Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/77127c-2ecf-4150-aca6-e44635daf021/1/PHpzM6SE0J40fVaFBFiS-HPJ88o.roa
File: PHpzM6SE0J40fVaFBFiS-HPJ88o.roa (raw, json)
Hash identifier: nC7NTnH8+2Bz/Ws8v0OYmpdjyiKiuBTylPuaovW0oLs=
Subject key identifier: 3C:7A:73:33:A4:84:D0:9E:34:7D:56:85:04:58:92:F8:73:C9:F3:CA
Certificate issuer: /CN=b41fee591c8ebcff1c0b83c49d258a7b211bfe88
Certificate serial: E4E1D7
Authority key identifier: B4:1F:EE:59:1C:8E:BC:FF:1C:0B:83:C4:9D:25:8A:7B:21:1B:FE:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tB_uWRyOvP8cC4PEnSWKeyEb_og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/77127c-2ecf-4150-aca6-e44635daf021/1/PHpzM6SE0J40fVaFBFiS-HPJ88o.roa
Signing time: Tue 08 Feb 2022 00:23:26 +0000
ROA not before: Tue 08 Feb 2022 00:23:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39356
IP address blocks: 185.10.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15000023 (0xe4e1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b41fee591c8ebcff1c0b83c49d258a7b211bfe88
Validity
Not Before: Feb 8 00:23:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c7a7333a484d09e347d5685045892f873c9f3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0e:e2:d0:f2:65:1d:b4:b8:4d:b7:cd:4c:c8:
1a:cc:a6:3d:ad:3c:5d:ba:a4:60:4f:7f:6e:37:1f:
4a:61:7f:7a:5e:74:51:2d:94:80:53:2d:9d:c6:0e:
67:fb:7f:36:1f:2d:79:de:7e:4f:fd:84:c7:1b:90:
6a:e1:1c:67:ff:31:e0:3c:5f:88:4a:a1:cc:17:60:
b6:45:ae:ad:6a:f1:79:a3:27:f4:ff:0b:0d:67:81:
a9:e2:ee:c9:5c:68:fd:bb:f8:36:04:ae:97:0c:ce:
0f:d6:73:32:92:10:fb:16:08:44:62:ac:8f:da:c7:
12:99:cc:43:bb:fb:41:a1:73:03:70:76:d0:e1:aa:
8e:01:d8:fe:b6:68:91:96:21:7f:57:ef:0e:a1:34:
c4:f9:f2:c3:5b:a7:a7:d8:a3:a0:d7:09:34:e5:6e:
3d:54:a3:eb:b8:77:87:3a:cc:9f:0b:4e:f0:96:83:
9e:e4:e8:46:2b:e8:01:fe:eb:5e:93:52:19:4d:19:
6f:5d:3d:39:99:71:cb:e0:bd:22:83:4e:05:89:6d:
6b:86:9e:6f:5d:05:f1:6f:1b:fc:97:ed:e6:56:dd:
88:94:e9:14:d1:69:fd:a9:4c:68:43:14:d3:21:9a:
cd:8f:75:09:2c:ba:e5:d2:51:8d:10:d3:e2:6d:2e:
9a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7A:73:33:A4:84:D0:9E:34:7D:56:85:04:58:92:F8:73:C9:F3:CA
X509v3 Authority Key Identifier:
keyid:B4:1F:EE:59:1C:8E:BC:FF:1C:0B:83:C4:9D:25:8A:7B:21:1B:FE:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tB_uWRyOvP8cC4PEnSWKeyEb_og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/77127c-2ecf-4150-aca6-e44635daf021/1/PHpzM6SE0J40fVaFBFiS-HPJ88o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/77127c-2ecf-4150-aca6-e44635daf021/1/tB_uWRyOvP8cC4PEnSWKeyEb_og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.240.0/22
Signature Algorithm: sha256WithRSAEncryption
78:85:62:f9:3f:48:8d:86:a4:57:79:1f:31:20:27:7b:b4:90:
67:1a:f4:cb:dd:d0:ab:83:1f:54:8d:ee:9a:4e:e3:5c:22:8b:
04:9a:fc:44:56:d9:6e:06:8a:08:5a:bb:3a:9b:61:34:8b:a2:
12:8a:38:e3:a7:87:10:c9:b3:41:bb:7b:4e:4d:52:a9:e7:f5:
52:f0:51:9d:ad:7e:af:ce:a2:cf:85:bf:89:54:20:01:d5:1f:
0a:dd:c5:79:70:51:2d:09:20:03:4d:62:29:1f:0a:c0:69:f1:
18:9c:ad:60:d1:6e:49:cb:97:53:b9:52:44:4a:e4:92:a1:5c:
e9:e8:e1:27:78:d3:62:ae:35:ed:0c:85:c3:a4:11:ad:ce:01:
7e:83:ff:7c:8e:86:09:a8:2a:4a:61:cc:72:ee:76:d0:26:80:
df:7f:9e:b1:d1:08:81:0c:08:ba:91:7d:a7:d6:4e:62:94:2e:
fc:dc:98:f9:c8:bf:d4:05:15:3d:d9:c7:d2:41:9b:c1:e0:18:
fc:cc:b6:e9:0c:c0:04:fa:f5:b7:77:d4:60:5d:5c:05:df:78:
06:b9:d0:d4:31:0b:27:28:49:22:8f:b4:74:4a:75:2d:a0:57:
dc:a7:eb:ab:1b:1e:e7:98:24:9d:fb:cd:a2:19:46:98:85:1c:
8d:e0:1b:9d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOTh1zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NDFmZWU1OTFjOGViY2ZmMWMwYjgzYzQ5ZDI1OGE3YjIxMWJmZTg4MB4XDTIyMDIw
ODAwMjMyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2M3YTczMzNhNDg0
ZDA5ZTM0N2Q1Njg1MDQ1ODkyZjg3M2M5ZjNjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALYO4tDyZR20uE23zUzIGsymPa08XbqkYE9/bjcfSmF/el50
US2UgFMtncYOZ/t/Nh8ted5+T/2ExxuQauEcZ/8x4DxfiEqhzBdgtkWurWrxeaMn
9P8LDWeBqeLuyVxo/bv4NgSulwzOD9ZzMpIQ+xYIRGKsj9rHEpnMQ7v7QaFzA3B2
0OGqjgHY/rZokZYhf1fvDqE0xPnyw1unp9ijoNcJNOVuPVSj67h3hzrMnwtO8JaD
nuToRivoAf7rXpNSGU0Zb109OZlxy+C9IoNOBYlta4aeb10F8W8b/Jft5lbdiJTp
FNFp/alMaEMU0yGazY91CSy65dJRjRDT4m0umkkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ8enMzpITQnjR9VoUEWJL4c8nzyjAfBgNVHSMEGDAWgBS0H+5ZHI68/xwL
g8SdJYp7IRv+iDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RCX3VXUnlPdlA4Y0M0UEVuU1dLZXlFYl9vZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvNzcxMjdjLTJlY2YtNDE1MC1hY2E2LWU0NDYzNWRhZjAyMS8x
L1BIcHpNNlNFMEo0MGZWYUZCRmlTLUhQSjg4by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
NzcxMjdjLTJlY2YtNDE1MC1hY2E2LWU0NDYzNWRhZjAyMS8xL3RCX3VXUnlPdlA4
Y0M0UEVuU1dLZXlFYl9vZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkK8DANBgkqhkiG9w0BAQsFAAOC
AQEAeIVi+T9IjYakV3kfMSAne7SQZxr0y93Qq4MfVI3umk7jXCKLBJr8RFbZbgaK
CFq7OpthNIuiEoo446eHEMmzQbt7Tk1Sqef1UvBRna1+r86iz4W/iVQgAdUfCt3F
eXBRLQkgA01iKR8KwGnxGJytYNFuScuXU7lSRErkkqFc6ejhJ3jTYq417QyFw6QR
rc4BfoP/fI6GCagqSmHMcu520CaA33+esdEIgQwIupF9p9ZOYpQu/NyY+ci/1AUV
PdnH0kGbweAY/My26QzABPr1t3fUYF1cBd94BrnQ1DELJyhJIo+0dEp1LaBX3Kfr
qxse55gknfvNohlGmIUcjeAbnQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:57 2025 by rpki-client