Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1e68bf-9204-4502-9b7c-0585ccb18c39/1/DgNDjXjlNLXowWZpEzSulpaiSno.roa
File: DgNDjXjlNLXowWZpEzSulpaiSno.roa (raw, json)
Hash identifier: oOl1te+iD+Feq9MFbM1NPcdz6V92ry7mAunCmc5SeVE=
Subject key identifier: 0E:03:43:8D:78:E5:34:B5:E8:C1:66:69:13:34:AE:96:96:A2:4A:7A
Certificate issuer: /CN=4f717e25dedfdde15bb527f20d8288327b388d40
Certificate serial: 0406B3A3
Authority key identifier: 4F:71:7E:25:DE:DF:DD:E1:5B:B5:27:F2:0D:82:88:32:7B:38:8D:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T3F-Jd7f3eFbtSfyDYKIMns4jUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1e68bf-9204-4502-9b7c-0585ccb18c39/1/DgNDjXjlNLXowWZpEzSulpaiSno.roa
Signing time: Sat 01 Jan 2022 13:07:12 +0000
ROA not before: Sat 01 Jan 2022 13:07:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212665
IP address blocks: 164.40.224.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67548067 (0x406b3a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f717e25dedfdde15bb527f20d8288327b388d40
Validity
Not Before: Jan 1 13:07:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e03438d78e534b5e8c166691334ae9696a24a7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:45:43:86:78:6f:5b:b5:42:90:46:e9:d0:9a:
7c:92:0d:ae:ae:51:f8:7b:ba:fb:4c:7a:ea:27:f7:
2d:8e:c4:ea:7e:8b:65:89:fe:e2:8f:5c:c4:63:7b:
27:7c:0d:97:46:78:1d:5e:a2:fe:68:e0:80:ed:85:
a3:b8:ff:b8:d0:dc:3a:92:0d:00:de:0d:68:27:c3:
32:19:5d:f4:63:26:87:41:9b:d1:9a:d5:d3:d1:57:
a3:c6:15:b5:43:9d:b4:3a:1c:18:e7:b3:75:94:00:
90:88:88:69:de:16:93:ac:0a:85:a3:7d:f0:49:b5:
c7:ca:1e:4b:30:9c:cb:40:bc:ca:45:1e:ac:da:f0:
2a:67:ae:3e:8c:e3:b5:ca:e6:e8:07:e8:6c:79:23:
05:6f:49:ee:e9:98:91:21:af:cb:a1:6a:ca:32:97:
dd:c1:d6:b1:7f:92:45:76:d1:0d:88:d8:61:f8:48:
d5:0e:9e:86:dd:0e:fa:4d:5b:6e:5a:91:19:10:30:
26:9a:01:65:19:83:b2:bd:07:92:48:4a:fa:f1:e7:
56:a2:3e:f2:a8:c9:5b:fc:6a:4a:9e:65:93:12:02:
dd:8f:e4:5b:76:b7:8d:ce:eb:a0:56:8c:9d:5d:b3:
5f:f5:b0:28:25:d5:c4:11:78:b3:b9:1d:a0:72:c2:
7c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:03:43:8D:78:E5:34:B5:E8:C1:66:69:13:34:AE:96:96:A2:4A:7A
X509v3 Authority Key Identifier:
keyid:4F:71:7E:25:DE:DF:DD:E1:5B:B5:27:F2:0D:82:88:32:7B:38:8D:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T3F-Jd7f3eFbtSfyDYKIMns4jUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1e68bf-9204-4502-9b7c-0585ccb18c39/1/DgNDjXjlNLXowWZpEzSulpaiSno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1e68bf-9204-4502-9b7c-0585ccb18c39/1/T3F-Jd7f3eFbtSfyDYKIMns4jUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.40.224.0/21
Signature Algorithm: sha256WithRSAEncryption
e7:fc:17:49:68:7e:47:9b:84:72:49:e7:3a:b7:c8:6c:22:82:
55:0b:f0:93:0b:7f:66:9f:d6:5f:34:75:69:c0:56:7a:4b:22:
c0:d6:64:62:89:16:5f:71:b8:a6:9b:16:ec:12:c4:e7:62:55:
9b:1b:67:d6:47:85:db:4b:9a:9c:84:80:13:b7:23:8c:c0:79:
cd:a8:e3:9e:39:da:78:05:51:f4:c4:ac:02:54:85:51:ab:85:
f5:b2:74:05:f5:ac:e8:4a:ed:a5:fe:1e:d5:d3:f3:c3:ea:1c:
1c:bd:17:2f:bb:c2:2f:27:db:61:42:6c:51:34:6a:c8:7b:24:
e7:74:da:1d:94:2e:ec:21:b5:1f:80:98:3c:71:b0:0d:4a:8e:
84:c4:28:a6:52:60:f1:d9:9d:8d:28:ce:c0:9e:e1:90:20:8b:
b3:f3:fc:49:7e:e5:91:a2:63:a8:1b:92:b1:88:c3:1e:ce:2a:
68:68:39:bf:66:65:bf:1d:5e:f9:8c:30:71:dc:ad:aa:8f:07:
e6:17:6b:2f:e3:aa:78:73:16:7a:1b:aa:11:e0:47:2a:2d:2e:
92:57:31:d0:4a:8f:a8:4a:c1:19:78:c1:e7:fb:d6:17:e4:d6:
82:e4:ca:c3:09:24:cf:c1:cd:d8:74:04:f4:4c:86:d1:31:31:
eb:69:9b:c3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBAazozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZjcxN2UyNWRlZGZkZGUxNWJiNTI3ZjIwZDgyODgzMjdiMzg4ZDQwMB4XDTIyMDEw
MTEzMDcxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGUwMzQzOGQ3OGU1
MzRiNWU4YzE2NjY5MTMzNGFlOTY5NmEyNGE3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVFQ4Z4b1u1QpBG6dCafJINrq5R+Hu6+0x66if3LY7E6n6L
ZYn+4o9cxGN7J3wNl0Z4HV6i/mjggO2Fo7j/uNDcOpINAN4NaCfDMhld9GMmh0Gb
0ZrV09FXo8YVtUOdtDocGOezdZQAkIiIad4Wk6wKhaN98Em1x8oeSzCcy0C8ykUe
rNrwKmeuPozjtcrm6AfobHkjBW9J7umYkSGvy6FqyjKX3cHWsX+SRXbRDYjYYfhI
1Q6eht0O+k1bblqRGRAwJpoBZRmDsr0HkkhK+vHnVqI+8qjJW/xqSp5lkxIC3Y/k
W3a3jc7roFaMnV2zX/WwKCXVxBF4s7kdoHLCfBcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQOA0ONeOU0tejBZmkTNK6WlqJKejAfBgNVHSMEGDAWgBRPcX4l3t/d4Vu1
J/INgogyeziNQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1QzRi1KZDdmM2VGYnRTZnlEWUtJTW5zNGpVQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvMWU2OGJmLTkyMDQtNDUwMi05YjdjLTA1ODVjY2IxOGMzOS8x
L0RnTkRqWGpsTkxYb3dXWnBFelN1bHBhaVNuby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
MWU2OGJmLTkyMDQtNDUwMi05YjdjLTA1ODVjY2IxOGMzOS8xL1QzRi1KZDdmM2VG
YnRTZnlEWUtJTW5zNGpVQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA6Qo4DANBgkqhkiG9w0BAQsFAAOC
AQEA5/wXSWh+R5uEcknnOrfIbCKCVQvwkwt/Zp/WXzR1acBWeksiwNZkYokWX3G4
ppsW7BLE52JVmxtn1keF20uanISAE7cjjMB5zajjnjnaeAVR9MSsAlSFUauF9bJ0
BfWs6Ertpf4e1dPzw+ocHL0XL7vCLyfbYUJsUTRqyHsk53TaHZQu7CG1H4CYPHGw
DUqOhMQoplJg8dmdjSjOwJ7hkCCLs/P8SX7lkaJjqBuSsYjDHs4qaGg5v2Zlvx1e
+Ywwcdytqo8H5hdrL+OqeHMWehuqEeBHKi0uklcx0EqPqErBGXjB5/vWF+TWguTK
wwkkz8HN2HQE9EyG0TEx62mbww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org