Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/rhYRA6yd-rTMrIpU2YgglqhJ3MI.roa
File: rhYRA6yd-rTMrIpU2YgglqhJ3MI.roa (raw, json)
Hash identifier: bYVar7JS9LPc/IhXgMiiOqAeoLvzi3QwdmqUfNfWOpk=
Subject key identifier: AE:16:11:03:AC:9D:FA:B4:CC:AC:8A:54:D9:88:20:96:A8:49:DC:C2
Certificate issuer: /CN=721deb13a3d93b7df66abed3c7987717aceb3cc9
Certificate serial: 01831CCD5A17EA2705A1A147E21D7369A914
Authority key identifier: 72:1D:EB:13:A3:D9:3B:7D:F6:6A:BE:D3:C7:98:77:17:AC:EB:3C:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ch3rE6PZO332ar7Tx5h3F6zrPMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/rhYRA6yd-rTMrIpU2YgglqhJ3MI.roa
Signing time: Thu 08 Sep 2022 11:12:43 +0000
ROA not before: Thu 08 Sep 2022 11:12:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 212.52.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:cd:5a:17:ea:27:05:a1:a1:47:e2:1d:73:69:a9:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721deb13a3d93b7df66abed3c7987717aceb3cc9
Validity
Not Before: Sep 8 11:12:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae161103ac9dfab4ccac8a54d9882096a849dcc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0f:1b:6b:fa:e2:e9:8c:a2:5e:e5:26:8b:a3:
35:f9:29:83:b6:53:b4:b8:f9:1e:6d:68:c5:69:f0:
2a:d4:c5:d4:20:8d:32:91:61:08:92:64:82:1f:8c:
1b:89:97:8d:d8:33:22:02:05:3c:91:b7:db:e5:48:
40:31:be:32:ec:3f:e5:57:b8:06:4d:bc:b0:54:6b:
c0:8e:02:78:f0:ca:22:e5:13:0a:aa:f6:1a:98:cf:
34:59:93:c3:01:b4:be:a7:e2:2c:5b:8e:7b:32:2e:
17:4d:3b:43:10:f2:3f:84:5f:56:84:c1:4b:6a:10:
fa:35:50:8b:79:2a:42:ad:dd:1e:39:f5:f8:de:0c:
e1:99:32:37:20:15:5f:85:58:b0:e4:25:6c:4b:ab:
ed:c5:dc:9c:50:b1:cb:b9:de:2c:49:a2:b2:0a:be:
61:fc:04:dd:ad:f9:97:56:07:9e:23:80:27:d1:4a:
c2:20:95:b3:ac:20:c3:66:d6:01:5b:d7:84:02:0d:
9d:9c:03:ad:f8:ba:32:91:7a:61:8a:e5:da:e9:f1:
82:b7:35:c7:ba:79:2d:64:91:a3:da:15:1d:5f:61:
06:47:3c:98:1d:69:9c:66:17:49:3d:e2:4e:e8:48:
2a:cc:a1:d9:16:dc:ea:1e:1c:d7:ed:a1:49:95:e4:
15:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:16:11:03:AC:9D:FA:B4:CC:AC:8A:54:D9:88:20:96:A8:49:DC:C2
X509v3 Authority Key Identifier:
keyid:72:1D:EB:13:A3:D9:3B:7D:F6:6A:BE:D3:C7:98:77:17:AC:EB:3C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ch3rE6PZO332ar7Tx5h3F6zrPMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/rhYRA6yd-rTMrIpU2YgglqhJ3MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/ch3rE6PZO332ar7Tx5h3F6zrPMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.2.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:8c:21:1d:ce:5c:85:e2:4e:84:89:20:41:b6:03:96:6d:84:
c3:ef:d5:a7:bb:b5:73:91:87:00:49:9a:90:02:aa:b6:58:ac:
c5:dd:7e:6f:3b:54:32:ef:65:46:f9:6f:f2:87:28:d0:03:f5:
3e:14:7e:67:13:14:de:ad:d1:72:6e:4b:b5:11:26:29:d9:3f:
70:f1:16:62:3c:e7:07:dd:bf:0c:cd:db:72:f3:3b:c1:d1:29:
f8:f7:92:b0:d3:0d:c3:72:ad:5b:68:b9:df:4a:3d:f0:ae:3f:
55:9b:d1:71:1f:24:56:33:d5:93:70:83:1f:3b:aa:38:e1:e8:
74:cc:1e:be:6a:4d:a0:c5:ea:62:41:ed:ae:de:d5:ee:b8:8a:
ec:7e:a3:42:24:72:95:70:ce:4a:35:56:70:c5:df:67:ac:e2:
9f:62:a8:d4:51:80:19:49:c6:fe:d8:4a:d4:fc:3f:65:0b:50:
bf:b0:bc:7f:c4:92:d0:14:4a:f2:5d:84:a2:60:e1:3a:ee:55:
0b:55:bd:36:8a:49:41:2f:63:44:d7:3e:14:8c:59:29:c5:48:
af:7f:ed:66:4c:61:ce:10:86:61:62:19:3f:cd:19:b8:eb:cc:
58:9d:40:3d:c1:bf:9b:f6:c5:2c:56:92:91:25:64:6f:d8:30:
ec:9f:7e:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMczVoX6icFoaFH4h1zaakUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMWRlYjEzYTNkOTNiN2RmNjZhYmVkM2M3OTg3NzE3YWNl
YjNjYzkwHhcNMjIwOTA4MTExMjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTE2MTEwM2FjOWRmYWI0Y2NhYzhhNTRkOTg4MjA5NmE4NDlkY2MyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQ8ba/ri6YyiXuUmi6M1+SmDtlO0
uPkebWjFafAq1MXUII0ykWEIkmSCH4wbiZeN2DMiAgU8kbfb5UhAMb4y7D/lV7gG
TbywVGvAjgJ48Moi5RMKqvYamM80WZPDAbS+p+IsW457Mi4XTTtDEPI/hF9WhMFL
ahD6NVCLeSpCrd0eOfX43gzhmTI3IBVfhViw5CVsS6vtxdycULHLud4sSaKyCr5h
/ATdrfmXVgeeI4An0UrCIJWzrCDDZtYBW9eEAg2dnAOt+LoykXphiuXa6fGCtzXH
unktZJGj2hUdX2EGRzyYHWmcZhdJPeJO6EgqzKHZFtzqHhzX7aFJleQVFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK4WEQOsnfq0zKyKVNmIIJaoSdzCMB8GA1UdIwQY
MBaAFHId6xOj2Tt99mq+08eYdxes6zzJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2gzckU2UFpPMzMyYXI3VHg1aDNGNnpyUE1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9hYTM3YjYtYmYxNi00ODM2LWJiOWMt
OTIwOGIwZTJmYTEwLzEvcmhZUkE2eWQtclRNcklwVTJZZ2dscWhKM01JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9hYTM3YjYtYmYxNi00ODM2LWJiOWMtOTIwOGIwZTJmYTEw
LzEvY2gzckU2UFpPMzMyYXI3VHg1aDNGNnpyUE1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1DQCMA0G
CSqGSIb3DQEBCwUAA4IBAQChjCEdzlyF4k6EiSBBtgOWbYTD79Wnu7VzkYcASZqQ
Aqq2WKzF3X5vO1Qy72VG+W/yhyjQA/U+FH5nExTerdFybku1ESYp2T9w8RZiPOcH
3b8Mzdty8zvB0Sn495Kw0w3Dcq1baLnfSj3wrj9Vm9FxHyRWM9WTcIMfO6o44eh0
zB6+ak2gxepiQe2u3tXuuIrsfqNCJHKVcM5KNVZwxd9nrOKfYqjUUYAZScb+2ErU
/D9lC1C/sLx/xJLQFEryXYSiYOE67lULVb02iklBL2NE1z4UjFkpxUivf+1mTGHO
EIZhYhk/zRm468xYnUA9wb+b9sUsVpKRJWRv2DDsn35m
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net