Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/B7LYoTzr1TyEieF3Mtctk0BrCYc.roa
File: B7LYoTzr1TyEieF3Mtctk0BrCYc.roa (raw, json)
Hash identifier: H/wxjmQj0Ce/L7J3Hq5yGUzC6y5z2tdnDsfT0Sg2xK4=
Subject key identifier: 07:B2:D8:A1:3C:EB:D5:3C:84:89:E1:77:32:D7:2D:93:40:6B:09:87
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0366562E
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/B7LYoTzr1TyEieF3Mtctk0BrCYc.roa
Signing time: Tue 01 Feb 2022 13:25:23 +0000
ROA not before: Tue 01 Feb 2022 13:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 91.199.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57038382 (0x366562e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Feb 1 13:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07b2d8a13cebd53c8489e17732d72d93406b0987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:ea:c5:df:b9:5e:f3:c5:81:78:68:f1:7b:
ae:02:68:c6:e5:4f:64:76:b8:f6:ac:f4:21:6d:67:
23:39:98:4f:d9:cd:2e:43:35:e9:92:b5:2c:14:31:
cd:e0:f3:bb:61:3b:01:e8:c0:82:70:8d:c8:0a:3e:
c1:15:fe:94:dd:f3:44:bb:71:4a:27:bf:d1:0d:02:
69:68:4b:7f:6a:ea:0a:93:81:21:46:b0:9b:52:2a:
cd:89:84:62:ff:4d:43:d4:64:ec:ed:b6:60:ea:6b:
2c:b9:8d:1c:e7:a2:e8:a7:77:4c:6d:e0:c1:b3:c6:
0a:0c:f5:0a:b8:f8:e8:32:f7:ce:18:f2:21:bc:c6:
48:bc:f2:7e:84:ba:a7:2c:50:a4:2e:28:00:73:b1:
72:05:2d:ca:fd:36:3a:d4:58:95:ef:b7:09:47:5f:
e3:72:79:4a:7a:33:6b:10:a8:8d:b2:e4:c1:7c:3c:
49:75:e7:cd:44:1f:54:0a:c6:0a:68:99:80:1c:82:
90:20:51:89:52:a3:07:d0:64:8f:5d:cc:5f:38:6b:
06:8d:6a:1a:5f:43:a1:fd:5c:76:40:1d:fd:56:62:
60:4d:1a:b8:c0:ea:cd:4b:50:5e:c3:fc:a2:96:d8:
a6:ea:b6:38:a2:9b:b5:79:6b:d7:18:0a:d4:38:aa:
f3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B2:D8:A1:3C:EB:D5:3C:84:89:E1:77:32:D7:2D:93:40:6B:09:87
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/B7LYoTzr1TyEieF3Mtctk0BrCYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:82:66:32:1f:5f:87:16:57:cc:a1:64:88:d5:50:51:e8:c7:
46:1d:0f:c0:f7:77:e2:9f:a3:a3:de:6a:f9:91:15:6b:60:e2:
f2:28:49:b3:4b:8f:a2:6f:be:4a:97:cf:04:07:b4:49:02:86:
b5:96:4c:a1:2b:b0:d2:1b:64:c8:59:5d:94:dd:11:2f:aa:b2:
ea:32:63:57:3e:ca:ee:e5:65:4d:ad:9f:e9:2e:3a:6e:fb:6d:
cd:88:d9:00:b7:9a:df:a1:50:3c:f8:6a:eb:65:fd:4b:e5:c7:
7f:39:05:34:e3:af:b5:cc:5f:0a:db:c2:bd:f0:66:7e:24:79:
1a:cd:97:c9:b4:8c:d2:61:90:31:b4:af:b0:2e:07:18:94:4f:
4b:a4:5e:4c:8e:85:9e:7c:b1:7d:d2:1e:ac:67:84:16:65:c9:
93:a8:df:ef:96:9c:31:e1:93:3d:f4:2a:14:46:a7:6d:b6:56:
9f:26:65:4b:ba:57:32:d3:7c:36:aa:00:5f:52:b6:e4:77:06:
75:22:a2:63:9b:b5:0e:df:77:67:ef:a5:be:10:07:75:c4:ac:
9a:74:03:34:17:c4:3a:72:9b:31:70:23:18:d3:26:21:60:c7:
7d:35:15:85:5d:45:56:47:ee:cc:4a:d0:35:7c:da:d9:54:25:
bf:ea:0f:32
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA2ZWLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MmVkNGEyZmIxODBkZjVmOTlkNGJmOGM3N2NjOWEwNmVmMjYwNThjMB4XDTIyMDIw
MTEzMjUyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDdiMmQ4YTEzY2Vi
ZDUzYzg0ODllMTc3MzJkNzJkOTM0MDZiMDk4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMWW6sXfuV7zxYF4aPF7rgJoxuVPZHa49qz0IW1nIzmYT9nN
LkM16ZK1LBQxzeDzu2E7AejAgnCNyAo+wRX+lN3zRLtxSie/0Q0CaWhLf2rqCpOB
IUawm1IqzYmEYv9NQ9Rk7O22YOprLLmNHOei6Kd3TG3gwbPGCgz1Crj46DL3zhjy
IbzGSLzyfoS6pyxQpC4oAHOxcgUtyv02OtRYle+3CUdf43J5SnozaxCojbLkwXw8
SXXnzUQfVArGCmiZgByCkCBRiVKjB9Bkj13MXzhrBo1qGl9Dof1cdkAd/VZiYE0a
uMDqzUtQXsP8opbYpuq2OKKbtXlr1xgK1Diq86sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQHstihPOvVPISJ4Xcy1y2TQGsJhzAfBgNVHSMEGDAWgBSC7UovsYDfX5nU
v4x3zJoG7yYFjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d1MUtMN0dBMzEtWjFMLU1kOHlhQnU4bUJZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvMDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8x
L0I3TFlvVHpyMVR5RWllRjNNdGN0azBCckNZYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
MDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8xL2d1MUtMN0dBMzEt
WjFMLU1kOHlhQnU4bUJZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvHqDANBgkqhkiG9w0BAQsFAAOC
AQEAz4JmMh9fhxZXzKFkiNVQUejHRh0PwPd34p+jo95q+ZEVa2Di8ihJs0uPom++
SpfPBAe0SQKGtZZMoSuw0htkyFldlN0RL6qy6jJjVz7K7uVlTa2f6S46bvttzYjZ
ALea36FQPPhq62X9S+XHfzkFNOOvtcxfCtvCvfBmfiR5Gs2XybSM0mGQMbSvsC4H
GJRPS6ReTI6FnnyxfdIerGeEFmXJk6jf75acMeGTPfQqFEanbbZWnyZlS7pXMtN8
NqoAX1K25HcGdSKiY5u1Dt93Z++lvhAHdcSsmnQDNBfEOnKbMXAjGNMmIWDHfTUV
hV1FVkfuzErQNXza2VQlv+oPMg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org