Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/a370c1-b2f6-4048-ae6c-8abcc15a999a/1/1-ejkN4R-xjQwwHHOso0a1xseOog.roa
File: 1-ejkN4R-xjQwwHHOso0a1xseOog.roa (raw, json)
Hash identifier: bRRbNA3ldGquCfBg/+X7QdoU4GQHq1fp2pFfeya/MEY=
Subject key identifier: F9:E8:E4:37:84:7E:C6:34:30:C0:71:CE:B2:8D:1A:D7:1B:1E:3A:88
Certificate issuer: /CN=d48c75105a13129d52ea27e251595cbeb0f8a64a
Certificate serial: 07D08180
Authority key identifier: D4:8C:75:10:5A:13:12:9D:52:EA:27:E2:51:59:5C:BE:B0:F8:A6:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ix1EFoTEp1S6ifiUVlcvrD4pko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/a370c1-b2f6-4048-ae6c-8abcc15a999a/1/1-ejkN4R-xjQwwHHOso0a1xseOog.roa
Signing time: Sat 01 Jan 2022 01:59:08 +0000
ROA not before: Sat 01 Jan 2022 01:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43738
IP address blocks: 91.195.138.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131105152 (0x7d08180)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48c75105a13129d52ea27e251595cbeb0f8a64a
Validity
Not Before: Jan 1 01:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9e8e437847ec63430c071ceb28d1ad71b1e3a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1a:74:b1:4a:8c:3c:ae:d1:4d:42:1e:ec:cb:
8d:4a:a7:16:93:01:10:58:4b:c0:d4:b8:26:04:bb:
91:3a:13:4e:4b:60:f6:cf:4e:57:84:5d:6d:9c:75:
cd:b2:a2:c8:6c:f9:ee:bf:fc:dc:38:a2:3d:6e:10:
14:2d:84:40:88:61:e3:3c:61:85:cb:b9:1c:63:eb:
83:69:7a:98:11:de:4b:15:44:67:15:06:0e:55:2c:
30:6d:84:31:9e:95:3b:de:de:e2:8f:46:96:68:1c:
34:ac:a1:e1:46:60:4f:32:04:99:8a:e9:07:2a:c2:
74:2a:16:25:13:a9:ab:8d:74:87:ed:2b:79:95:92:
c2:79:8a:81:23:12:3b:fa:ee:7f:7d:71:a4:e1:a7:
9d:cb:4d:23:e3:dc:b3:55:f5:11:61:76:19:73:6b:
fc:9a:3b:a9:5a:2c:7c:25:ac:64:f6:f3:80:1b:8a:
42:a5:5b:7a:70:69:f7:0a:65:59:12:d1:56:d2:22:
db:a2:73:90:81:1f:40:50:ed:27:22:19:b2:25:b9:
9c:00:66:b4:8c:2b:d0:78:41:a6:72:bf:12:cc:c2:
e4:b3:aa:7e:93:af:69:68:f3:7a:2c:f7:85:ff:a2:
d0:37:51:65:0b:d7:7b:e5:1b:ca:4c:17:60:ec:03:
df:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E8:E4:37:84:7E:C6:34:30:C0:71:CE:B2:8D:1A:D7:1B:1E:3A:88
X509v3 Authority Key Identifier:
keyid:D4:8C:75:10:5A:13:12:9D:52:EA:27:E2:51:59:5C:BE:B0:F8:A6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ix1EFoTEp1S6ifiUVlcvrD4pko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a370c1-b2f6-4048-ae6c-8abcc15a999a/1/1-ejkN4R-xjQwwHHOso0a1xseOog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a370c1-b2f6-4048-ae6c-8abcc15a999a/1/1Ix1EFoTEp1S6ifiUVlcvrD4pko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.138.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:45:fe:7f:6e:ce:da:0b:dd:e5:af:87:ad:ed:ff:da:90:65:
61:ac:7f:e5:a5:ab:1d:b1:56:b9:3b:eb:de:f4:8c:88:06:fe:
b5:93:d5:3f:90:07:21:ce:f1:e7:86:64:e0:c2:0f:e0:5a:12:
97:80:b5:5a:65:18:2a:1a:88:6b:cc:1a:58:a0:d0:72:01:90:
7d:50:7e:08:60:16:39:66:1c:17:c4:5b:12:4c:74:ea:29:39:
e8:26:e8:9c:3f:04:30:f6:2a:ed:2b:39:47:a3:70:22:af:97:
12:68:3f:9c:ca:ff:c8:9d:46:9f:52:6b:50:a0:82:20:52:4e:
04:26:d2:a4:69:f3:06:07:b8:08:01:a0:e8:fe:cc:dd:98:8d:
88:f2:26:1e:78:81:32:94:9a:6c:d6:99:bc:11:27:11:58:d5:
b5:98:4b:e0:b8:a8:2d:a9:d9:14:d7:61:8e:92:2c:50:d7:0c:
bf:c3:21:dc:6f:32:da:34:53:25:d2:c4:30:18:f3:07:2c:77:
c5:90:0e:d0:d3:f5:17:a4:8d:fc:4c:b0:de:6e:1d:b5:d6:65:
43:ca:ee:cc:93:96:37:9d:aa:aa:a0:e4:50:db:65:99:bc:51:
1d:b0:8d:31:80:b1:12:4c:be:ff:0d:c1:b5:1f:95:d7:d4:d3:
3e:c0:51:b0
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEB9CBgDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDhjNzUxMDVhMTMxMjlkNTJlYTI3ZTI1MTU5NWNiZWIwZjhhNjRhMB4XDTIyMDEw
MTAxNTkwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjllOGU0Mzc4NDdl
YzYzNDMwYzA3MWNlYjI4ZDFhZDcxYjFlM2E4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKoadLFKjDyu0U1CHuzLjUqnFpMBEFhLwNS4JgS7kToTTktg
9s9OV4RdbZx1zbKiyGz57r/83DiiPW4QFC2EQIhh4zxhhcu5HGPrg2l6mBHeSxVE
ZxUGDlUsMG2EMZ6VO97e4o9GlmgcNKyh4UZgTzIEmYrpByrCdCoWJROpq410h+0r
eZWSwnmKgSMSO/ruf31xpOGnnctNI+Pcs1X1EWF2GXNr/Jo7qVosfCWsZPbzgBuK
QqVbenBp9wplWRLRVtIi26JzkIEfQFDtJyIZsiW5nABmtIwr0HhBpnK/EszC5LOq
fpOvaWjzeiz3hf+i0DdRZQvXe+UbykwXYOwD368CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT56OQ3hH7GNDDAcc6yjRrXGx46iDAfBgNVHSMEGDAWgBTUjHUQWhMSnVLq
J+JRWVy+sPimSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFJeDFFRm9URXAxUzZpZmlVVmxjdnJENHBrby5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvYTM3MGMxLWIyZjYtNDA0OC1hZTZjLThhYmNjMTVhOTk5YS8x
LzEtZWprTjRSLXhqUXd3SEhPc28wYTF4c2VPb2cucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAz
L2EzNzBjMS1iMmY2LTQwNDgtYWU2Yy04YWJjYzE1YTk5OWEvMS8xSXgxRUZvVEVw
MVM2aWZpVVZsY3ZyRDRwa28uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFbw4owDQYJKoZIhvcNAQELBQAD
ggEBAKBF/n9uztoL3eWvh63t/9qQZWGsf+Wlqx2xVrk76970jIgG/rWT1T+QByHO
8eeGZODCD+BaEpeAtVplGCoaiGvMGlig0HIBkH1QfghgFjlmHBfEWxJMdOopOegm
6Jw/BDD2Ku0rOUejcCKvlxJoP5zK/8idRp9Sa1CggiBSTgQm0qRp8wYHuAgBoOj+
zN2YjYjyJh54gTKUmmzWmbwRJxFY1bWYS+C4qC2p2RTXYY6SLFDXDL/DIdxvMto0
UyXSxDAY8wcsd8WQDtDT9RekjfxMsN5uHbXWZUPK7syTljedqqqg5FDbZZm8UR2w
jTGAsRJMvv8NwbUfldfU0z7AUbA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:45 2023 by rpki-client on console-ams.rpki-client.org