Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/lmzQTpENmRtSS6KZ_hzoZ_FEkGI.roa
File: lmzQTpENmRtSS6KZ_hzoZ_FEkGI.roa (raw, json)
Hash identifier: f+ufDDqfjwdfsxpWOqTtssiX8+f652AWMBQhr499uwM=
Subject key identifier: 96:6C:D0:4E:91:0D:99:1B:52:4B:A2:99:FE:1C:E8:67:F1:44:90:62
Certificate issuer: /CN=b80fef22577fe3cdfe7004c49ccc8fcfa8820d88
Certificate serial: 85690B
Authority key identifier: B8:0F:EF:22:57:7F:E3:CD:FE:70:04:C4:9C:CC:8F:CF:A8:82:0D:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uA_vIld_483-cATEnMyPz6iCDYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/lmzQTpENmRtSS6KZ_hzoZ_FEkGI.roa
Signing time: Sat 01 Jan 2022 03:52:09 +0000
ROA not before: Sat 01 Jan 2022 03:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 195.96.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8743179 (0x85690b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b80fef22577fe3cdfe7004c49ccc8fcfa8820d88
Validity
Not Before: Jan 1 03:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=966cd04e910d991b524ba299fe1ce867f1449062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:02:75:88:6b:65:d0:cc:4d:91:2b:3c:29:a2:
7d:b9:f4:8b:e2:36:88:c2:43:20:88:58:5e:2f:86:
15:14:dd:c8:40:5b:d3:0d:b2:4d:97:80:fc:4c:0f:
d8:46:9e:46:4b:61:55:20:67:a7:9a:0e:7e:51:f9:
9b:0b:40:e9:b1:27:27:c2:b7:17:33:2e:22:f9:5d:
95:be:d8:b3:47:55:26:30:6d:ed:c7:78:dd:4d:2c:
42:6a:94:6d:15:0d:ff:be:89:33:d2:c0:bd:bc:27:
bc:68:1b:7e:05:79:74:25:08:d0:85:95:2d:d8:5c:
97:ab:c5:b7:71:80:3c:4f:91:31:dd:8f:c9:da:67:
0e:19:e1:db:56:38:4d:d8:89:c2:b3:e9:a6:1b:d7:
2a:88:2d:0f:53:90:f4:76:42:80:b5:d6:c7:99:46:
be:cb:7f:f9:09:9f:d5:4e:d7:6c:69:30:64:f7:53:
67:aa:37:c1:84:a5:41:e0:c1:f6:72:27:c7:2c:46:
c0:f3:fe:29:9e:4e:9d:3f:62:37:09:78:cc:e9:d7:
d0:9b:e2:89:c2:17:00:2d:75:10:a3:fb:d4:30:33:
f0:e6:36:51:fc:3c:ef:ef:d9:27:db:7d:71:55:68:
48:19:00:5d:50:88:b4:6e:a9:53:3b:5e:cb:83:82:
43:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6C:D0:4E:91:0D:99:1B:52:4B:A2:99:FE:1C:E8:67:F1:44:90:62
X509v3 Authority Key Identifier:
keyid:B8:0F:EF:22:57:7F:E3:CD:FE:70:04:C4:9C:CC:8F:CF:A8:82:0D:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uA_vIld_483-cATEnMyPz6iCDYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/lmzQTpENmRtSS6KZ_hzoZ_FEkGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/uA_vIld_483-cATEnMyPz6iCDYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.145.0/24
Signature Algorithm: sha256WithRSAEncryption
33:f5:b5:6c:f5:6b:22:7d:f9:e3:29:2f:aa:36:64:93:09:7f:
23:17:72:cf:77:e2:2a:e2:89:72:d9:27:f4:0d:0f:ff:f3:64:
47:5f:5a:67:99:84:f7:c2:2d:04:d9:d0:0b:25:04:c6:6a:7c:
43:cd:52:ea:86:d0:52:18:91:88:a7:5b:6f:52:fa:cb:be:7f:
0d:c3:be:4a:ee:50:3c:ad:33:a9:81:8d:5f:47:81:13:fa:8e:
d9:e5:0a:48:bf:0c:95:36:d2:99:d7:83:0e:49:d9:dc:af:95:
eb:85:9c:72:ea:3a:93:88:96:8e:5f:3b:e0:a5:1e:9c:18:c9:
ce:7d:33:f6:81:3f:f2:c9:71:73:86:05:cd:0a:8b:ba:0b:ff:
6e:ab:26:70:38:8e:87:42:f9:11:85:ad:e2:f5:7c:a3:92:09:
a7:70:85:d2:f9:de:8f:c4:8a:0e:2f:65:8d:cc:02:27:a5:e1:
b6:15:13:f6:27:ff:a7:5c:3a:48:7d:c1:e5:9b:53:bb:65:54:
7e:8f:2c:2d:0d:b6:0e:a2:54:ce:ce:4a:47:7a:ac:53:53:ae:
b3:74:3f:98:8d:52:8c:20:74:72:ce:a0:da:73:d7:9e:6b:80:
0e:06:7e:66:ed:23:e8:a2:77:87:07:5f:00:2e:a8:d1:84:8d:
dd:4c:05:25
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIVpCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODBmZWYyMjU3N2ZlM2NkZmU3MDA0YzQ5Y2NjOGZjZmE4ODIwZDg4MB4XDTIyMDEw
MTAzNTIwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTY2Y2QwNGU5MTBk
OTkxYjUyNGJhMjk5ZmUxY2U4NjdmMTQ0OTA2MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI4CdYhrZdDMTZErPCmifbn0i+I2iMJDIIhYXi+GFRTdyEBb
0w2yTZeA/EwP2EaeRkthVSBnp5oOflH5mwtA6bEnJ8K3FzMuIvldlb7Ys0dVJjBt
7cd43U0sQmqUbRUN/76JM9LAvbwnvGgbfgV5dCUI0IWVLdhcl6vFt3GAPE+RMd2P
ydpnDhnh21Y4TdiJwrPpphvXKogtD1OQ9HZCgLXWx5lGvst/+Qmf1U7XbGkwZPdT
Z6o3wYSlQeDB9nInxyxGwPP+KZ5OnT9iNwl4zOnX0JviicIXAC11EKP71DAz8OY2
Ufw87+/ZJ9t9cVVoSBkAXVCItG6pUztey4OCQwcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSWbNBOkQ2ZG1JLopn+HOhn8USQYjAfBgNVHSMEGDAWgBS4D+8iV3/jzf5w
BMSczI/PqIINiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VBX3ZJbGRfNDgzLWNBVEVuTXlQejZpQ0RZZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTQvYjcyMmJkLWE1MWUtNDUxZi04Y2U2LTZhODEzNmY5ZmZlMi8x
L2xtelFUcEVObVJ0U1M2S1pfaHpvWl9GRWtHSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQv
YjcyMmJkLWE1MWUtNDUxZi04Y2U2LTZhODEzNmY5ZmZlMi8xL3VBX3ZJbGRfNDgz
LWNBVEVuTXlQejZpQ0RZZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMNgkTANBgkqhkiG9w0BAQsFAAOC
AQEAM/W1bPVrIn354ykvqjZkkwl/Ixdyz3fiKuKJctkn9A0P//NkR19aZ5mE98It
BNnQCyUExmp8Q81S6obQUhiRiKdbb1L6y75/DcO+Su5QPK0zqYGNX0eBE/qO2eUK
SL8MlTbSmdeDDknZ3K+V64Wccuo6k4iWjl874KUenBjJzn0z9oE/8slxc4YFzQqL
ugv/bqsmcDiOh0L5EYWt4vV8o5IJp3CF0vnej8SKDi9ljcwCJ6XhthUT9if/p1w6
SH3B5ZtTu2VUfo8sLQ22DqJUzs5KR3qsU1Ous3Q/mI1SjCB0cs6g2nPXnmuADgZ+
Zu0j6KJ3hwdfAC6o0YSN3UwFJQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:29 2024 by rpki-client on console-fra.rpki-client.org