Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hIxACQxmgH1eENNeBfLmu1wpIz4.roa
File: hIxACQxmgH1eENNeBfLmu1wpIz4.roa (raw, json)
Hash identifier: gdu0d5M18cFnS4ZpXSkRP/IqhqrZsmiWfp+JCNkvr4w=
Subject key identifier: 84:8C:40:09:0C:66:80:7D:5E:10:D3:5E:05:F2:E6:BB:5C:29:23:3E
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 04443DAB
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hIxACQxmgH1eENNeBfLmu1wpIz4.roa
Signing time: Sat 01 Jan 2022 00:50:53 +0000
ROA not before: Sat 01 Jan 2022 00:50:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397630
IP address blocks: 85.237.213.0/24 maxlen: 24
185.93.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71581099 (0x4443dab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 1 00:50:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848c40090c66807d5e10d35e05f2e6bb5c29233e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a3:01:eb:96:ac:cf:5a:b5:01:0d:60:74:22:
98:ad:61:91:5c:d0:4b:1e:6e:3c:f8:08:b9:d1:a2:
fb:fb:02:d3:54:81:e2:28:29:11:a4:2d:86:5a:17:
0d:65:3b:d3:9b:76:4b:d2:bd:01:dc:47:1c:c1:9f:
55:98:37:59:cc:be:db:91:64:1f:f8:2d:b3:4d:b0:
f6:22:c0:db:23:c9:54:f9:08:5c:4f:ea:dc:7e:58:
59:3e:33:21:ad:ad:7d:98:43:00:4d:5b:d4:6c:70:
9c:9c:ec:75:17:9f:35:2a:e3:c2:5a:d3:f6:c3:d3:
03:88:aa:9e:e5:95:b7:4a:1a:4f:22:1e:62:24:37:
22:f7:56:31:2a:58:43:c2:76:4e:d9:76:a2:f4:43:
57:55:15:c8:27:e2:1a:11:28:60:50:81:19:73:15:
ce:72:0e:5e:ec:94:09:3b:ed:8a:e5:b3:87:0d:d0:
23:10:92:46:77:ea:c1:80:dc:25:7c:05:c6:9b:16:
c8:08:76:05:26:34:01:2b:31:68:f4:3f:c0:76:cd:
bf:e9:b3:44:d5:8f:1e:7f:85:4b:bf:6e:2e:50:a9:
e8:c9:dd:89:cb:9b:a8:71:21:d4:77:b5:d5:f3:2b:
7d:9a:b4:76:d7:65:31:e9:a0:39:13:f4:a6:8c:a8:
65:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8C:40:09:0C:66:80:7D:5E:10:D3:5E:05:F2:E6:BB:5C:29:23:3E
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hIxACQxmgH1eENNeBfLmu1wpIz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.213.0/24
185.93.32.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d8:2c:f1:67:56:cc:25:33:45:bb:4e:57:ed:e3:3b:5b:23:
bd:05:95:ee:ab:58:65:f0:dd:5b:ba:04:40:04:51:76:6a:ec:
8a:2d:fc:80:14:66:f6:d3:6c:96:63:8d:3c:ad:51:b9:e5:60:
2e:31:01:bf:8e:3d:c0:53:81:56:51:1b:34:4d:ae:a9:ee:d2:
00:30:a7:90:a7:d4:fd:8a:64:f3:c4:77:b8:fb:b3:53:aa:81:
9c:a3:ea:29:d3:1e:13:7d:0e:02:26:21:da:88:47:fc:4c:d3:
d7:da:98:68:7d:d0:e7:1c:aa:63:20:73:a8:1f:ba:c1:b9:5e:
76:56:dc:0e:0f:e8:f6:77:0c:26:cc:4b:1a:ee:93:69:28:df:
ca:83:94:cb:ae:7f:7e:74:e9:ec:8f:8e:ba:ab:f7:8c:7c:4e:
f9:8a:2a:5d:d6:48:38:45:b6:2b:45:19:28:2e:7d:18:c6:49:
98:b4:fb:49:ec:a4:7e:d0:a6:2b:4c:f7:c9:07:a0:6e:ba:a7:
17:e2:e6:5f:71:ba:13:fe:45:20:c3:b8:86:8e:97:9b:40:07:
fb:4e:03:2d:7c:0a:07:6f:6b:3d:4e:b1:99:c1:8a:6d:65:fb:
45:8a:8b:b8:d3:9d:fb:44:73:d2:fc:6c:e5:df:92:e3:94:ab:
93:64:eb:aa
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBEQ9qzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTBiNjczNjhjOTFiODVlODQ4ODhjNWVkMmU4MjRkMTM5MDgxMGJiMB4XDTIyMDEw
MTAwNTA1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQ4YzQwMDkwYzY2
ODA3ZDVlMTBkMzVlMDVmMmU2YmI1YzI5MjMzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKqjAeuWrM9atQENYHQimK1hkVzQSx5uPPgIudGi+/sC01SB
4igpEaQthloXDWU705t2S9K9AdxHHMGfVZg3Wcy+25FkH/gts02w9iLA2yPJVPkI
XE/q3H5YWT4zIa2tfZhDAE1b1GxwnJzsdRefNSrjwlrT9sPTA4iqnuWVt0oaTyIe
YiQ3IvdWMSpYQ8J2Ttl2ovRDV1UVyCfiGhEoYFCBGXMVznIOXuyUCTvtiuWzhw3Q
IxCSRnfqwYDcJXwFxpsWyAh2BSY0ASsxaPQ/wHbNv+mzRNWPHn+FS79uLlCp6Mnd
icubqHEh1He11fMrfZq0dtdlMemgORP0poyoZZUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSEjEAJDGaAfV4Q014F8ua7XCkjPjAfBgNVHSMEGDAWgBQ5C2c2jJG4XoSI
jF7S6CTROQgQuzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09RdG5Ob3lSdUY2RWlJeGUwdWdrMFRrSUVMcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvMTZjY2U0LWU5ODEtNGJlNS1iOWY2LTVjOWQ2MjYyOWM4Ni8x
L2hJeEFDUXhtZ0gxZUVOTmVCZkxtdTF3cEl6NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
MTZjY2U0LWU5ODEtNGJlNS1iOWY2LTVjOWQ2MjYyOWM4Ni8xL09RdG5Ob3lSdUY2
RWlJeGUwdWdrMFRrSUVMcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFXt1QMEALldIDANBgkqhkiG9w0B
AQsFAAOCAQEARdgs8WdWzCUzRbtOV+3jO1sjvQWV7qtYZfDdW7oEQARRdmrsii38
gBRm9tNslmONPK1RueVgLjEBv449wFOBVlEbNE2uqe7SADCnkKfU/Ypk88R3uPuz
U6qBnKPqKdMeE30OAiYh2ohH/EzT19qYaH3Q5xyqYyBzqB+6wbledlbcDg/o9ncM
JsxLGu6TaSjfyoOUy65/fnTp7I+Ouqv3jHxO+YoqXdZIOEW2K0UZKC59GMZJmLT7
SeykftCmK0z3yQegbrqnF+LmX3G6E/5FIMO4ho6Xm0AH+04DLXwKB29rPU6xmcGK
bWX7RYqLuNOd+0Rz0vxs5d+S45Srk2Trqg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:02 2023 by rpki-client on console.sobornost.net