Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/ytnEugNoXxHncramz_jRWJTrmWc.roa
File: ytnEugNoXxHncramz_jRWJTrmWc.roa (raw, json)
Hash identifier: z3x9Kjga5Vi8cjGD2zwZaKx+ZYc3vBD2Y/XlkNFdAxw=
Subject key identifier: CA:D9:C4:BA:03:68:5F:11:E7:72:B6:A6:CF:F8:D1:58:94:EB:99:67
Certificate issuer: /CN=ba051b540188f74aba19a90ab7b5dcc429d47a98
Certificate serial: 013C23BD
Authority key identifier: BA:05:1B:54:01:88:F7:4A:BA:19:A9:0A:B7:B5:DC:C4:29:D4:7A:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ugUbVAGI90q6GakKt7XcxCnUepg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/ytnEugNoXxHncramz_jRWJTrmWc.roa
Signing time: Sat 01 Jan 2022 02:57:21 +0000
ROA not before: Sat 01 Jan 2022 02:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201702
IP address blocks: 87.236.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20718525 (0x13c23bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba051b540188f74aba19a90ab7b5dcc429d47a98
Validity
Not Before: Jan 1 02:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cad9c4ba03685f11e772b6a6cff8d15894eb9967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2c:01:bd:b1:3c:5d:46:07:b5:bc:28:d6:52:
da:c0:b5:9f:2f:08:13:a9:bc:cf:a0:8a:f8:d1:eb:
c1:a1:32:5b:2e:a7:0f:e9:a2:b0:5c:02:ff:aa:21:
07:86:67:f3:f4:bd:30:12:12:7e:f9:5d:99:98:b0:
3b:ea:c2:44:62:bb:12:a2:85:70:59:4b:18:1e:9c:
86:27:81:8f:f2:08:3a:4e:10:b9:92:93:f6:4a:7a:
e3:36:77:4f:77:9d:3b:42:c5:68:df:09:d7:29:94:
6b:7b:39:8a:96:6f:05:d9:1f:bb:07:a5:0d:0e:56:
6a:82:6e:37:5b:ac:cc:7a:b7:52:94:9e:b2:43:33:
55:fa:0a:3f:ab:b2:5b:37:87:5f:1a:2c:ea:cc:2f:
37:4e:df:3c:b8:58:59:fc:f5:56:6c:00:89:b8:e6:
23:c0:ab:14:f6:25:2f:b6:e5:e4:08:d8:0d:94:15:
e1:58:92:6a:57:8f:1d:b6:5b:1a:86:a5:cc:61:a1:
5a:58:f0:2f:5f:e5:84:14:30:d1:fd:eb:56:f2:af:
a1:fd:72:af:ec:9c:5f:22:35:0d:31:d2:96:7e:5d:
39:87:9f:2d:ce:eb:ff:61:c6:76:d1:60:a1:fe:16:
ee:d8:fb:81:4a:5f:fe:1d:89:cc:3c:66:b4:66:24:
8a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D9:C4:BA:03:68:5F:11:E7:72:B6:A6:CF:F8:D1:58:94:EB:99:67
X509v3 Authority Key Identifier:
keyid:BA:05:1B:54:01:88:F7:4A:BA:19:A9:0A:B7:B5:DC:C4:29:D4:7A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ugUbVAGI90q6GakKt7XcxCnUepg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/ytnEugNoXxHncramz_jRWJTrmWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/ugUbVAGI90q6GakKt7XcxCnUepg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.166.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ad:3e:46:a4:bc:7b:a0:b1:6a:6e:c2:2d:b7:42:e4:f2:94:
dc:a9:b0:0f:68:25:53:42:96:98:28:9c:93:de:f8:0b:4e:b4:
80:3e:6e:d0:15:ce:81:e8:a0:64:b0:55:b3:36:81:c0:d9:29:
37:cc:4e:d9:be:a8:47:2e:1d:8a:0c:fc:34:19:35:30:25:8b:
44:75:14:e4:34:75:19:0d:22:7f:f6:06:86:e2:14:7c:c3:a6:
9f:f6:39:fa:b3:3d:43:8d:f5:50:4d:9d:ef:34:d6:94:e0:da:
45:c7:4e:54:a6:94:fe:57:08:0d:a5:16:48:ec:2f:8d:70:88:
d2:52:f8:5c:c0:9a:4e:c5:41:bd:31:37:fe:bc:af:34:76:2b:
f9:9d:73:61:03:5e:96:31:25:2e:71:db:6f:bc:9e:72:76:3a:
34:dc:fe:41:e7:09:84:8a:0b:b2:4f:a7:ff:38:33:54:25:d3:
6d:80:2f:28:b2:66:c3:f6:97:8a:9d:e3:f2:82:f4:3b:6d:bd:
c7:5b:5b:56:e9:31:d4:64:e0:01:76:59:9d:86:f3:8d:2f:6f:
99:d9:fc:6a:44:b0:1a:2a:73:39:2e:64:09:0a:cd:1c:e3:49:
8d:c0:f0:93:71:e5:38:3a:97:eb:a9:cc:06:90:fb:76:be:3c:
85:38:a7:c5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEATwjvTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YTA1MWI1NDAxODhmNzRhYmExOWE5MGFiN2I1ZGNjNDI5ZDQ3YTk4MB4XDTIyMDEw
MTAyNTcyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2FkOWM0YmEwMzY4
NWYxMWU3NzJiNmE2Y2ZmOGQxNTg5NGViOTk2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKYsAb2xPF1GB7W8KNZS2sC1ny8IE6m8z6CK+NHrwaEyWy6n
D+misFwC/6ohB4Zn8/S9MBISfvldmZiwO+rCRGK7EqKFcFlLGB6chieBj/IIOk4Q
uZKT9kp64zZ3T3edO0LFaN8J1ymUa3s5ipZvBdkfuwelDQ5WaoJuN1uszHq3UpSe
skMzVfoKP6uyWzeHXxos6swvN07fPLhYWfz1VmwAibjmI8CrFPYlL7bl5AjYDZQV
4ViSalePHbZbGoalzGGhWljwL1/lhBQw0f3rVvKvof1yr+ycXyI1DTHSln5dOYef
Lc7r/2HGdtFgof4W7tj7gUpf/h2JzDxmtGYkinMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTK2cS6A2hfEedytqbP+NFYlOuZZzAfBgNVHSMEGDAWgBS6BRtUAYj3SroZ
qQq3tdzEKdR6mDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VnVWJWQUdJOTBxNkdha0t0N1hjeENuVWVwZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjIvOTg2ZDZjLTlhNDQtNGVlMS05MjFjLTMwYmZlZDJhNzE5Yy8x
L3l0bkV1Z05vWHhIbmNyYW16X2pSV0pUcm1XYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIv
OTg2ZDZjLTlhNDQtNGVlMS05MjFjLTMwYmZlZDJhNzE5Yy8xL3VnVWJWQUdJOTBx
Nkdha0t0N1hjeENuVWVwZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFfspjANBgkqhkiG9w0BAQsFAAOC
AQEAIK0+RqS8e6Cxam7CLbdC5PKU3KmwD2glU0KWmCick974C060gD5u0BXOgeig
ZLBVszaBwNkpN8xO2b6oRy4digz8NBk1MCWLRHUU5DR1GQ0if/YGhuIUfMOmn/Y5
+rM9Q431UE2d7zTWlODaRcdOVKaU/lcIDaUWSOwvjXCI0lL4XMCaTsVBvTE3/ryv
NHYr+Z1zYQNeljElLnHbb7yecnY6NNz+QecJhIoLsk+n/zgzVCXTbYAvKLJmw/aX
ip3j8oL0O229x1tbVukx1GTgAXZZnYbzjS9vmdn8akSwGipzOS5kCQrNHONJjcDw
k3HlODqX66nMBpD7dr48hTinxQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net