Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/X4dClaMOdOvvs50T6S7Cd8CnRps.roa
File: X4dClaMOdOvvs50T6S7Cd8CnRps.roa (raw, json)
Hash identifier: hyG96VK1oeR+Barj4RYailAEhjjOn9GAW+IMC6fWmBY=
Subject key identifier: 5F:87:42:95:A3:0E:74:EB:EF:B3:9D:13:E9:2E:C2:77:C0:A7:46:9B
Certificate issuer: /CN=23daf57a212bb7f320a2246f97959575d0e68ce3
Certificate serial: 9D3DCA
Authority key identifier: 23:DA:F5:7A:21:2B:B7:F3:20:A2:24:6F:97:95:95:75:D0:E6:8C:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9r1eiErt_MgoiRvl5WVddDmjOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/X4dClaMOdOvvs50T6S7Cd8CnRps.roa
Signing time: Sat 01 Jan 2022 01:00:57 +0000
ROA not before: Sat 01 Jan 2022 01:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 176.116.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10304970 (0x9d3dca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23daf57a212bb7f320a2246f97959575d0e68ce3
Validity
Not Before: Jan 1 01:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f874295a30e74ebefb39d13e92ec277c0a7469b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c6:38:1d:5a:25:6b:d5:eb:81:91:4e:61:2b:
14:df:34:fc:88:a1:3e:8e:f6:69:5f:d5:ce:94:bd:
ce:6d:cc:3a:e0:3c:e9:1a:87:76:cd:a7:fa:4a:3c:
aa:13:31:07:b3:a7:30:f5:4a:54:bd:59:a4:6a:d1:
ed:92:fc:70:2d:2e:91:56:c8:3b:ad:f8:63:90:d2:
92:89:dd:d6:fc:a3:05:80:71:a4:06:2e:12:8a:97:
a2:de:ae:8f:02:c1:df:d8:f2:71:75:8f:8d:cd:09:
ce:f4:3b:11:8f:82:9d:44:ef:85:fe:c1:39:c8:08:
a5:bc:8e:98:b6:b2:50:e4:4b:fe:31:ab:9f:02:5b:
84:b4:87:77:3b:c8:fb:15:c6:41:a3:06:79:89:39:
62:29:ac:8a:28:3b:51:ef:ce:14:5a:86:30:27:37:
89:68:6f:c1:2e:d5:ee:a8:cf:e9:28:f8:31:65:d9:
53:ef:59:b5:24:a1:8d:8b:44:fc:14:6f:99:ed:3e:
0e:3f:47:49:ea:ab:5f:a1:b7:bb:55:f3:e0:de:7e:
5e:6a:f4:d4:e0:8c:c3:27:54:76:d4:c4:c0:c0:38:
9a:32:45:bb:41:11:d4:24:87:0b:69:1e:1e:64:fd:
20:c4:ee:33:04:42:0e:1c:88:3b:ad:a2:29:35:e2:
6e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:87:42:95:A3:0E:74:EB:EF:B3:9D:13:E9:2E:C2:77:C0:A7:46:9B
X509v3 Authority Key Identifier:
keyid:23:DA:F5:7A:21:2B:B7:F3:20:A2:24:6F:97:95:95:75:D0:E6:8C:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9r1eiErt_MgoiRvl5WVddDmjOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/X4dClaMOdOvvs50T6S7Cd8CnRps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/I9r1eiErt_MgoiRvl5WVddDmjOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.31.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:f8:88:93:a6:8f:0a:26:51:f0:e8:11:20:09:31:32:7d:4d:
30:37:fa:3a:f1:72:7a:85:5f:37:70:c3:06:5b:20:a1:84:13:
4c:96:44:8a:9d:49:a2:a1:3e:0c:db:87:57:2a:f9:50:2b:9f:
77:45:f9:20:93:bf:ce:f3:a2:2a:e7:00:ed:9c:35:f8:c6:83:
11:0d:06:91:d9:c8:f1:2b:b2:05:37:52:27:71:f6:81:56:e3:
39:ab:38:a0:c0:dd:b7:3a:9a:ce:4c:ed:2d:21:88:44:39:48:
e3:66:a4:c8:10:e6:44:b7:cb:6d:4c:e8:aa:3a:95:b0:a6:83:
93:20:a0:7f:c9:61:96:73:82:6c:1a:97:ad:d7:b6:08:c3:de:
16:7f:07:1d:b4:dd:85:3f:10:8f:2a:00:ed:7b:bf:e2:b3:a2:
8a:6a:52:28:eb:e7:17:90:d1:ad:6b:90:7b:21:02:68:4c:ab:
08:72:14:35:b0:dd:8b:f1:a0:ad:a2:86:ec:44:e0:1b:80:3c:
79:99:bc:d2:d9:58:55:b9:2e:02:b2:a2:2a:c8:eb:8d:29:d6:
af:ca:3e:ca:e8:34:7e:f9:65:f3:55:42:86:bf:0c:0f:fc:b5:
f7:31:db:13:1d:bb:c8:5c:0b:aa:35:08:b3:4f:6e:de:8b:04:
27:a8:43:bd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJ09yjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
M2RhZjU3YTIxMmJiN2YzMjBhMjI0NmY5Nzk1OTU3NWQwZTY4Y2UzMB4XDTIyMDEw
MTAxMDA1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWY4NzQyOTVhMzBl
NzRlYmVmYjM5ZDEzZTkyZWMyNzdjMGE3NDY5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALrGOB1aJWvV64GRTmErFN80/IihPo72aV/VzpS9zm3MOuA8
6RqHds2n+ko8qhMxB7OnMPVKVL1ZpGrR7ZL8cC0ukVbIO634Y5DSkond1vyjBYBx
pAYuEoqXot6ujwLB39jycXWPjc0JzvQ7EY+CnUTvhf7BOcgIpbyOmLayUORL/jGr
nwJbhLSHdzvI+xXGQaMGeYk5Yimsiig7Ue/OFFqGMCc3iWhvwS7V7qjP6Sj4MWXZ
U+9ZtSShjYtE/BRvme0+Dj9HSeqrX6G3u1Xz4N5+Xmr01OCMwydUdtTEwMA4mjJF
u0ER1CSHC2keHmT9IMTuMwRCDhyIO62iKTXibq0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRfh0KVow506++znRPpLsJ3wKdGmzAfBgNVHSMEGDAWgBQj2vV6ISu38yCi
JG+XlZV10OaM4zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0k5cjFlaUVydF9NZ29pUnZsNVdWZGREbWpPTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjgvZjdjNGYxLTM0MWEtNDQ1ZS04ZTMzLTUwY2I4ODI3NmFlNi8x
L1g0ZENsYU1PZE92dnM1MFQ2UzdDZDhDblJwcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjgv
ZjdjNGYxLTM0MWEtNDQ1ZS04ZTMzLTUwY2I4ODI3NmFlNi8xL0k5cjFlaUVydF9N
Z29pUnZsNVdWZGREbWpPTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALB0HzANBgkqhkiG9w0BAQsFAAOC
AQEA4fiIk6aPCiZR8OgRIAkxMn1NMDf6OvFyeoVfN3DDBlsgoYQTTJZEip1JoqE+
DNuHVyr5UCufd0X5IJO/zvOiKucA7Zw1+MaDEQ0GkdnI8SuyBTdSJ3H2gVbjOas4
oMDdtzqazkztLSGIRDlI42akyBDmRLfLbUzoqjqVsKaDkyCgf8lhlnOCbBqXrde2
CMPeFn8HHbTdhT8QjyoA7Xu/4rOiimpSKOvnF5DRrWuQeyECaEyrCHIUNbDdi/Gg
raKG7ETgG4A8eZm80tlYVbkuArKiKsjrjSnWr8o+yug0fvll81VChr8MD/y19zHb
Ex27yFwLqjUIs09u3osEJ6hDvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:16 2024 by rpki-client on console-fra.rpki-client.org