Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/3TzNkjToXD54RautaFva45GNUY4.roa
File: 3TzNkjToXD54RautaFva45GNUY4.roa (raw, json)
Hash identifier: a1bEZzZhf7Lf4lPVhgewsxF083fEuZNzAlNt4lDS/+g=
Subject key identifier: DD:3C:CD:92:34:E8:5C:3E:78:45:AB:AD:68:5B:DA:E3:91:8D:51:8E
Certificate issuer: /CN=7f7554c170db4c29ac0cc123516ffb6c92fea9cf
Certificate serial: 0184149E40083E9E10EC8D3D46B9D9CD74DE
Authority key identifier: 7F:75:54:C1:70:DB:4C:29:AC:0C:C1:23:51:6F:FB:6C:92:FE:A9:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f3VUwXDbTCmsDMEjUW_7bJL-qc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/3TzNkjToXD54RautaFva45GNUY4.roa
Signing time: Wed 26 Oct 2022 14:07:06 +0000
ROA not before: Wed 26 Oct 2022 14:07:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.72.52.0/22 maxlen: 24
185.72.55.0/24 maxlen: 24
185.72.53.0/24 maxlen: 24
185.72.54.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:9e:40:08:3e:9e:10:ec:8d:3d:46:b9:d9:cd:74:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f7554c170db4c29ac0cc123516ffb6c92fea9cf
Validity
Not Before: Oct 26 14:07:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd3ccd9234e85c3e7845abad685bdae3918d518e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7e:71:6f:a9:f0:00:f2:f2:85:41:06:18:e9:
77:d1:d5:45:30:5d:11:95:50:ce:fe:d0:c8:0a:37:
19:8a:1d:bd:72:9b:ee:a2:36:29:b6:78:ad:ac:6e:
4d:fa:c6:43:8e:c0:b2:29:48:78:47:37:14:54:c5:
26:9d:b7:be:29:b3:10:47:b2:e5:c3:a3:5c:79:17:
a1:d3:6d:6e:9f:9e:7c:bc:e8:2b:bf:e9:1d:70:e9:
ef:82:28:3f:f5:6d:86:03:c6:8e:54:f2:8f:35:df:
51:be:8a:1f:12:13:57:01:bd:75:80:75:d8:6f:6d:
63:df:d3:14:4e:da:c9:71:d8:59:ff:1e:d8:ec:f4:
87:38:4b:67:c4:53:64:2b:94:9e:37:1e:0b:f4:26:
34:8a:7e:c2:c4:b2:ea:b0:08:0f:a1:b0:8a:44:79:
69:2d:fa:3a:5c:fd:b0:51:e8:ef:a9:28:71:85:0e:
dd:41:a5:fd:09:4c:2d:0c:1c:d2:aa:5c:28:e3:c0:
e5:da:75:8d:93:04:72:54:51:3a:3a:8e:57:57:cb:
1c:ae:39:98:47:7e:0e:1d:32:07:11:99:57:3a:0e:
0f:66:2e:02:d8:50:7e:7b:bc:41:ab:02:ed:22:58:
bd:46:15:df:d0:7c:dd:a1:5e:f8:b0:33:6e:8a:1a:
a0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:3C:CD:92:34:E8:5C:3E:78:45:AB:AD:68:5B:DA:E3:91:8D:51:8E
X509v3 Authority Key Identifier:
keyid:7F:75:54:C1:70:DB:4C:29:AC:0C:C1:23:51:6F:FB:6C:92:FE:A9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3VUwXDbTCmsDMEjUW_7bJL-qc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/3TzNkjToXD54RautaFva45GNUY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/f3VUwXDbTCmsDMEjUW_7bJL-qc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.52.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:b7:75:fd:26:13:5d:e2:16:72:65:d3:10:39:59:31:9e:8c:
7f:cb:01:4d:c2:9a:9e:00:f0:b5:e6:97:cd:4c:20:f9:15:56:
47:52:94:ec:f0:1b:a0:39:59:de:10:89:6c:97:2d:98:8d:8f:
22:86:b2:af:6b:d0:22:22:83:cb:23:c2:e0:cd:78:c5:3f:b4:
0a:90:6a:40:16:85:b9:de:66:20:28:85:c2:12:a7:8e:86:7e:
8c:e6:46:28:21:87:23:77:70:cf:33:17:ca:a2:1f:df:b5:64:
f0:b3:2f:58:d3:fc:2c:6e:dc:c9:8b:47:ee:24:d9:81:c6:38:
b6:bc:ab:d5:d7:c9:f5:40:a8:b8:d2:b4:59:0e:38:b9:dc:bc:
ed:e4:38:5a:62:0d:0b:15:e0:fb:a9:d2:9a:0a:68:2e:24:0f:
10:85:30:2a:83:52:54:57:4d:87:ac:c0:2c:eb:69:9a:d6:4c:
a0:2f:2e:40:ec:7e:35:e9:f8:f1:e8:84:ec:d4:73:a9:65:7b:
86:eb:bb:36:be:23:b3:5e:38:00:cb:d8:ab:5e:2b:15:f1:d4:
ef:a5:ac:8d:a2:69:db:f2:1c:99:b9:67:40:b4:ee:f9:df:b2:
05:e8:ae:39:c5:47:ad:46:b5:52:f4:4d:7f:90:e8:65:ea:b1:
f4:35:a4:00
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQUnkAIPp4Q7I09RrnZzXTeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmNzU1NGMxNzBkYjRjMjlhYzBjYzEyMzUxNmZmYjZjOTJm
ZWE5Y2YwHhcNMjIxMDI2MTQwNzA2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDNjY2Q5MjM0ZTg1YzNlNzg0NWFiYWQ2ODViZGFlMzkxOGQ1MThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp35xb6nwAPLyhUEGGOl30dVFMF0R
lVDO/tDICjcZih29cpvuojYptnitrG5N+sZDjsCyKUh4RzcUVMUmnbe+KbMQR7Ll
w6NceReh021un558vOgrv+kdcOnvgig/9W2GA8aOVPKPNd9RvoofEhNXAb11gHXY
b21j39MUTtrJcdhZ/x7Y7PSHOEtnxFNkK5SeNx4L9CY0in7CxLLqsAgPobCKRHlp
Lfo6XP2wUejvqShxhQ7dQaX9CUwtDBzSqlwo48Dl2nWNkwRyVFE6Oo5XV8scrjmY
R34OHTIHEZlXOg4PZi4C2FB+e7xBqwLtIli9RhXf0HzdoV74sDNuihqgcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN08zZI06Fw+eEWrrWhb2uORjVGOMB8GA1UdIwQY
MBaAFH91VMFw20wprAzBI1Fv+2yS/qnPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjNWVXdYRGJUQ21zRE1FalVXXzdiSkwtcWM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8xOGIxYTAtOWRjZi00M2VmLWIzZmMt
MmJiZmJlMWY4NmE4LzEvM1R6TmtqVG9YRDU0UmF1dGFGdmE0NUdOVVk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8xOGIxYTAtOWRjZi00M2VmLWIzZmMtMmJiZmJlMWY4NmE4
LzEvZjNWVXdYRGJUQ21zRE1FalVXXzdiSkwtcWM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUg0MA0G
CSqGSIb3DQEBCwUAA4IBAQCht3X9JhNd4hZyZdMQOVkxnox/ywFNwpqeAPC15pfN
TCD5FVZHUpTs8BugOVneEIlsly2YjY8ihrKva9AiIoPLI8LgzXjFP7QKkGpAFoW5
3mYgKIXCEqeOhn6M5kYoIYcjd3DPMxfKoh/ftWTwsy9Y0/wsbtzJi0fuJNmBxji2
vKvV18n1QKi40rRZDji53Lzt5DhaYg0LFeD7qdKaCmguJA8QhTAqg1JUV02HrMAs
62ma1kygLy5A7H416fjx6ITs1HOpZXuG67s2viOzXjgAy9irXisV8dTvpayNomnb
8hyZuWdAtO7537IF6K45xUetRrVS9E1/kOhl6rH0NaQA
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:23 2024 by rpki-client on console-ams.rpki-client.org