Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b658d69f-19e4-4ad2-a0ff-b6d2dfb1b5a8/dIZKk2lLov68rmgz_iQBQFbr8Uk.roa
File: dIZKk2lLov68rmgz_iQBQFbr8Uk.roa (raw, json)
Hash identifier: aZTLE5eqglJAYPitH4j4kxdodz6NE2M4m3DSTdTeLoI=
Subject key identifier: 74:86:4A:93:69:4B:A2:FE:BC:AE:68:33:FE:24:01:40:56:EB:F1:49
Certificate issuer: /CN=2052abde19d34ba03406289d293a6e8fbb8fa28f
Certificate serial: 07
Authority key identifier: 20:52:AB:DE:19:D3:4B:A0:34:06:28:9D:29:3A:6E:8F:BB:8F:A2:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IFKr3hnTS6A0BiidKTpuj7uPoo8.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b658d69f-19e4-4ad2-a0ff-b6d2dfb1b5a8/dIZKk2lLov68rmgz_iQBQFbr8Uk.roa
Signing time: Tue 06 Dec 2022 14:23:41 +0000
ROA not before: Tue 06 Dec 2022 14:23:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196618
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2052abde19d34ba03406289d293a6e8fbb8fa28f
Validity
Not Before: Dec 6 14:23:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74864A93694BA2FEBCAE6833FE24014056EBF149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:3a:35:16:53:cd:7f:cb:de:17:2f:bb:ce:
04:17:e1:22:6b:77:20:aa:c2:36:bc:aa:f8:53:67:
a8:90:c8:95:65:09:31:b1:59:6c:6b:c1:5f:64:6b:
4d:3e:6e:b0:35:cb:e4:7f:2c:49:47:7d:69:b0:86:
9c:3b:04:d1:0e:fb:3f:05:89:93:bc:8b:34:36:e1:
d7:3c:2b:36:dc:29:61:f8:08:23:d1:ff:69:19:5b:
b5:89:b5:8b:a2:23:64:56:ad:e6:71:a4:d7:76:14:
52:39:7f:47:16:53:0a:2c:c6:ab:84:c9:ce:86:8b:
a2:8b:35:08:c8:04:fa:e5:72:09:f9:8e:be:5b:5d:
c8:e0:1c:b8:10:b7:32:6d:b5:cb:cb:5c:13:c7:e2:
09:a5:5e:85:b8:30:df:98:4a:48:95:94:32:44:1a:
3c:f9:52:9d:d8:22:ef:69:1e:d2:04:0a:df:5f:a7:
28:2a:d0:e3:e0:e9:77:42:23:84:d1:44:6b:bd:ab:
02:ae:4d:fb:cb:4f:dc:fb:cd:03:0f:21:97:71:21:
db:c8:f1:fc:23:62:22:b4:1a:40:a6:5b:79:d0:f3:
5d:ed:f9:06:69:64:23:73:af:0d:80:2b:72:26:94:
7e:1d:f3:4e:70:3e:eb:fa:39:cb:c2:98:58:28:d4:
a6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:86:4A:93:69:4B:A2:FE:BC:AE:68:33:FE:24:01:40:56:EB:F1:49
X509v3 Authority Key Identifier:
keyid:20:52:AB:DE:19:D3:4B:A0:34:06:28:9D:29:3A:6E:8F:BB:8F:A2:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b658d69f-19e4-4ad2-a0ff-b6d2dfb1b5a8/IFKr3hnTS6A0BiidKTpuj7uPoo8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IFKr3hnTS6A0BiidKTpuj7uPoo8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b658d69f-19e4-4ad2-a0ff-b6d2dfb1b5a8/dIZKk2lLov68rmgz_iQBQFbr8Uk.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:91:d5:a3:c7:d7:d0:cb:50:e1:65:c5:5b:7d:89:be:dd:21:
96:65:c7:6c:d5:44:06:93:50:99:60:e5:bf:76:26:f2:b2:9a:
3a:51:c6:18:26:e7:3b:b3:f7:f9:8a:39:5a:96:9d:af:b9:78:
d8:0d:07:c8:21:bc:d4:ff:74:bb:4d:a0:93:fa:b6:a8:7a:1c:
f4:27:15:58:3d:2e:d5:2c:76:9a:6f:e1:cc:0e:cb:e9:fd:32:
64:50:4e:dc:1c:f0:ee:fe:8c:44:1b:6a:8d:8c:04:6b:bd:56:
6f:5a:e5:b6:9b:86:95:34:03:11:c0:7e:55:ab:76:a0:72:76:
ff:14:c6:59:6a:7e:fb:a3:1d:cd:89:82:3d:b1:12:d4:e5:da:
9f:58:7c:35:ec:7b:f3:b0:02:d9:5e:06:11:8f:f7:73:e2:a9:
e6:1e:e9:aa:61:34:40:8f:45:03:df:3a:e1:95:92:78:d4:15:
6d:af:d8:97:f5:58:38:1c:32:31:dc:3e:aa:60:a1:bc:54:71:
38:52:d0:a0:bd:5f:2d:84:5e:a4:f4:00:9d:d7:32:97:c8:4f:
9c:99:aa:c8:a2:d4:34:20:80:04:41:b0:b2:1c:31:f6:96:0c:
8d:76:c8:dc:80:13:fc:e7:ab:13:22:51:d6:c6:d5:a5:02:2a:
77:d9:d1:be
-----BEGIN CERTIFICATE-----
MIIE7DCCA9SgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMDUy
YWJkZTE5ZDM0YmEwMzQwNjI4OWQyOTNhNmU4ZmJiOGZhMjhmMB4XDTIyMTIwNjE0
MjM0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQ4NjRBOTM2OTRCQTJG
RUJDQUU2ODMzRkUyNDAxNDA1NkVCRjE0OTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALQjOjUWU81/y94XL7vOBBfhImt3IKrCNryq+FNnqJDIlWUJMbFZ
bGvBX2RrTT5usDXL5H8sSUd9abCGnDsE0Q77PwWJk7yLNDbh1zwrNtwpYfgII9H/
aRlbtYm1i6IjZFat5nGk13YUUjl/RxZTCizGq4TJzoaLoos1CMgE+uVyCfmOvltd
yOAcuBC3Mm21y8tcE8fiCaVehbgw35hKSJWUMkQaPPlSndgi72ke0gQK31+nKCrQ
4+Dpd0IjhNFEa72rAq5N+8tP3PvNAw8hl3Eh28jx/CNiIrQaQKZbedDzXe35Bmlk
I3OvDYArciaUfh3zTnA+6/o5y8KYWCjUpoMCAwEAAaOCAgkwggIFMB0GA1UdDgQW
BBR0hkqTaUui/ryuaDP+JAFAVuvxSTAfBgNVHSMEGDAWgBQgUqveGdNLoDQGKJ0p
Om6Pu4+ijzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L2I2NThkNjlmLTE5ZTQtNGFkMi1hMGZmLWI2ZDJkZmIxYjVhOC9JRktyM2huVFM2
QTBCaWlkS1RwdWo3dVBvbzguY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcw
AoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9JRkty
M2huVFM2QTBCaWlkS1RwdWo3dVBvbzguY2VyMA4GA1UdDwEB/wQEAwIHgDCBjQYI
KwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9yc3luYy5wYWFzLnJw
a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iNjU4ZDY5Zi0xOWU0LTRhZDItYTBmZi1i
NmQyZGZiMWI1YTgvZElaS2sybExvdjY4cm1nel9pUUJRRmJyOFVrLnJvYTAfBggr
BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJogTANBgkqhkiG9w0BAQsFAAOCAQEA
XJHVo8fX0MtQ4WXFW32Jvt0hlmXHbNVEBpNQmWDlv3Ym8rKaOlHGGCbnO7P3+Yo5
Wpadr7l42A0HyCG81P90u02gk/q2qHoc9CcVWD0u1Sx2mm/hzA7L6f0yZFBO3Bzw
7v6MRBtqjYwEa71Wb1rltpuGlTQDEcB+Vat2oHJ2/xTGWWp++6MdzYmCPbES1OXa
n1h8Nex787AC2V4GEY/3c+Kp5h7pqmE0QI9FA9864ZWSeNQVba/Yl/VYOBwyMdw+
qmChvFRxOFLQoL1fLYRepPQAndcyl8hPnJmqyKLUNCCABEGwshwx9pYMjXbI3IAT
/OerEyJR1sbVpQIqd9nRvg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org