Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/372303-24c5-4a5c-b35d-b463c0613520/1/CQbCs7wtDeOTLBaHHmMt_SAiltw.roa
File: CQbCs7wtDeOTLBaHHmMt_SAiltw.roa (raw, json)
Hash identifier: smeaFYRS/AC1EW06B+wGLLJY+KbTiaVQVKxVuUOPRGc=
Subject key identifier: 09:06:C2:B3:BC:2D:0D:E3:93:2C:16:87:1E:63:2D:FD:20:22:96:DC
Certificate issuer: /CN=7bf3ca6ce49a412eb3b0d4270731b8256c36560d
Certificate serial: 0290767F
Authority key identifier: 7B:F3:CA:6C:E4:9A:41:2E:B3:B0:D4:27:07:31:B8:25:6C:36:56:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e_PKbOSaQS6zsNQnBzG4JWw2Vg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/372303-24c5-4a5c-b35d-b463c0613520/1/CQbCs7wtDeOTLBaHHmMt_SAiltw.roa
Signing time: Sat 01 Jan 2022 07:58:14 +0000
ROA not before: Sat 01 Jan 2022 07:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206766
IP address blocks: 185.255.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43021951 (0x290767f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bf3ca6ce49a412eb3b0d4270731b8256c36560d
Validity
Not Before: Jan 1 07:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0906c2b3bc2d0de3932c16871e632dfd202296dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ed:a3:3d:71:97:cf:b3:0d:9e:07:f0:1a:db:
b5:01:e4:7d:e4:13:e4:3c:9a:af:dd:a1:c0:f8:b5:
da:0d:e7:df:6e:68:f8:7a:5a:bd:5e:29:52:88:f5:
51:a4:6f:c9:d4:a9:17:e1:1b:ae:9a:dc:eb:10:8e:
49:0f:13:31:02:75:bc:f9:83:aa:8f:20:d6:7f:96:
4a:59:e0:fe:e7:38:a4:9b:00:e5:3a:19:48:f3:22:
b0:ba:49:73:27:41:9e:0d:83:9d:01:bf:07:b2:4f:
d8:ac:66:53:0a:09:de:a8:b1:5a:4e:90:66:14:de:
aa:75:a1:82:f3:63:33:92:19:1d:a2:3c:33:06:7c:
0a:25:12:6b:ac:50:ab:39:18:1c:5b:30:8d:15:29:
b8:bd:ba:3a:d6:fd:ca:e0:c2:8e:5b:ac:6c:3b:bd:
d0:3d:69:65:4d:81:39:ca:ec:48:c9:e4:06:5f:bd:
4d:35:29:13:62:70:1b:8e:f6:f3:38:06:04:27:6e:
32:1a:36:26:9a:fe:64:f5:ea:5a:7a:07:5f:26:b2:
8c:10:d7:8c:86:96:49:7c:36:7d:27:8c:b4:a9:49:
66:c6:d1:62:fc:7b:7a:a7:44:25:08:5c:dd:c2:81:
e4:6f:4a:59:85:93:44:9d:95:ed:a7:46:3c:aa:59:
5e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:06:C2:B3:BC:2D:0D:E3:93:2C:16:87:1E:63:2D:FD:20:22:96:DC
X509v3 Authority Key Identifier:
keyid:7B:F3:CA:6C:E4:9A:41:2E:B3:B0:D4:27:07:31:B8:25:6C:36:56:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e_PKbOSaQS6zsNQnBzG4JWw2Vg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/372303-24c5-4a5c-b35d-b463c0613520/1/CQbCs7wtDeOTLBaHHmMt_SAiltw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/372303-24c5-4a5c-b35d-b463c0613520/1/e_PKbOSaQS6zsNQnBzG4JWw2Vg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.30.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d6:d0:20:ef:a9:23:cb:39:df:00:8e:80:1b:3d:58:87:d1:
36:c9:72:77:df:ea:41:c1:c7:c7:0f:3d:fc:45:a1:15:82:11:
f1:1c:d8:3f:76:9b:e9:ef:50:71:d6:27:bb:85:de:c9:a0:32:
aa:03:b8:20:8f:27:e0:ef:6d:a9:59:59:48:6c:a7:20:eb:5d:
61:c7:af:20:75:85:20:32:b8:1e:bf:f7:d7:eb:37:ce:19:c3:
40:65:f6:0c:67:e5:f4:4f:af:8b:20:18:1e:cb:b2:02:51:13:
d9:e8:31:9c:b5:1d:8c:a0:5c:cb:05:78:83:88:76:06:f3:8f:
ff:55:44:b1:32:5c:b0:ed:f8:85:ee:5a:d6:59:b4:06:81:1f:
dd:95:d9:16:1a:07:a5:9d:cf:0b:a9:cc:41:83:e8:c3:65:a9:
ad:99:a7:c3:e5:d4:33:6a:b7:d5:2e:e3:c8:be:a3:40:be:80:
f2:4a:55:0a:fb:ab:4f:3f:46:11:db:68:02:8f:1d:0b:81:7b:
5a:cd:b1:6d:c7:d3:98:69:a3:6c:2e:a5:35:18:4e:74:f0:b3:
f7:4d:30:7e:13:e9:8f:52:74:d3:32:58:0f:c4:e4:a3:eb:e1:
c3:9a:ee:d8:69:50:0f:64:7b:f5:12:06:ee:8f:9d:af:5b:c6:
15:f6:33:b6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEApB2fzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YmYzY2E2Y2U0OWE0MTJlYjNiMGQ0MjcwNzMxYjgyNTZjMzY1NjBkMB4XDTIyMDEw
MTA3NTgxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDkwNmMyYjNiYzJk
MGRlMzkzMmMxNjg3MWU2MzJkZmQyMDIyOTZkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI7toz1xl8+zDZ4H8BrbtQHkfeQT5Dyar92hwPi12g3n325o
+HpavV4pUoj1UaRvydSpF+Ebrprc6xCOSQ8TMQJ1vPmDqo8g1n+WSlng/uc4pJsA
5ToZSPMisLpJcydBng2DnQG/B7JP2KxmUwoJ3qixWk6QZhTeqnWhgvNjM5IZHaI8
MwZ8CiUSa6xQqzkYHFswjRUpuL26Otb9yuDCjlusbDu90D1pZU2BOcrsSMnkBl+9
TTUpE2JwG4728zgGBCduMho2Jpr+ZPXqWnoHXyayjBDXjIaWSXw2fSeMtKlJZsbR
Yvx7eqdEJQhc3cKB5G9KWYWTRJ2V7adGPKpZXhkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQJBsKzvC0N45MsFoceYy39ICKW3DAfBgNVHSMEGDAWgBR788ps5JpBLrOw
1CcHMbglbDZWDTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VfUEtiT1NhUVM2enNOUW5Cekc0Sld3MlZnMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvMzcyMzAzLTI0YzUtNGE1Yy1iMzVkLWI0NjNjMDYxMzUyMC8x
L0NRYkNzN3d0RGVPVExCYUhIbU10X1NBaWx0dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
MzcyMzAzLTI0YzUtNGE1Yy1iMzVkLWI0NjNjMDYxMzUyMC8xL2VfUEtiT1NhUVM2
enNOUW5Cekc0Sld3MlZnMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALn/HjANBgkqhkiG9w0BAQsFAAOC
AQEAaNbQIO+pI8s53wCOgBs9WIfRNslyd9/qQcHHxw89/EWhFYIR8RzYP3ab6e9Q
cdYnu4XeyaAyqgO4II8n4O9tqVlZSGynIOtdYcevIHWFIDK4Hr/31+s3zhnDQGX2
DGfl9E+viyAYHsuyAlET2egxnLUdjKBcywV4g4h2BvOP/1VEsTJcsO34he5a1lm0
BoEf3ZXZFhoHpZ3PC6nMQYPow2WprZmnw+XUM2q31S7jyL6jQL6A8kpVCvurTz9G
EdtoAo8dC4F7Ws2xbcfTmGmjbC6lNRhOdPCz900wfhPpj1J00zJYD8Tko+vhw5ru
2GlQD2R79RIG7o+dr1vGFfYztg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net