Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/ed251b-7de3-49c4-8e26-7c932c72987e/1/rWvLSRF0rFxBzqVTW3Q0wKOOKZU.roa
File: rWvLSRF0rFxBzqVTW3Q0wKOOKZU.roa (raw, json)
Hash identifier: Sfvj0vXLt6L/J0u3smP8nyB8CU/1k2ATyNDsHVnTwVg=
Subject key identifier: AD:6B:CB:49:11:74:AC:5C:41:CE:A5:53:5B:74:34:C0:A3:8E:29:95
Certificate issuer: /CN=37f695c0b1418d67fb348c2ac634a05fb8156b71
Certificate serial: 0185E3C9958BED7B81EB2148813A13553451
Authority key identifier: 37:F6:95:C0:B1:41:8D:67:FB:34:8C:2A:C6:34:A0:5F:B8:15:6B:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_aVwLFBjWf7NIwqxjSgX7gVa3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/ed251b-7de3-49c4-8e26-7c932c72987e/1/rWvLSRF0rFxBzqVTW3Q0wKOOKZU.roa
Signing time: Tue 24 Jan 2023 12:38:37 +0000
ROA not before: Tue 24 Jan 2023 12:38:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208164
IP address blocks: 194.153.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e3:c9:95:8b:ed:7b:81:eb:21:48:81:3a:13:55:34:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37f695c0b1418d67fb348c2ac634a05fb8156b71
Validity
Not Before: Jan 24 12:38:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad6bcb491174ac5c41cea5535b7434c0a38e2995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:25:e1:b6:92:fa:ad:48:af:67:a3:8a:71:04:
21:bc:ac:2d:d6:87:90:0d:53:61:e6:18:cb:00:ff:
67:43:d8:e1:04:59:a0:2f:f1:cc:0d:0a:b9:c6:ee:
1c:08:6a:29:c1:c7:6c:09:44:b0:91:13:35:81:ef:
31:b2:19:2b:8f:1d:fb:d6:dd:00:f9:dc:54:e4:11:
79:ae:6d:8e:10:24:47:92:83:5c:86:ab:b3:2d:71:
5f:b2:87:71:b4:27:ca:f0:39:0a:65:46:49:83:fa:
a4:9c:f9:37:8a:d1:c0:92:13:9e:cc:1a:f0:6c:3a:
7a:b8:84:41:84:93:66:29:53:6f:91:fb:0b:a6:f7:
00:d2:55:74:69:8f:d5:60:8b:14:b6:eb:88:49:92:
54:b9:9c:07:15:4e:59:7f:6c:0e:d2:95:3d:21:d8:
1a:1e:f0:bb:63:e4:40:67:c2:08:af:99:bb:85:25:
d9:0c:cc:65:80:0d:2a:fe:d5:c8:3d:6f:a7:b3:49:
11:f1:d4:5a:87:ed:08:ca:2b:7d:2a:71:59:2f:d1:
6b:90:a9:e5:1c:39:b9:c0:cb:37:ba:cc:47:3f:4a:
e0:05:48:99:cd:33:68:c8:3b:44:45:ac:ec:7c:3d:
33:68:67:94:9e:05:1a:85:22:bd:f0:bd:61:09:5c:
58:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:6B:CB:49:11:74:AC:5C:41:CE:A5:53:5B:74:34:C0:A3:8E:29:95
X509v3 Authority Key Identifier:
keyid:37:F6:95:C0:B1:41:8D:67:FB:34:8C:2A:C6:34:A0:5F:B8:15:6B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_aVwLFBjWf7NIwqxjSgX7gVa3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ed251b-7de3-49c4-8e26-7c932c72987e/1/rWvLSRF0rFxBzqVTW3Q0wKOOKZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ed251b-7de3-49c4-8e26-7c932c72987e/1/N_aVwLFBjWf7NIwqxjSgX7gVa3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.133.0/24
Signature Algorithm: sha256WithRSAEncryption
19:0c:c6:2e:17:90:9e:bf:f7:5d:42:50:5c:bf:80:d9:18:12:
97:07:ae:db:32:ed:84:83:f4:69:66:48:7c:29:c4:9d:99:ba:
04:bc:ff:6a:46:fa:1b:ed:74:f4:b8:05:0b:6b:e1:6c:84:5c:
b2:b7:c7:6c:d1:54:e3:5d:08:e3:ac:3d:60:80:a0:2a:14:eb:
cf:6a:ae:15:b8:d4:d0:73:b7:2e:1d:d4:70:43:f5:42:33:65:
36:df:3b:55:89:b5:20:c0:15:4f:e7:10:56:6a:2d:7e:6c:8f:
0d:aa:44:30:0b:d8:9a:46:34:c1:5f:f8:5c:83:df:37:5d:f1:
46:33:2f:a7:02:af:67:db:90:5d:ef:8d:1b:76:75:26:d7:e7:
5f:fb:21:44:40:f1:97:2c:92:9d:46:ae:e5:0d:59:79:10:ed:
23:7f:1f:0b:db:fb:60:34:50:7b:05:21:bf:05:29:10:8f:45:
48:ba:39:c0:33:c5:c4:14:0f:84:45:31:a0:ee:e6:b8:86:9b:
2f:95:c2:6e:da:f0:5d:57:a0:52:b6:1c:e8:5a:ec:37:bc:08:
97:e2:fa:3f:cf:6a:1c:38:1a:7b:2a:c9:5d:f0:47:a0:f0:ed:
48:db:31:18:5d:77:56:f7:36:b2:cf:36:dd:e3:c1:76:d5:0a:
ed:86:58:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXjyZWL7XuB6yFIgToTVTRRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3ZjY5NWMwYjE0MThkNjdmYjM0OGMyYWM2MzRhMDVmYjgx
NTZiNzEwHhcNMjMwMTI0MTIzODM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDZiY2I0OTExNzRhYzVjNDFjZWE1NTM1Yjc0MzRjMGEzOGUyOTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlyXhtpL6rUivZ6OKcQQhvKwt1oeQ
DVNh5hjLAP9nQ9jhBFmgL/HMDQq5xu4cCGopwcdsCUSwkRM1ge8xshkrjx371t0A
+dxU5BF5rm2OECRHkoNchquzLXFfsodxtCfK8DkKZUZJg/qknPk3itHAkhOezBrw
bDp6uIRBhJNmKVNvkfsLpvcA0lV0aY/VYIsUtuuISZJUuZwHFU5Zf2wO0pU9Idga
HvC7Y+RAZ8IIr5m7hSXZDMxlgA0q/tXIPW+ns0kR8dRah+0Iyit9KnFZL9FrkKnl
HDm5wMs3usxHP0rgBUiZzTNoyDtERazsfD0zaGeUngUahSK98L1hCVxYEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK1ry0kRdKxcQc6lU1t0NMCjjimVMB8GA1UdIwQY
MBaAFDf2lcCxQY1n+zSMKsY0oF+4FWtxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTl9hVndMRkJqV2Y3Tkl3cXhqU2dYN2dWYTNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lZDI1MWItN2RlMy00OWM0LThlMjYt
N2M5MzJjNzI5ODdlLzEvcld2TFNSRjByRnhCenFWVFczUTB3S09PS1pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9lZDI1MWItN2RlMy00OWM0LThlMjYtN2M5MzJjNzI5ODdl
LzEvTl9hVndMRkJqV2Y3Tkl3cXhqU2dYN2dWYTNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpmFMA0G
CSqGSIb3DQEBCwUAA4IBAQAZDMYuF5Cev/ddQlBcv4DZGBKXB67bMu2Eg/RpZkh8
KcSdmboEvP9qRvob7XT0uAULa+FshFyyt8ds0VTjXQjjrD1ggKAqFOvPaq4VuNTQ
c7cuHdRwQ/VCM2U23ztVibUgwBVP5xBWai1+bI8NqkQwC9iaRjTBX/hcg983XfFG
My+nAq9n25Bd740bdnUm1+df+yFEQPGXLJKdRq7lDVl5EO0jfx8L2/tgNFB7BSG/
BSkQj0VIujnAM8XEFA+ERTGg7ua4hpsvlcJu2vBdV6BSthzoWuw3vAiX4vo/z2oc
OBp7Ksld8Eeg8O1I2zEYXXdW9zayzzbd48F21Qrthlgy
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:30 2023 by rpki-client on console.sobornost.net