Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/Yz_Ut1RtXWTYRrZvLHV8UKiAc1A.roa
File: Yz_Ut1RtXWTYRrZvLHV8UKiAc1A.roa (raw, json)
Hash identifier: s8iy71Wy/PJ3+/tsZqNZnbBMxKOLk1mI4ExpK4rAbxI=
Subject key identifier: 63:3F:D4:B7:54:6D:5D:64:D8:46:B6:6F:2C:75:7C:50:A8:80:73:50
Certificate issuer: /CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Certificate serial: 0BBB0B32
Authority key identifier: 00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/Yz_Ut1RtXWTYRrZvLHV8UKiAc1A.roa
Signing time: Sat 01 Jan 2022 00:58:19 +0000
ROA not before: Sat 01 Jan 2022 00:58:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212600
IP address blocks: 185.153.95.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196807474 (0xbbb0b32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Validity
Not Before: Jan 1 00:58:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=633fd4b7546d5d64d846b66f2c757c50a8807350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:63:d8:99:36:4a:45:25:d4:9b:dc:68:e9:6a:
cf:1a:60:54:c0:73:7d:b9:05:65:1c:a8:d9:27:de:
ec:64:9f:a0:13:7e:db:f2:17:e2:d6:47:df:b7:a0:
b3:a0:90:6e:9c:d0:66:85:3c:52:ab:85:4d:c3:d9:
4c:f8:de:ad:f6:2e:b4:cf:15:c9:83:90:67:5c:10:
5a:d0:8a:ff:fc:63:01:e6:9e:7b:dd:ea:b8:a3:fb:
a8:17:40:d6:19:78:eb:40:6b:b9:fa:76:71:74:9d:
59:05:b3:e4:07:ae:f9:60:82:d8:6e:71:80:23:2a:
d3:91:7b:72:b3:70:28:ae:a9:ac:fd:2d:86:8d:ca:
24:d2:a9:91:f0:ae:cb:c1:c4:c7:5b:34:76:e8:6c:
09:ef:6f:a9:48:ba:50:38:30:d1:2e:6d:93:46:04:
bd:9c:96:2a:44:6c:c7:c0:96:8d:be:52:bb:e9:ef:
30:17:1c:97:5f:bd:f7:da:8c:c0:3f:5c:1f:47:c6:
f1:39:3d:3f:7a:aa:c5:fd:4f:2c:18:33:90:94:a1:
8f:c3:61:b3:f0:52:73:4e:50:97:91:ca:d1:d7:54:
53:de:8a:84:10:40:2b:c4:67:67:c4:a6:7f:c2:41:
b5:a0:26:ed:03:6a:39:89:8f:3b:5a:50:3c:d4:95:
35:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3F:D4:B7:54:6D:5D:64:D8:46:B6:6F:2C:75:7C:50:A8:80:73:50
X509v3 Authority Key Identifier:
keyid:00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/Yz_Ut1RtXWTYRrZvLHV8UKiAc1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/AG5kPQtn9LMz_qzcRhbU5PPeMs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:65:e8:db:1f:e5:d7:94:77:0e:da:db:3c:f9:07:77:e6:a3:
67:02:b0:2a:ec:43:35:39:60:7a:15:50:a6:0c:a0:de:2a:d7:
d5:a9:61:42:b3:20:b4:25:df:9a:d1:c9:7b:1e:c0:c2:e8:bb:
45:72:df:6e:95:b1:1a:f3:d8:ce:7b:67:39:bb:4a:6a:a1:8e:
3f:b3:d9:c3:dd:bb:34:c8:ba:05:f1:4f:a5:c6:e0:9d:b2:bf:
d2:cb:d9:f3:a9:71:22:fe:c0:5a:25:ab:03:9e:03:8a:68:a1:
e9:a6:bd:62:21:13:b0:3d:a5:49:9d:c7:91:cd:ca:97:62:ad:
d4:56:c2:4e:52:18:dc:1f:06:6d:12:47:75:e2:50:e9:75:e6:
d2:b4:7f:e3:80:a0:4f:bb:03:6f:95:20:58:ba:65:ab:23:d1:
c2:b6:7d:79:ca:5b:ed:99:a2:19:22:d7:d0:4e:05:b4:4b:14:
27:9f:e0:d2:52:10:2f:f2:c8:e3:06:6f:ef:d6:3e:3b:88:6a:
96:72:64:fa:d8:79:9d:5a:69:0f:77:cd:92:99:ff:ec:7d:ba:
a0:e3:f1:4d:8a:f1:aa:7b:09:94:49:65:a8:ef:d6:6f:50:56:
70:47:44:5e:1f:ec:dd:6f:a0:17:37:25:7d:4e:f4:4f:4e:c3:
77:b2:41:bd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC7sLMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MDZlNjQzZDBiNjdmNGIzMzNmZWFjZGM0NjE2ZDRlNGYzZGUzMmNkMB4XDTIyMDEw
MTAwNTgxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjMzZmQ0Yjc1NDZk
NWQ2NGQ4NDZiNjZmMmM3NTdjNTBhODgwNzM1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAONj2Jk2SkUl1JvcaOlqzxpgVMBzfbkFZRyo2Sfe7GSfoBN+
2/IX4tZH37egs6CQbpzQZoU8UquFTcPZTPjerfYutM8VyYOQZ1wQWtCK//xjAeae
e93quKP7qBdA1hl460Brufp2cXSdWQWz5Aeu+WCC2G5xgCMq05F7crNwKK6prP0t
ho3KJNKpkfCuy8HEx1s0duhsCe9vqUi6UDgw0S5tk0YEvZyWKkRsx8CWjb5Su+nv
MBccl1+999qMwD9cH0fG8Tk9P3qqxf1PLBgzkJShj8Nhs/BSc05Ql5HK0ddUU96K
hBBAK8RnZ8Smf8JBtaAm7QNqOYmPO1pQPNSVNXcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjP9S3VG1dZNhGtm8sdXxQqIBzUDAfBgNVHSMEGDAWgBQAbmQ9C2f0szP+
rNxGFtTk894yzTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FHNWtQUXRuOUxNel9xemNSaGJVNVBQZU1zMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvYjdhYTdiLTk3YzItNGJkOC04Y2FhLWRjY2UyOGU5MzQ2YS8x
L1l6X1V0MVJ0WFdUWVJyWnZMSFY4VUtpQWMxQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
YjdhYTdiLTk3YzItNGJkOC04Y2FhLWRjY2UyOGU5MzQ2YS8xL0FHNWtQUXRuOUxN
el9xemNSaGJVNVBQZU1zMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmZXzANBgkqhkiG9w0BAQsFAAOC
AQEAKmXo2x/l15R3DtrbPPkHd+ajZwKwKuxDNTlgehVQpgyg3irX1alhQrMgtCXf
mtHJex7Awui7RXLfbpWxGvPYzntnObtKaqGOP7PZw927NMi6BfFPpcbgnbK/0svZ
86lxIv7AWiWrA54Dimih6aa9YiETsD2lSZ3Hkc3Kl2Kt1FbCTlIY3B8GbRJHdeJQ
6XXm0rR/44CgT7sDb5UgWLplqyPRwrZ9ecpb7ZmiGSLX0E4FtEsUJ5/g0lIQL/LI
4wZv79Y+O4hqlnJk+th5nVppD3fNkpn/7H26oOPxTYrxqnsJlEllqO/Wb1BWcEdE
Xh/s3W+gFzclfU70T07Dd7JBvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org