Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/dCZenHUg1GBr9yC69e5ypYLfLEk.roa
File: dCZenHUg1GBr9yC69e5ypYLfLEk.roa (raw, json)
Hash identifier: 7p2HRjHgbD7cw2dEwMqyaJVAtt1xWDcY0FRWhIPsBLY=
Subject key identifier: 74:26:5E:9C:75:20:D4:60:6B:F7:20:BA:F5:EE:72:A5:82:DF:2C:49
Certificate issuer: /CN=1c21987841c048859fda3499a5a4c274275d0212
Certificate serial: 01856BD380FCDAE5ADADA0423A24566DEBA1
Authority key identifier: 1C:21:98:78:41:C0:48:85:9F:DA:34:99:A5:A4:C2:74:27:5D:02:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCGYeEHASIWf2jSZpaTCdCddAhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/dCZenHUg1GBr9yC69e5ypYLfLEk.roa
Signing time: Sun 01 Jan 2023 05:35:01 +0000
ROA not before: Sun 01 Jan 2023 05:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 176.97.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:80:fc:da:e5:ad:ad:a0:42:3a:24:56:6d:eb:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c21987841c048859fda3499a5a4c274275d0212
Validity
Not Before: Jan 1 05:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74265e9c7520d4606bf720baf5ee72a582df2c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ee:f0:82:52:70:bc:a2:90:d5:ff:5f:38:89:
49:18:f5:af:48:26:e6:c6:5e:4f:6f:f7:dc:f7:45:
53:15:ef:48:16:69:28:40:75:65:10:9e:3d:bd:22:
05:74:33:25:cc:f3:fe:1b:b8:60:c7:ae:e3:59:46:
eb:3e:2d:42:c3:36:e5:5e:34:22:c7:f1:6b:14:85:
e0:51:f3:9b:ac:26:96:e4:1d:80:58:f5:da:19:c5:
fb:ab:7f:11:fe:27:15:0a:39:fa:bf:d7:77:26:3f:
c9:bb:98:c0:4b:d7:00:8b:40:a7:b0:a5:3f:c4:67:
b8:a2:e0:e6:cd:4c:4f:d2:22:b3:8a:42:b3:af:88:
73:92:2e:06:46:41:bf:3d:23:29:c9:6c:4c:b3:f4:
98:0a:4d:53:12:5e:f1:13:56:38:ba:9f:ba:13:2a:
07:f0:2b:c1:3d:e1:bc:ff:0d:ca:7c:b4:9a:37:97:
47:ac:a7:de:77:4f:70:78:66:5e:4d:4e:a8:9d:ba:
1a:fd:32:d7:35:5c:a2:f1:ec:39:94:3d:8a:fb:1e:
6c:b9:00:fd:9e:28:d9:fb:2e:5a:c8:71:6f:9f:b5:
8d:2a:35:a0:34:cb:61:37:f5:b9:72:46:49:44:b9:
35:d2:b7:57:d5:7d:a2:a3:4b:15:07:5c:20:4b:f1:
4a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:26:5E:9C:75:20:D4:60:6B:F7:20:BA:F5:EE:72:A5:82:DF:2C:49
X509v3 Authority Key Identifier:
keyid:1C:21:98:78:41:C0:48:85:9F:DA:34:99:A5:A4:C2:74:27:5D:02:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCGYeEHASIWf2jSZpaTCdCddAhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/dCZenHUg1GBr9yC69e5ypYLfLEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/HCGYeEHASIWf2jSZpaTCdCddAhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.223.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:0e:38:5c:b6:8a:dc:8c:94:37:f1:3d:e1:33:f0:31:0c:6a:
6a:bb:7c:1a:6a:9e:aa:91:00:07:01:37:fb:70:30:11:ec:d6:
11:d9:49:1d:d0:ac:43:80:99:a6:13:c1:4b:82:63:46:a2:3a:
4e:a4:f0:03:0a:7d:0d:94:8e:aa:38:4c:d3:b9:57:6c:1a:de:
a9:81:0f:0c:1a:6d:d2:c0:02:2c:a5:e0:02:59:31:42:55:8b:
da:2c:35:a8:cd:e2:1c:e0:a5:a9:c8:47:e8:91:23:12:15:81:
03:12:f3:8e:6e:3f:64:eb:db:ab:3e:de:89:fd:67:67:65:64:
ba:99:f3:50:fa:e7:02:a5:df:9e:e3:be:1c:6f:09:35:0b:28:
b8:67:3f:bf:e6:2b:dd:98:d8:11:bd:02:ed:77:6b:c5:b2:c0:
7a:d1:0e:6f:2e:c9:e2:b3:2c:86:4b:43:76:a9:ae:fe:de:e1:
a7:40:dd:6c:b2:22:b5:a8:b6:fb:c2:85:a3:f6:5a:fc:5c:a6:
13:bf:76:aa:5e:01:09:f8:06:5b:b2:a0:b0:4c:91:5d:e4:06:
db:f9:8c:d8:02:94:18:a4:a3:c3:ee:e8:2c:81:33:c7:8f:28:
b7:5d:99:46:89:a7:3a:2c:52:74:b5:28:1c:b2:8e:11:de:03:
23:e7:16:f4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr04D82uWtraBCOiRWbeuhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjE5ODc4NDFjMDQ4ODU5ZmRhMzQ5OWE1YTRjMjc0Mjc1
ZDAyMTIwHhcNMjMwMTAxMDUzNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDI2NWU5Yzc1MjBkNDYwNmJmNzIwYmFmNWVlNzJhNTgyZGYyYzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqO7wglJwvKKQ1f9fOIlJGPWvSCbm
xl5Pb/fc90VTFe9IFmkoQHVlEJ49vSIFdDMlzPP+G7hgx67jWUbrPi1CwzblXjQi
x/FrFIXgUfObrCaW5B2AWPXaGcX7q38R/icVCjn6v9d3Jj/Ju5jAS9cAi0CnsKU/
xGe4ouDmzUxP0iKzikKzr4hzki4GRkG/PSMpyWxMs/SYCk1TEl7xE1Y4up+6EyoH
8CvBPeG8/w3KfLSaN5dHrKfed09weGZeTU6onboa/TLXNVyi8ew5lD2K+x5suQD9
nijZ+y5ayHFvn7WNKjWgNMthN/W5ckZJRLk10rdX1X2io0sVB1wgS/FKowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQmXpx1INRga/cguvXucqWC3yxJMB8GA1UdIwQY
MBaAFBwhmHhBwEiFn9o0maWkwnQnXQISMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENHWWVFSEFTSVdmMmpTWnBhVENkQ2RkQWhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81ZmVhNWEtNzhmNi00MzEyLWJlMDMt
ZTBiZWRkYjVhODgzLzEvZENaZW5IVWcxR0JyOXlDNjllNXlwWUxmTEVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS81ZmVhNWEtNzhmNi00MzEyLWJlMDMtZTBiZWRkYjVhODgz
LzEvSENHWWVFSEFTSVdmMmpTWnBhVENkQ2RkQWhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGHfMA0G
CSqGSIb3DQEBCwUAA4IBAQA9DjhctorcjJQ38T3hM/AxDGpqu3waap6qkQAHATf7
cDAR7NYR2Ukd0KxDgJmmE8FLgmNGojpOpPADCn0NlI6qOEzTuVdsGt6pgQ8MGm3S
wAIspeACWTFCVYvaLDWozeIc4KWpyEfokSMSFYEDEvOObj9k69urPt6J/WdnZWS6
mfNQ+ucCpd+e474cbwk1Cyi4Zz+/5ivdmNgRvQLtd2vFssB60Q5vLsnisyyGS0N2
qa7+3uGnQN1ssiK1qLb7woWj9lr8XKYTv3aqXgEJ+AZbsqCwTJFd5Abb+YzYApQY
pKPD7ugsgTPHjyi3XZlGiac6LFJ0tSgcso4R3gMj5xb0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org