0X4kxVceEPSK
RB/un0RzDqWy2uw4kbZMyBDnkt+4KsixXJgoGrwqLPIFsJJXMHHVVMMAwOyuy564
QQFwT+TeCuDW4GdVrKwi1eX/L+wiw7TPuL1cRFJVD59M
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:15 2025 by rpki-client