Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/cw7XWzkVua_qMbLpuzWwuZ23PHs.roa
File: cw7XWzkVua_qMbLpuzWwuZ23PHs.roa (raw, json)
Hash identifier: KakNHCdxt+zZeENO3lLRM9bSTLRH2Xx45IwBikW9ZUY=
Subject key identifier: 73:0E:D7:5B:39:15:B9:AF:EA:31:B2:E9:BB:35:B0:B9:9D:B7:3C:7B
Certificate issuer: /CN=a61db78c7f21285866dab4a45a544dce559f43da
Certificate serial: 01BD76AE
Authority key identifier: A6:1D:B7:8C:7F:21:28:58:66:DA:B4:A4:5A:54:4D:CE:55:9F:43:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ph23jH8hKFhm2rSkWlRNzlWfQ9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/cw7XWzkVua_qMbLpuzWwuZ23PHs.roa
Signing time: Sat 01 Jan 2022 14:03:57 +0000
ROA not before: Sat 01 Jan 2022 14:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210225
IP address blocks: 193.32.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29193902 (0x1bd76ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a61db78c7f21285866dab4a45a544dce559f43da
Validity
Not Before: Jan 1 14:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=730ed75b3915b9afea31b2e9bb35b0b99db73c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0e:72:73:58:d6:e0:0a:84:ee:e9:8f:87:f8:
26:75:88:ca:4e:07:c9:18:aa:66:c8:2c:3f:6c:7b:
e2:53:5f:80:41:83:f3:01:38:5a:c7:e4:2e:22:df:
8b:2a:71:ee:ca:57:f2:aa:af:f5:9f:3c:11:e1:11:
62:4d:37:8d:ae:58:5c:b5:b6:65:04:1f:24:17:ba:
f0:88:86:27:3f:c9:ca:44:65:02:ea:f6:98:97:25:
18:9f:37:9d:ad:fd:c8:ac:37:5c:e8:ad:76:c7:88:
3c:df:a0:d1:c3:61:f2:5d:eb:04:13:4b:a2:d8:f4:
48:f5:96:eb:18:8c:cd:0c:4c:c9:de:c6:63:b0:67:
8b:c2:54:3a:99:34:ff:a2:7e:ed:24:aa:14:bd:9a:
5d:9c:d7:17:27:69:66:69:e9:1f:eb:89:e1:82:0b:
f6:8e:47:6d:22:0c:dd:aa:36:06:96:ac:27:82:b7:
7e:e8:35:d9:87:97:fd:56:d7:b9:df:4b:e1:0c:89:
a8:81:1c:06:2d:9a:eb:32:87:e5:ee:b8:e6:59:e0:
0b:a1:2d:e6:c7:35:a8:ca:d3:8d:62:d6:2b:56:4b:
33:2d:b8:6f:54:0d:51:75:af:fe:5d:1b:e2:c3:5c:
0a:d5:d1:bb:6c:32:38:4f:26:a9:30:b2:cf:8c:f1:
f8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0E:D7:5B:39:15:B9:AF:EA:31:B2:E9:BB:35:B0:B9:9D:B7:3C:7B
X509v3 Authority Key Identifier:
keyid:A6:1D:B7:8C:7F:21:28:58:66:DA:B4:A4:5A:54:4D:CE:55:9F:43:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ph23jH8hKFhm2rSkWlRNzlWfQ9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/cw7XWzkVua_qMbLpuzWwuZ23PHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/55057b-a27a-4876-a6c5-c150dffff7d6/1/ph23jH8hKFhm2rSkWlRNzlWfQ9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.236.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:3d:be:33:3e:94:16:f6:6a:6c:a6:70:a1:7f:c3:6f:62:48:
d1:72:07:51:93:cb:69:79:88:ef:f5:b1:60:41:37:b8:17:97:
4a:74:02:56:64:8a:32:2b:37:84:88:b7:48:12:35:4c:96:9b:
5b:c7:71:10:46:e6:5c:31:54:c0:29:23:96:ea:d2:0c:1f:d2:
7f:ab:f3:b2:21:ae:81:11:f3:f1:0c:c2:de:b9:f4:33:31:02:
b7:fb:1c:4b:ea:22:af:d2:9b:95:11:3a:72:44:34:0f:5d:8c:
38:aa:a5:e8:e5:19:61:1f:8f:e3:af:93:cf:87:5e:de:70:6f:
74:69:41:b5:31:42:b2:3f:98:15:47:6e:a5:27:cb:78:e4:a8:
0a:6b:24:88:24:88:05:3d:c3:96:a0:ea:f4:9d:e7:c8:f4:ed:
31:5b:6f:e3:c6:67:22:66:66:15:50:82:1b:67:32:d6:35:5d:
c4:23:42:03:95:6f:18:e3:e7:28:85:06:5c:da:f4:5c:c6:ef:
c6:6b:4b:a8:62:d9:30:01:74:a9:97:2d:81:2a:6d:4d:6f:f9:
34:54:3c:ec:ff:f4:2c:2f:02:b6:fb:aa:34:06:59:91:bd:54:
4c:c9:02:05:82:1d:1b:65:95:72:05:7b:9d:22:7e:f8:2c:ca:
92:11:ea:65
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAb12rjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NjFkYjc4YzdmMjEyODU4NjZkYWI0YTQ1YTU0NGRjZTU1OWY0M2RhMB4XDTIyMDEw
MTE0MDM1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzMwZWQ3NWIzOTE1
YjlhZmVhMzFiMmU5YmIzNWIwYjk5ZGI3M2M3YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANYOcnNY1uAKhO7pj4f4JnWIyk4HyRiqZsgsP2x74lNfgEGD
8wE4WsfkLiLfiypx7spX8qqv9Z88EeERYk03ja5YXLW2ZQQfJBe68IiGJz/JykRl
Aur2mJclGJ83na39yKw3XOitdseIPN+g0cNh8l3rBBNLotj0SPWW6xiMzQxMyd7G
Y7Bni8JUOpk0/6J+7SSqFL2aXZzXFydpZmnpH+uJ4YIL9o5HbSIM3ao2BpasJ4K3
fug12YeX/VbXud9L4QyJqIEcBi2a6zKH5e645lngC6Et5sc1qMrTjWLWK1ZLMy24
b1QNUXWv/l0b4sNcCtXRu2wyOE8mqTCyz4zx+OcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRzDtdbORW5r+oxsum7NbC5nbc8ezAfBgNVHSMEGDAWgBSmHbeMfyEoWGba
tKRaVE3OVZ9D2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BoMjNqSDhoS0ZobTJyU2tXbFJOemxXZlE5by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvNTUwNTdiLWEyN2EtNDg3Ni1hNmM1LWMxNTBkZmZmZjdkNi8x
L2N3N1hXemtWdWFfcU1iTHB1eld3dVoyM1BIcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
NTUwNTdiLWEyN2EtNDg3Ni1hNmM1LWMxNTBkZmZmZjdkNi8xL3BoMjNqSDhoS0Zo
bTJyU2tXbFJOemxXZlE5by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsEg7DANBgkqhkiG9w0BAQsFAAOC
AQEAHD2+Mz6UFvZqbKZwoX/Db2JI0XIHUZPLaXmI7/WxYEE3uBeXSnQCVmSKMis3
hIi3SBI1TJabW8dxEEbmXDFUwCkjlurSDB/Sf6vzsiGugRHz8QzC3rn0MzECt/sc
S+oir9KblRE6ckQ0D12MOKql6OUZYR+P46+Tz4de3nBvdGlBtTFCsj+YFUdupSfL
eOSoCmskiCSIBT3DlqDq9J3nyPTtMVtv48ZnImZmFVCCG2cy1jVdxCNCA5VvGOPn
KIUGXNr0XMbvxmtLqGLZMAF0qZctgSptTW/5NFQ87P/0LC8CtvuqNAZZkb1UTMkC
BYIdG2WVcgV7nSJ++CzKkhHqZQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:26 2024 by rpki-client on console-fra.rpki-client.org