Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b085f3-fb11-4832-ba45-b3961750454a/1/3h1Q2xbExTr7MkHtlyDqf-yZIuc.roa
File: 3h1Q2xbExTr7MkHtlyDqf-yZIuc.roa (raw, json)
Hash identifier: EQMZ/Yb9cDJus1zQpNYtFEe7iQ2aJ5qlTOhz+G8ujtI=
Subject key identifier: DE:1D:50:DB:16:C4:C5:3A:FB:32:41:ED:97:20:EA:7F:EC:99:22:E7
Certificate issuer: /CN=41eedf650071ae8006e636cdbed4a7386dc87e44
Certificate serial: 01856BDC60AF0F2A0536D52F02DFB13C23A1
Authority key identifier: 41:EE:DF:65:00:71:AE:80:06:E6:36:CD:BE:D4:A7:38:6D:C8:7E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qe7fZQBxroAG5jbNvtSnOG3IfkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b085f3-fb11-4832-ba45-b3961750454a/1/3h1Q2xbExTr7MkHtlyDqf-yZIuc.roa
Signing time: Sun 01 Jan 2023 05:44:42 +0000
ROA not before: Sun 01 Jan 2023 05:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 91.247.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:60:af:0f:2a:05:36:d5:2f:02:df:b1:3c:23:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41eedf650071ae8006e636cdbed4a7386dc87e44
Validity
Not Before: Jan 1 05:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de1d50db16c4c53afb3241ed9720ea7fec9922e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c9:ae:c8:34:37:5e:1e:7b:c7:00:3a:0e:ba:
49:61:ae:94:2d:b9:b8:58:ee:f9:c6:8f:1e:2f:05:
d0:a6:03:40:30:3a:e7:65:b2:4e:f2:ba:74:fe:3a:
3e:0e:ab:1e:ec:12:d0:1a:d1:e4:2f:89:94:b7:b2:
55:c2:90:87:1e:e7:0e:78:43:5f:0b:71:85:b0:4b:
11:21:21:f3:90:a6:88:1a:8f:93:34:62:07:cb:06:
cd:64:ab:25:df:4b:a2:76:56:8e:1e:71:df:d4:d6:
ad:d2:d0:f3:57:d9:4f:ef:64:9e:ad:2f:b1:69:ec:
e2:4d:9f:04:cd:20:2c:af:4e:3b:b4:3a:2f:9e:02:
99:36:47:66:1b:47:32:dd:dc:9d:d2:2a:f4:b8:91:
0d:61:94:3c:f0:9f:e6:13:c4:b3:6a:7f:ac:a3:4c:
da:6b:02:12:3a:fe:da:83:7b:9d:4f:9e:70:f9:54:
60:ce:31:dd:38:ce:0f:23:da:5b:29:0f:a8:db:01:
4d:a8:10:52:3e:fc:a8:ef:c4:29:17:a7:3e:03:c4:
a5:3d:4f:d5:cb:12:cc:a8:59:89:bc:69:74:0e:ec:
77:e9:bd:ec:95:e4:62:6b:38:08:97:86:48:7a:54:
6f:29:6d:d9:07:31:d8:41:64:02:b6:36:bb:a4:1d:
a5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1D:50:DB:16:C4:C5:3A:FB:32:41:ED:97:20:EA:7F:EC:99:22:E7
X509v3 Authority Key Identifier:
keyid:41:EE:DF:65:00:71:AE:80:06:E6:36:CD:BE:D4:A7:38:6D:C8:7E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qe7fZQBxroAG5jbNvtSnOG3IfkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b085f3-fb11-4832-ba45-b3961750454a/1/3h1Q2xbExTr7MkHtlyDqf-yZIuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b085f3-fb11-4832-ba45-b3961750454a/1/Qe7fZQBxroAG5jbNvtSnOG3IfkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.167.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:08:ff:cd:d6:6c:1a:e5:a3:85:ea:59:cb:be:8d:c0:11:d2:
57:8b:e6:28:cb:13:a1:06:9a:f5:18:8e:cb:ae:12:00:23:59:
a0:a2:34:39:d8:73:ad:00:42:f7:20:16:e1:b2:e5:82:45:c7:
7c:25:21:91:87:4b:41:40:2d:63:f1:ba:53:65:19:21:52:49:
64:4f:ff:b3:2c:fc:37:72:1b:90:a6:a8:27:4f:4d:55:b4:dc:
66:f8:9b:d4:10:8e:b7:72:25:46:64:93:22:62:09:db:56:9c:
92:c9:3b:35:6e:4a:a4:5c:8c:7d:b7:5a:c1:57:42:45:7b:2a:
0c:76:30:03:7c:a9:41:83:6a:93:f8:01:46:20:99:ca:c9:e7:
8d:ec:27:41:c8:b4:c0:ab:df:8f:d2:2b:df:91:ed:d0:cc:9e:
7f:b2:3c:fd:19:73:c6:14:e0:42:44:75:ef:09:a3:aa:81:37:
b3:ae:e8:8a:f9:8d:b5:12:f9:36:cf:50:3e:9c:9b:60:2b:46:
72:d2:15:6a:b2:85:ee:31:b3:32:15:21:39:2c:52:22:6b:df:
ed:a8:b5:1a:6c:5e:a9:4f:2a:24:2b:4d:27:61:90:e3:9b:3f:
fe:17:5a:15:43:1f:a3:87:f7:06:9c:9a:85:03:13:a0:67:c3:
07:e6:ce:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr3GCvDyoFNtUvAt+xPCOhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxZWVkZjY1MDA3MWFlODAwNmU2MzZjZGJlZDRhNzM4NmRj
ODdlNDQwHhcNMjMwMTAxMDU0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTFkNTBkYjE2YzRjNTNhZmIzMjQxZWQ5NzIwZWE3ZmVjOTkyMmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMmuyDQ3Xh57xwA6DrpJYa6ULbm4
WO75xo8eLwXQpgNAMDrnZbJO8rp0/jo+Dqse7BLQGtHkL4mUt7JVwpCHHucOeENf
C3GFsEsRISHzkKaIGo+TNGIHywbNZKsl30uidlaOHnHf1Nat0tDzV9lP72SerS+x
aeziTZ8EzSAsr047tDovngKZNkdmG0cy3dyd0ir0uJENYZQ88J/mE8Szan+so0za
awISOv7ag3udT55w+VRgzjHdOM4PI9pbKQ+o2wFNqBBSPvyo78QpF6c+A8SlPU/V
yxLMqFmJvGl0Dux36b3sleRiazgIl4ZIelRvKW3ZBzHYQWQCtja7pB2lvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN4dUNsWxMU6+zJB7Zcg6n/smSLnMB8GA1UdIwQY
MBaAFEHu32UAca6ABuY2zb7UpzhtyH5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWU3ZlpRQnhyb0FHNWpiTnZ0U25PRzNJZmtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iMDg1ZjMtZmIxMS00ODMyLWJhNDUt
YjM5NjE3NTA0NTRhLzEvM2gxUTJ4YkV4VHI3TWtIdGx5RHFmLXlaSXVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9iMDg1ZjMtZmIxMS00ODMyLWJhNDUtYjM5NjE3NTA0NTRh
LzEvUWU3ZlpRQnhyb0FHNWpiTnZ0U25PRzNJZmtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/enMA0G
CSqGSIb3DQEBCwUAA4IBAQCpCP/N1mwa5aOF6lnLvo3AEdJXi+YoyxOhBpr1GI7L
rhIAI1mgojQ52HOtAEL3IBbhsuWCRcd8JSGRh0tBQC1j8bpTZRkhUklkT/+zLPw3
chuQpqgnT01VtNxm+JvUEI63ciVGZJMiYgnbVpySyTs1bkqkXIx9t1rBV0JFeyoM
djADfKlBg2qT+AFGIJnKyeeN7CdByLTAq9+P0ivfke3QzJ5/sjz9GXPGFOBCRHXv
CaOqgTezruiK+Y21Evk2z1A+nJtgK0Zy0hVqsoXuMbMyFSE5LFIia9/tqLUabF6p
TyokK00nYZDjmz/+F1oVQx+jh/cGnJqFAxOgZ8MH5s7U
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:04 2024 by rpki-client on console-fra.rpki-client.org