Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/TkehTKBQ5fxelBtd5V8T3vNlnKM.roa
File: TkehTKBQ5fxelBtd5V8T3vNlnKM.roa (raw, json)
Hash identifier: UJlOVCdZX9WeconeqrQ9HwZRjBsMPUufUIbhp0txYOI=
Subject key identifier: 4E:47:A1:4C:A0:50:E5:FC:5E:94:1B:5D:E5:5F:13:DE:F3:65:9C:A3
Certificate issuer: /CN=3b3fff71e59f35063f809fc5eb3af4c419f7bf33
Certificate serial: 0188C7B6C62F292BCCA763F84652BFE6C5CF
Authority key identifier: 3B:3F:FF:71:E5:9F:35:06:3F:80:9F:C5:EB:3A:F4:C4:19:F7:BF:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/TkehTKBQ5fxelBtd5V8T3vNlnKM.roa
Signing time: Sat 17 Jun 2023 04:57:04 +0000
ROA not before: Sat 17 Jun 2023 04:57:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.137.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c7:b6:c6:2f:29:2b:cc:a7:63:f8:46:52:bf:e6:c5:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3fff71e59f35063f809fc5eb3af4c419f7bf33
Validity
Not Before: Jun 17 04:57:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e47a14ca050e5fc5e941b5de55f13def3659ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5e:53:72:2f:c3:86:06:b2:c2:85:4b:74:59:
bb:bf:ba:f6:e5:af:eb:59:65:69:06:7b:af:6d:64:
38:f4:d6:07:f5:80:9d:64:ac:a7:e6:fc:87:17:3c:
15:75:0e:45:7e:39:d8:64:60:46:8c:bf:cb:4e:35:
95:a5:f9:a7:03:83:0a:55:db:2b:f1:3f:c9:0f:f4:
b0:98:26:ec:45:04:28:cc:11:b8:7e:89:ce:66:92:
96:90:bd:6e:08:fc:a7:b5:f6:7b:c9:76:8d:a4:72:
b6:05:1e:24:ce:ba:bc:70:44:f7:15:43:2f:87:7a:
ce:20:28:0d:67:fb:dc:d6:21:4a:42:a2:0c:0d:fb:
53:db:23:0e:33:21:87:6a:b1:92:9c:ae:57:56:18:
b5:63:63:91:51:47:5c:ad:de:9e:b2:15:c7:3d:26:
ff:67:5c:20:c7:b0:26:46:fc:a0:3b:aa:c0:06:b4:
5f:11:44:3b:ba:c7:05:0c:d8:0b:6e:c1:a3:0d:a7:
ca:cc:4f:37:a1:2a:3f:4b:64:02:d8:99:f5:fb:b8:
d2:54:46:c4:2c:dd:af:1e:22:f7:a5:0c:5b:eb:5d:
af:08:74:e0:c5:12:24:ed:41:66:06:41:eb:56:e8:
7f:18:2c:6a:0c:35:f6:32:0f:c6:06:c5:8a:ed:20:
e4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:47:A1:4C:A0:50:E5:FC:5E:94:1B:5D:E5:5F:13:DE:F3:65:9C:A3
X509v3 Authority Key Identifier:
keyid:3B:3F:FF:71:E5:9F:35:06:3F:80:9F:C5:EB:3A:F4:C4:19:F7:BF:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/TkehTKBQ5fxelBtd5V8T3vNlnKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/02c0cf-489d-4fda-9e39-10133232e759/1/Oz__ceWfNQY_gJ_F6zr0xBn3vzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.164.0/24
Signature Algorithm: sha256WithRSAEncryption
12:12:c4:0c:cc:67:79:75:a3:67:c9:ec:9f:b4:83:e2:e8:31:
1a:26:5c:a1:7a:a2:bb:00:e2:1a:57:a1:15:6b:50:4e:c1:a8:
b4:b2:e7:c7:31:ed:fd:4d:48:95:78:6e:ee:0a:30:53:3e:3b:
ae:22:0b:75:78:73:8f:62:73:7c:3a:b7:5e:13:f2:15:4c:3c:
e7:15:1e:ce:bc:95:5d:95:2e:8b:d6:88:9a:9f:c0:98:9d:ac:
45:ef:fa:95:af:0b:6d:8a:28:2a:6a:57:63:64:36:d1:b2:6e:
77:0f:27:d1:3b:66:4d:3a:51:c4:db:44:43:37:32:14:1d:c8:
08:90:b6:40:e2:ab:54:8a:fb:b2:46:96:bb:ac:93:82:f6:4f:
a4:67:f1:8f:2c:a3:e4:37:45:18:b4:98:b9:8e:4a:82:74:bf:
3b:22:18:49:af:38:a3:5b:93:57:2d:2d:ab:6a:40:32:72:dc:
ff:3a:c2:8f:07:51:91:ba:6b:01:8d:9b:47:98:c3:11:66:8c:
1e:38:e5:c5:1a:80:af:98:b2:68:13:a9:e6:33:34:d1:86:7a:
83:73:ab:e3:b4:da:a1:1b:4d:8f:7b:3f:82:96:d4:d8:d2:be:
f5:1c:cd:b6:5e:54:5d:a0:fc:75:30:f4:cb:8a:d5:2c:72:ef:
2a:4f:13:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjHtsYvKSvMp2P4RlK/5sXPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiM2ZmZjcxZTU5ZjM1MDYzZjgwOWZjNWViM2FmNGM0MTlm
N2JmMzMwHhcNMjMwNjE3MDQ1NzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTQ3YTE0Y2EwNTBlNWZjNWU5NDFiNWRlNTVmMTNkZWYzNjU5Y2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmV5Tci/DhgaywoVLdFm7v7r25a/r
WWVpBnuvbWQ49NYH9YCdZKyn5vyHFzwVdQ5FfjnYZGBGjL/LTjWVpfmnA4MKVdsr
8T/JD/SwmCbsRQQozBG4fonOZpKWkL1uCPyntfZ7yXaNpHK2BR4kzrq8cET3FUMv
h3rOICgNZ/vc1iFKQqIMDftT2yMOMyGHarGSnK5XVhi1Y2ORUUdcrd6eshXHPSb/
Z1wgx7AmRvygO6rABrRfEUQ7uscFDNgLbsGjDafKzE83oSo/S2QC2Jn1+7jSVEbE
LN2vHiL3pQxb612vCHTgxRIk7UFmBkHrVuh/GCxqDDX2Mg/GBsWK7SDktQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE5HoUygUOX8XpQbXeVfE97zZZyjMB8GA1UdIwQY
MBaAFDs//3HlnzUGP4Cfxes69MQZ978zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pfX2NlV2ZOUVlfZ0pfRjZ6cjB4Qm4zdnpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8wMmMwY2YtNDg5ZC00ZmRhLTllMzkt
MTAxMzMyMzJlNzU5LzEvVGtlaFRLQlE1ZnhlbEJ0ZDVWOFQzdk5sbktNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8wMmMwY2YtNDg5ZC00ZmRhLTllMzktMTAxMzMyMzJlNzU5
LzEvT3pfX2NlV2ZOUVlfZ0pfRjZ6cjB4Qm4zdnpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYmkMA0G
CSqGSIb3DQEBCwUAA4IBAQASEsQMzGd5daNnyeyftIPi6DEaJlyheqK7AOIaV6EV
a1BOwai0sufHMe39TUiVeG7uCjBTPjuuIgt1eHOPYnN8OrdeE/IVTDznFR7OvJVd
lS6L1oian8CYnaxF7/qVrwttiigqaldjZDbRsm53DyfRO2ZNOlHE20RDNzIUHcgI
kLZA4qtUivuyRpa7rJOC9k+kZ/GPLKPkN0UYtJi5jkqCdL87IhhJrzijW5NXLS2r
akAyctz/OsKPB1GRumsBjZtHmMMRZoweOOXFGoCvmLJoE6nmMzTRhnqDc6vjtNqh
G02Pez+CltTY0r71HM22XlRdoPx1MPTLitUscu8qTxOM
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net