Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/AKbP2HcxqVs2Z-vJgjPkmxKLSwU.roa
File: AKbP2HcxqVs2Z-vJgjPkmxKLSwU.roa (raw, json)
Hash identifier: azj9Jep849gmn/mxVMXnVVgPzcpJeYk0MQEk6I0U4sw=
Subject key identifier: 00:A6:CF:D8:77:31:A9:5B:36:67:EB:C9:82:33:E4:9B:12:8B:4B:05
Certificate issuer: /CN=dc773480eb41fdbc8174d48af09c6b7f089d1349
Certificate serial: 01856D6F7D9BB3FFA44C8A6EDEC6DCFC20A7
Authority key identifier: DC:77:34:80:EB:41:FD:BC:81:74:D4:8A:F0:9C:6B:7F:08:9D:13:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hc0gOtB_byBdNSK8JxrfwidE0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/AKbP2HcxqVs2Z-vJgjPkmxKLSwU.roa
Signing time: Sun 01 Jan 2023 13:05:01 +0000
ROA not before: Sun 01 Jan 2023 13:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204286
IP address blocks: 213.232.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:7d:9b:b3:ff:a4:4c:8a:6e:de:c6:dc:fc:20:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc773480eb41fdbc8174d48af09c6b7f089d1349
Validity
Not Before: Jan 1 13:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00a6cfd87731a95b3667ebc98233e49b128b4b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:00:26:be:95:0e:61:f2:f4:ae:2b:84:5f:c1:
b7:25:98:8d:ef:90:02:ab:5e:92:b1:22:06:37:0e:
d0:27:f8:91:92:62:c8:5c:0f:51:e7:69:5c:2f:3e:
28:46:b1:2f:31:c6:56:20:8e:d3:5e:9b:fa:6c:c5:
f5:cc:bd:3e:40:f3:5b:e5:b3:a1:b3:64:c8:29:68:
ae:49:0a:8a:11:e3:62:d1:a6:cf:a7:23:cc:46:92:
99:4c:5a:e7:f6:af:7c:8a:f6:2d:5c:d8:7b:a4:f4:
2c:af:be:e2:06:d9:50:b8:fc:e4:dd:c0:31:7b:73:
e1:41:71:13:d0:ae:b6:28:66:0b:28:df:8b:a3:44:
52:4e:83:0c:06:77:36:76:63:cf:4e:ba:c4:c0:41:
e5:ee:f4:57:1b:4d:17:79:39:79:70:4f:fb:f4:b9:
3a:6d:95:ed:86:92:e1:71:d8:a9:ec:29:96:be:f7:
3d:b6:03:b7:84:9b:02:7c:c8:d3:a1:1b:62:20:d8:
14:ba:5d:eb:08:2d:c9:1b:0d:cd:42:54:00:63:09:
b6:1f:6b:6e:16:02:20:a5:60:0b:30:2f:6c:7d:f7:
c0:53:ce:11:1d:23:1c:12:50:8a:03:f3:1b:fd:36:
1c:ab:5e:72:9c:3f:3c:2f:16:44:d1:68:96:6c:73:
70:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A6:CF:D8:77:31:A9:5B:36:67:EB:C9:82:33:E4:9B:12:8B:4B:05
X509v3 Authority Key Identifier:
keyid:DC:77:34:80:EB:41:FD:BC:81:74:D4:8A:F0:9C:6B:7F:08:9D:13:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hc0gOtB_byBdNSK8JxrfwidE0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/AKbP2HcxqVs2Z-vJgjPkmxKLSwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/3Hc0gOtB_byBdNSK8JxrfwidE0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:37:0c:80:78:5b:f0:e4:13:8e:00:f7:b1:ab:bb:e2:77:b2:
13:a7:8d:59:f1:03:21:19:dc:08:96:67:d9:59:3b:b6:13:4c:
2b:f2:46:ee:3d:af:f4:ed:7e:27:bd:1b:b8:02:0b:15:56:af:
5b:ee:a5:7f:3c:ae:4c:bf:50:3f:01:a9:a9:4d:8a:52:a9:91:
85:8d:7e:50:5b:1a:2b:e7:9a:22:04:fa:dc:72:bc:08:e1:39:
3f:2e:cd:7e:5e:7d:46:ee:c8:94:9f:ee:98:06:86:a9:28:40:
77:f8:7b:f7:66:7a:c4:99:79:54:ba:9e:7a:34:ab:bf:b5:a3:
49:f6:3f:e1:8f:5f:36:75:88:27:bb:74:95:92:81:28:de:a2:
8b:e7:ab:96:9d:13:db:86:c2:19:1a:f4:29:95:fc:9e:c5:ce:
45:86:3f:ab:7a:bb:29:5d:ec:08:c8:08:62:49:a5:e7:2d:2f:
4f:ba:7c:4d:fc:35:79:db:d8:5c:23:c8:97:0e:90:73:c0:f7:
d3:b4:9b:27:b2:23:2c:12:78:1f:12:13:60:bf:59:3c:1e:84:
1f:c7:7c:f3:85:ab:3b:54:ca:d4:e7:df:74:b4:26:17:37:ea:
97:cd:7b:a5:43:83:42:e6:ca:e6:bb:9e:c6:66:d5:c4:59:cb:
1d:d3:19:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtb32bs/+kTIpu3sbc/CCnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNzczNDgwZWI0MWZkYmM4MTc0ZDQ4YWYwOWM2YjdmMDg5
ZDEzNDkwHhcNMjMwMTAxMTMwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGE2Y2ZkODc3MzFhOTViMzY2N2ViYzk4MjMzZTQ5YjEyOGI0YjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQAmvpUOYfL0riuEX8G3JZiN75AC
q16SsSIGNw7QJ/iRkmLIXA9R52lcLz4oRrEvMcZWII7TXpv6bMX1zL0+QPNb5bOh
s2TIKWiuSQqKEeNi0abPpyPMRpKZTFrn9q98ivYtXNh7pPQsr77iBtlQuPzk3cAx
e3PhQXET0K62KGYLKN+Lo0RSToMMBnc2dmPPTrrEwEHl7vRXG00XeTl5cE/79Lk6
bZXthpLhcdip7CmWvvc9tgO3hJsCfMjToRtiINgUul3rCC3JGw3NQlQAYwm2H2tu
FgIgpWALMC9sfffAU84RHSMcElCKA/Mb/TYcq15ynD88LxZE0WiWbHNwgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFACmz9h3MalbNmfryYIz5JsSi0sFMB8GA1UdIwQY
MBaAFNx3NIDrQf28gXTUivCca38InRNJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0hjMGdPdEJfYnlCZE5TSzhKeHJmd2lkRTBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iOWU5ZmEtYWNjZC00NjFmLWIxODMt
ZWRhNjMwMTBiNzdmLzEvQUtiUDJIY3hxVnMyWi12SmdqUGtteEtMU3dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9iOWU5ZmEtYWNjZC00NjFmLWIxODMtZWRhNjMwMTBiNzdm
LzEvM0hjMGdPdEJfYnlCZE5TSzhKeHJmd2lkRTBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1ejoMA0G
CSqGSIb3DQEBCwUAA4IBAQDPNwyAeFvw5BOOAPexq7vid7ITp41Z8QMhGdwIlmfZ
WTu2E0wr8kbuPa/07X4nvRu4AgsVVq9b7qV/PK5Mv1A/AampTYpSqZGFjX5QWxor
55oiBPrccrwI4Tk/Ls1+Xn1G7siUn+6YBoapKEB3+Hv3ZnrEmXlUup56NKu/taNJ
9j/hj182dYgnu3SVkoEo3qKL56uWnRPbhsIZGvQplfyexc5Fhj+rerspXewIyAhi
SaXnLS9PunxN/DV529hcI8iXDpBzwPfTtJsnsiMsEngfEhNgv1k8HoQfx3zzhas7
VMrU5990tCYXN+qXzXulQ4NC5srmu57GZtXEWcsd0xmy
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:49 2023 by rpki-client on console.sobornost.net