Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/a5b6a5-5ba0-4523-aa77-e8f2d682a49e/1/rvnVxcEnPjLUbiGQAjJA5HRIUs4.roa
File: rvnVxcEnPjLUbiGQAjJA5HRIUs4.roa (raw, json)
Hash identifier: s3+xItT8h807nMbhUTWra2wJP+Qyf32g8jizoGeq8VE=
Subject key identifier: AE:F9:D5:C5:C1:27:3E:32:D4:6E:21:90:02:32:40:E4:74:48:52:CE
Certificate issuer: /CN=7ad5da58d6ac9c7c26754bf80da9303e0b972617
Certificate serial: 01856CEF29400933079883F9E227206BE5CA
Authority key identifier: 7A:D5:DA:58:D6:AC:9C:7C:26:75:4B:F8:0D:A9:30:3E:0B:97:26:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/etXaWNasnHwmdUv4DakwPguXJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/a5b6a5-5ba0-4523-aa77-e8f2d682a49e/1/rvnVxcEnPjLUbiGQAjJA5HRIUs4.roa
Signing time: Sun 01 Jan 2023 10:44:51 +0000
ROA not before: Sun 01 Jan 2023 10:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.3.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:29:40:09:33:07:98:83:f9:e2:27:20:6b:e5:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ad5da58d6ac9c7c26754bf80da9303e0b972617
Validity
Not Before: Jan 1 10:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aef9d5c5c1273e32d46e2190023240e4744852ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:40:09:d9:1d:01:5b:01:d8:d7:b2:24:4b:
25:49:06:d5:92:93:02:22:00:5d:16:f7:fe:08:7f:
4f:b8:08:f6:cd:15:59:e8:a3:0b:07:12:b9:a2:de:
be:0d:56:94:f3:1b:d0:51:d6:0c:29:67:e8:9f:ee:
d6:9b:cd:a0:51:94:ab:01:7b:7c:75:7b:2c:3f:c2:
b5:b6:fb:a9:cd:2e:66:c0:c3:55:b3:6f:9a:a5:ef:
0f:81:53:6f:37:74:86:56:ac:92:81:f1:16:f9:28:
59:78:f8:df:46:57:36:89:29:b6:0a:9a:f6:27:a6:
14:d0:a3:c6:c4:bb:4b:81:c0:72:72:b3:88:b2:cf:
f4:ce:47:49:8f:56:cc:a5:b5:9d:a2:25:ef:22:bd:
b2:56:70:ad:fd:a4:c5:cd:7a:b3:2d:ed:06:b4:cb:
c7:7d:b2:b5:c0:29:6b:d2:b5:1b:e9:64:af:2f:62:
50:55:ec:66:f2:96:ac:41:cf:e2:6c:21:67:a9:25:
54:c4:6a:79:ac:3f:13:be:39:6e:7f:0c:e4:c5:a1:
f1:03:29:72:87:c3:94:c6:ca:9b:d1:54:4d:17:da:
1f:8e:9f:23:91:4a:2e:89:0e:0d:e6:6e:b7:7d:a3:
d7:db:f6:c6:25:38:55:ac:01:fd:12:82:60:23:cf:
97:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F9:D5:C5:C1:27:3E:32:D4:6E:21:90:02:32:40:E4:74:48:52:CE
X509v3 Authority Key Identifier:
keyid:7A:D5:DA:58:D6:AC:9C:7C:26:75:4B:F8:0D:A9:30:3E:0B:97:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/etXaWNasnHwmdUv4DakwPguXJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a5b6a5-5ba0-4523-aa77-e8f2d682a49e/1/rvnVxcEnPjLUbiGQAjJA5HRIUs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a5b6a5-5ba0-4523-aa77-e8f2d682a49e/1/etXaWNasnHwmdUv4DakwPguXJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.20.0/24
Signature Algorithm: sha256WithRSAEncryption
19:00:40:f6:e1:49:ca:b5:c9:18:58:c5:4f:f2:39:0f:3f:a4:
d6:0b:9a:8d:88:fd:92:03:c5:e0:48:1c:e0:1e:6f:42:5d:97:
7e:82:68:66:2b:c0:d1:cf:58:65:2b:72:69:e4:4c:a7:84:ad:
62:4a:4c:00:db:86:15:f8:95:9a:78:8d:fc:61:72:bc:f3:44:
e5:78:d1:ec:e5:57:a7:19:6e:80:21:ef:ac:c8:55:e7:74:c5:
ea:8e:69:a3:61:87:49:7e:9e:14:9f:55:6e:ab:de:82:4b:0c:
04:5f:a9:38:c8:5c:6d:27:19:4b:5d:60:da:4b:b3:55:b5:2e:
3c:52:ef:c2:c7:ef:ac:31:59:ef:66:c4:00:9c:1d:32:7b:f7:
53:fb:d9:e3:d2:c5:8b:57:84:27:be:dd:4d:73:11:d7:e3:32:
c3:33:bc:80:6d:e4:8c:f5:ca:7d:82:ce:2d:d9:aa:c5:d6:bc:
95:66:18:6d:63:fe:44:33:d7:b7:91:48:9c:ba:fc:00:34:16:
c6:a0:4d:40:14:d7:72:91:bc:2f:76:a3:90:b9:46:9f:b6:ea:
01:f3:42:bb:e8:91:69:2a:ed:f3:83:e4:d8:17:7f:30:b2:35:
a4:44:3b:be:d5:1e:ff:ab:6e:10:98:26:2a:7c:46:01:d3:42:
d8:1a:a5:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs7ylACTMHmIP54icga+XKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhZDVkYTU4ZDZhYzljN2MyNjc1NGJmODBkYTkzMDNlMGI5
NzI2MTcwHhcNMjMwMTAxMTA0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWY5ZDVjNWMxMjczZTMyZDQ2ZTIxOTAwMjMyNDBlNDc0NDg1MmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfJACdkdAVsB2NeyJEslSQbVkpMC
IgBdFvf+CH9PuAj2zRVZ6KMLBxK5ot6+DVaU8xvQUdYMKWfon+7Wm82gUZSrAXt8
dXssP8K1tvupzS5mwMNVs2+ape8PgVNvN3SGVqySgfEW+ShZePjfRlc2iSm2Cpr2
J6YU0KPGxLtLgcBycrOIss/0zkdJj1bMpbWdoiXvIr2yVnCt/aTFzXqzLe0GtMvH
fbK1wClr0rUb6WSvL2JQVexm8pasQc/ibCFnqSVUxGp5rD8TvjlufwzkxaHxAyly
h8OUxsqb0VRNF9ofjp8jkUouiQ4N5m63faPX2/bGJThVrAH9EoJgI8+XnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK751cXBJz4y1G4hkAIyQOR0SFLOMB8GA1UdIwQY
MBaAFHrV2ljWrJx8JnVL+A2pMD4LlyYXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXRYYVdOYXNuSHdtZFV2NERha3dQZ3VYSmhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9hNWI2YTUtNWJhMC00NTIzLWFhNzct
ZThmMmQ2ODJhNDllLzEvcnZuVnhjRW5QakxVYmlHUUFqSkE1SFJJVXM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9hNWI2YTUtNWJhMC00NTIzLWFhNzctZThmMmQ2ODJhNDll
LzEvZXRYYVdOYXNuSHdtZFV2NERha3dQZ3VYSmhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgMUMA0G
CSqGSIb3DQEBCwUAA4IBAQAZAED24UnKtckYWMVP8jkPP6TWC5qNiP2SA8XgSBzg
Hm9CXZd+gmhmK8DRz1hlK3Jp5EynhK1iSkwA24YV+JWaeI38YXK880TleNHs5Ven
GW6AIe+syFXndMXqjmmjYYdJfp4Un1Vuq96CSwwEX6k4yFxtJxlLXWDaS7NVtS48
Uu/Cx++sMVnvZsQAnB0ye/dT+9nj0sWLV4Qnvt1NcxHX4zLDM7yAbeSM9cp9gs4t
2arF1ryVZhhtY/5EM9e3kUicuvwANBbGoE1AFNdykbwvdqOQuUaftuoB80K76JFp
Ku3zg+TYF38wsjWkRDu+1R7/q24QmCYqfEYB00LYGqX8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:00 2024 by rpki-client on console-fra.rpki-client.org