Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/zQPvmCnCtZTIePjeTszu9txXIhw.roa
File: zQPvmCnCtZTIePjeTszu9txXIhw.roa (raw, json)
Hash identifier: 4ZtYIADheS5MMDtNQ+OmXgslovb0UkhgYLgPBfpEPuA=
Subject key identifier: CD:03:EF:98:29:C2:B5:94:C8:78:F8:DE:4E:CC:EE:F6:DC:57:22:1C
Certificate issuer: /CN=3f1843dcd0a6b36fcad6aa0e26f707c741bd1755
Certificate serial: 11DFD496
Authority key identifier: 3F:18:43:DC:D0:A6:B3:6F:CA:D6:AA:0E:26:F7:07:C7:41:BD:17:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxhD3NCms2_K1qoOJvcHx0G9F1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/zQPvmCnCtZTIePjeTszu9txXIhw.roa
Signing time: Sat 01 Jan 2022 04:02:19 +0000
ROA not before: Sat 01 Jan 2022 04:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57773
IP address blocks: 91.198.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299881622 (0x11dfd496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f1843dcd0a6b36fcad6aa0e26f707c741bd1755
Validity
Not Before: Jan 1 04:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd03ef9829c2b594c878f8de4ecceef6dc57221c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a8:4e:c6:40:52:47:f5:1b:f9:89:a8:51:5a:
cf:51:86:db:a9:62:ab:9b:5b:29:8b:b4:66:54:bd:
f0:28:07:bc:dc:f7:9a:90:63:43:48:c7:d9:ef:fc:
3c:d9:9c:54:8d:f9:9f:2a:a7:59:26:f4:41:70:9b:
94:82:e3:51:13:76:d8:c9:67:66:f7:de:4d:3e:36:
47:9f:c8:c5:04:b0:e6:4d:cc:e7:02:03:7b:a6:dd:
65:25:6b:8f:de:a3:5f:6a:e1:97:a6:a6:5a:94:06:
f4:dd:1c:57:0f:f9:41:30:18:65:86:c2:a7:cc:2c:
5c:c3:1a:c7:85:52:6d:b2:86:18:4a:c5:f6:e0:37:
7b:9f:3e:c9:78:bb:17:c4:aa:20:94:cb:35:3b:2f:
15:95:2a:79:6c:e8:6a:c9:e3:0e:c0:c8:d2:01:de:
2e:3b:31:09:58:a8:b5:06:ca:6e:67:ca:39:9a:0a:
e0:6d:cd:5a:88:92:e9:d7:58:70:27:2c:db:99:9a:
90:96:f7:b1:09:cc:3a:50:7a:98:87:bd:b3:c1:cf:
70:7a:48:a7:0d:62:7a:a6:c0:e1:5d:29:46:09:db:
bc:14:80:81:eb:a7:2b:61:cf:b1:6e:68:ca:08:17:
75:15:38:99:6f:b7:27:f0:f4:71:6d:f9:d5:ae:6b:
f6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:03:EF:98:29:C2:B5:94:C8:78:F8:DE:4E:CC:EE:F6:DC:57:22:1C
X509v3 Authority Key Identifier:
keyid:3F:18:43:DC:D0:A6:B3:6F:CA:D6:AA:0E:26:F7:07:C7:41:BD:17:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxhD3NCms2_K1qoOJvcHx0G9F1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/zQPvmCnCtZTIePjeTszu9txXIhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/PxhD3NCms2_K1qoOJvcHx0G9F1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.135.0/24
Signature Algorithm: sha256WithRSAEncryption
52:de:e4:a2:05:e9:96:ba:49:7f:d3:66:15:71:c1:77:9c:10:
4f:92:7b:a8:23:c6:b3:18:29:0a:5f:22:a6:22:01:9f:b1:e4:
0b:a9:e8:9c:dd:3f:c9:a9:b0:e7:af:c7:09:15:86:f3:82:33:
47:6c:96:c1:b2:aa:eb:b8:72:03:f8:ba:1c:87:f4:9c:67:f1:
26:ff:40:db:5e:d7:13:ac:12:05:65:ae:7a:40:5e:d8:aa:59:
67:35:2c:cf:7a:09:38:9f:9c:54:90:2f:ba:08:88:93:6c:b9:
d8:89:98:31:cc:9b:75:d7:21:80:be:cb:29:51:30:02:92:33:
7d:43:b0:68:9c:0e:ea:5b:5f:16:68:ce:4d:dd:3e:e4:ca:92:
79:9d:87:f7:5b:0d:2d:30:27:70:36:cb:f7:5b:3c:26:60:b5:
ab:b8:4f:c0:61:72:12:b3:e1:eb:a2:84:a1:5f:94:2a:f3:ab:
0e:5f:8f:c0:86:21:e7:3a:e6:2e:ed:72:af:fc:20:ca:c2:e4:
41:b6:08:10:40:e0:38:0c:9f:ce:2e:54:c0:21:b2:27:0d:50:
e3:60:2e:7f:ec:3c:47:02:43:a1:3a:54:25:2b:be:4b:ad:88:
28:fa:dc:be:56:b8:ac:50:3a:43:71:32:ba:62:56:9f:61:f7:
bf:15:b8:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEd/UljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZjE4NDNkY2QwYTZiMzZmY2FkNmFhMGUyNmY3MDdjNzQxYmQxNzU1MB4XDTIyMDEw
MTA0MDIxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2QwM2VmOTgyOWMy
YjU5NGM4NzhmOGRlNGVjY2VlZjZkYzU3MjIxYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANWoTsZAUkf1G/mJqFFaz1GG26liq5tbKYu0ZlS98CgHvNz3
mpBjQ0jH2e/8PNmcVI35nyqnWSb0QXCblILjURN22MlnZvfeTT42R5/IxQSw5k3M
5wIDe6bdZSVrj96jX2rhl6amWpQG9N0cVw/5QTAYZYbCp8wsXMMax4VSbbKGGErF
9uA3e58+yXi7F8SqIJTLNTsvFZUqeWzoasnjDsDI0gHeLjsxCViotQbKbmfKOZoK
4G3NWoiS6ddYcCcs25makJb3sQnMOlB6mIe9s8HPcHpIpw1ieqbA4V0pRgnbvBSA
geunK2HPsW5oyggXdRU4mW+3J/D0cW351a5r9nECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTNA++YKcK1lMh4+N5OzO723FciHDAfBgNVHSMEGDAWgBQ/GEPc0Kazb8rW
qg4m9wfHQb0XVTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1B4aEQzTkNtczJfSzFxb09KdmNIeDBHOUYxVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvZjJlZDNkLTk3ZjYtNGExMC05MDEwLTZhZmYwNmQzNjhlOS8x
L3pRUHZtQ25DdFpUSWVQamVUc3p1OXR4WElody5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
ZjJlZDNkLTk3ZjYtNGExMC05MDEwLTZhZmYwNmQzNjhlOS8xL1B4aEQzTkNtczJf
SzFxb09KdmNIeDBHOUYxVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvGhzANBgkqhkiG9w0BAQsFAAOC
AQEAUt7kogXplrpJf9NmFXHBd5wQT5J7qCPGsxgpCl8ipiIBn7HkC6nonN0/yamw
56/HCRWG84IzR2yWwbKq67hyA/i6HIf0nGfxJv9A217XE6wSBWWuekBe2KpZZzUs
z3oJOJ+cVJAvugiIk2y52ImYMcybddchgL7LKVEwApIzfUOwaJwO6ltfFmjOTd0+
5MqSeZ2H91sNLTAncDbL91s8JmC1q7hPwGFyErPh66KEoV+UKvOrDl+PwIYh5zrm
Lu1yr/wgysLkQbYIEEDgOAyfzi5UwCGyJw1Q42Auf+w8RwJDoTpUJSu+S62IKPrc
vla4rFA6Q3EyumJWn2H3vxW43A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:32 2024 by rpki-client on console-fra.rpki-client.org