Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/OqH3PEMjh5MYepgrbi7_e-LkhyQ.roa
File: OqH3PEMjh5MYepgrbi7_e-LkhyQ.roa (raw, json)
Hash identifier: iafqkUhVt+xiLPMwKt6yp1SUFCnqtZFH1Qp7PgL6lMY=
Subject key identifier: 3A:A1:F7:3C:43:23:87:93:18:7A:98:2B:6E:2E:FF:7B:E2:E4:87:24
Certificate issuer: /CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Certificate serial: 068A0AE6
Authority key identifier: 50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/OqH3PEMjh5MYepgrbi7_e-LkhyQ.roa
Signing time: Fri 01 Apr 2022 06:41:58 +0000
ROA not before: Fri 01 Apr 2022 06:41:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.207.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109710054 (0x68a0ae6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Validity
Not Before: Apr 1 06:41:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3aa1f73c43238793187a982b6e2eff7be2e48724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:77:47:b6:82:9c:8a:50:2d:7f:b3:a1:2e:65:
b0:8a:4a:3a:b9:8d:c4:16:1c:6b:3f:a1:34:fb:b4:
a6:e0:09:94:8e:f4:bb:63:41:f4:1a:58:0f:ae:fc:
2f:44:38:bd:aa:6b:a0:d7:57:5f:9b:e5:25:45:03:
a7:46:18:4f:83:2d:3f:32:fc:e9:a6:35:07:a3:2e:
d3:db:c4:d6:e7:55:85:e8:0a:8d:28:ca:88:ad:52:
63:23:24:51:eb:98:67:c1:18:72:ec:c2:99:ae:b2:
4d:2b:59:12:9f:b0:64:2f:93:9a:b1:4e:c7:ea:b8:
91:74:19:06:b5:24:38:1d:4e:6b:03:79:5b:27:cf:
a6:d2:33:95:73:0d:1d:a3:50:7e:49:b7:96:4f:4e:
f0:1e:70:02:c5:39:d0:41:24:b5:ef:53:31:b9:d9:
04:84:d2:ab:73:9f:2d:89:cf:f9:20:a4:69:09:ce:
fb:5a:48:06:b3:13:e9:87:3f:d7:1d:ff:d6:51:f9:
2e:a4:c2:a3:fa:33:81:99:08:d1:8d:3f:78:13:59:
58:2b:4c:60:08:99:c4:cc:df:6c:8f:dd:cf:95:ca:
18:31:b3:21:9f:00:ec:6c:4f:a9:03:cf:32:e9:02:
df:ff:51:b8:3a:4c:20:c9:70:f3:97:f3:8a:e1:7f:
43:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A1:F7:3C:43:23:87:93:18:7A:98:2B:6E:2E:FF:7B:E2:E4:87:24
X509v3 Authority Key Identifier:
keyid:50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/OqH3PEMjh5MYepgrbi7_e-LkhyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/ULpbdE6N9QPZT0H7KQJCicb6Xls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:58:d4:d5:c9:ac:d6:fe:5d:47:0e:3d:41:66:f5:c6:57:ae:
00:60:25:e8:0d:c8:c2:f3:fe:29:cc:e2:03:28:ab:aa:48:97:
d8:53:6d:08:aa:d4:80:ca:50:13:d5:b8:67:b2:9b:e6:ee:03:
c6:b1:78:ea:9e:86:c7:80:8d:26:4c:9e:cc:58:b0:48:a8:45:
58:e2:37:f4:8b:9f:36:2e:34:44:b2:f9:df:0c:61:e5:78:36:
cc:37:49:ae:7d:0d:d2:ca:cf:00:d1:1b:38:d1:41:8d:94:3f:
55:87:f9:d2:0a:13:9b:1c:51:19:cc:d4:e5:76:c4:15:55:c8:
31:e9:0d:6d:ad:bd:99:f9:76:b0:e8:d4:17:cf:5b:01:8c:eb:
8d:39:f2:8b:c6:77:bb:59:ec:13:ae:60:63:a1:f5:64:ca:c4:
17:c2:3d:57:e7:ea:43:73:4b:b0:81:5c:5e:27:57:47:76:a6:
a0:d5:b0:de:67:e7:b5:53:84:93:85:59:c0:f9:71:e3:a0:62:
bf:53:32:13:f5:40:9b:a3:e9:c7:0b:05:8e:d0:98:4e:1e:62:
7f:2b:bc:80:18:42:0d:e2:41:90:12:8b:09:bf:0a:bf:56:99:
88:60:53:1a:d4:4e:27:59:8b:f0:60:07:3a:5d:43:17:93:31:
df:2e:73:c6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBooK5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGJhNWI3NDRlOGRmNTAzZDk0ZjQxZmIyOTAyNDI4OWM2ZmE1ZTViMB4XDTIyMDQw
MTA2NDE1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2FhMWY3M2M0MzIz
ODc5MzE4N2E5ODJiNmUyZWZmN2JlMmU0ODcyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALV3R7aCnIpQLX+zoS5lsIpKOrmNxBYcaz+hNPu0puAJlI70
u2NB9BpYD678L0Q4vaproNdXX5vlJUUDp0YYT4MtPzL86aY1B6Mu09vE1udVhegK
jSjKiK1SYyMkUeuYZ8EYcuzCma6yTStZEp+wZC+TmrFOx+q4kXQZBrUkOB1OawN5
WyfPptIzlXMNHaNQfkm3lk9O8B5wAsU50EEkte9TMbnZBITSq3OfLYnP+SCkaQnO
+1pIBrMT6Yc/1x3/1lH5LqTCo/ozgZkI0Y0/eBNZWCtMYAiZxMzfbI/dz5XKGDGz
IZ8A7GxPqQPPMukC3/9RuDpMIMlw85fziuF/Q+ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ6ofc8QyOHkxh6mCtuLv974uSHJDAfBgNVHSMEGDAWgBRQult0To31A9lP
QfspAkKJxvpeWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VMcGJkRTZOOVFQWlQwSDdLUUpDaWNiNlhscy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTYvN2FmZjY4LWJhZTYtNDk4YS05ZjU4LWY1NTljZGE4ZDQ5Zi8x
L09xSDNQRU1qaDVNWWVwZ3JiaTdfZS1Ma2h5US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYv
N2FmZjY4LWJhZTYtNDk4YS05ZjU4LWY1NTljZGE4ZDQ5Zi8xL1VMcGJkRTZOOVFQ
WlQwSDdLUUpDaWNiNlhscy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnPBDANBgkqhkiG9w0BAQsFAAOC
AQEApljU1cms1v5dRw49QWb1xleuAGAl6A3IwvP+KcziAyirqkiX2FNtCKrUgMpQ
E9W4Z7Kb5u4DxrF46p6Gx4CNJkyezFiwSKhFWOI39IufNi40RLL53wxh5Xg2zDdJ
rn0N0srPANEbONFBjZQ/VYf50goTmxxRGczU5XbEFVXIMekNba29mfl2sOjUF89b
AYzrjTnyi8Z3u1nsE65gY6H1ZMrEF8I9V+fqQ3NLsIFcXidXR3amoNWw3mfntVOE
k4VZwPlx46Biv1MyE/VAm6PpxwsFjtCYTh5ifyu8gBhCDeJBkBKLCb8Kv1aZiGBT
GtROJ1mL8GAHOl1DF5Mx3y5zxg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org