Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/LTtlaHl5m_xgCVpvO_iK-noVj_8.roa
File: LTtlaHl5m_xgCVpvO_iK-noVj_8.roa (raw, json)
Hash identifier: dEQUSbEqywa3v/uNAH+DNhWKgA61vYEY+b8RjTMf/b4=
Subject key identifier: 2D:3B:65:68:79:79:9B:FC:60:09:5A:6F:3B:F8:8A:FA:7A:15:8F:FF
Certificate issuer: /CN=785e0df3048628ccdb5396355697085e4250a8c7
Certificate serial: 01856FC28682A230877E116993391FBADBF9
Authority key identifier: 78:5E:0D:F3:04:86:28:CC:DB:53:96:35:56:97:08:5E:42:50:A8:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eF4N8wSGKMzbU5Y1VpcIXkJQqMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/LTtlaHl5m_xgCVpvO_iK-noVj_8.roa
Signing time: Sun 01 Jan 2023 23:54:57 +0000
ROA not before: Sun 01 Jan 2023 23:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207313
IP address blocks: 91.205.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:86:82:a2:30:87:7e:11:69:93:39:1f:ba:db:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785e0df3048628ccdb5396355697085e4250a8c7
Validity
Not Before: Jan 1 23:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d3b656879799bfc60095a6f3bf88afa7a158fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1b:44:3b:ca:cf:b4:12:dd:f9:27:34:80:7f:
10:88:34:67:cd:2c:61:17:8f:05:ea:91:96:5b:a5:
4e:d4:26:af:4b:c1:37:f7:80:01:df:6f:6d:d6:3d:
66:6a:6a:01:d6:0a:ae:76:37:65:78:17:15:3a:11:
98:a3:ff:6f:41:ba:1e:57:b6:bd:d1:4d:df:1d:67:
1c:30:1d:ee:77:9c:c6:ff:d2:67:e8:b6:eb:87:4d:
92:f6:83:ab:14:58:81:c9:52:23:aa:97:c8:76:d6:
f3:7b:31:1a:4a:4b:ae:51:fe:70:1c:d9:76:96:45:
d9:d1:ea:b9:75:4c:c2:72:ed:7c:cb:94:cc:fa:3e:
0f:72:94:5d:08:61:3a:e4:49:2b:3f:4f:f0:bd:fd:
78:22:a6:dc:c5:e5:d7:2e:01:ee:7d:64:53:f3:66:
05:ee:76:53:5f:f6:c2:97:d0:29:06:3c:0f:7a:a5:
ba:b9:81:78:c0:c4:aa:bf:8e:bc:8e:9d:5a:7a:d2:
f8:23:c8:93:c9:78:94:0a:85:83:b2:dc:7a:16:62:
b0:1a:ff:16:78:a6:e5:61:81:3e:4b:bd:58:c2:ea:
2e:c8:b8:a1:9b:28:9c:12:9f:f4:ae:21:9d:a1:b8:
95:0f:a1:af:87:8c:5b:e5:32:f8:69:e8:cd:03:a1:
4b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3B:65:68:79:79:9B:FC:60:09:5A:6F:3B:F8:8A:FA:7A:15:8F:FF
X509v3 Authority Key Identifier:
keyid:78:5E:0D:F3:04:86:28:CC:DB:53:96:35:56:97:08:5E:42:50:A8:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eF4N8wSGKMzbU5Y1VpcIXkJQqMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/LTtlaHl5m_xgCVpvO_iK-noVj_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/eF4N8wSGKMzbU5Y1VpcIXkJQqMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.158.0/24
Signature Algorithm: sha256WithRSAEncryption
26:4a:f0:d3:47:21:52:0e:2a:b9:cb:97:ea:fa:a0:d5:08:76:
71:c0:49:c1:cf:ad:0a:ea:ee:44:41:a5:e5:56:6f:06:03:74:
45:52:ff:39:ff:21:b8:4d:c2:ec:58:8b:a0:76:70:b6:4c:ef:
fa:7b:9a:38:d1:e9:3a:b3:b4:c2:e4:2f:fa:d2:70:7d:0d:97:
98:e7:51:e3:53:de:a9:65:48:21:02:2b:c4:9f:56:8a:41:71:
c6:cd:76:0a:62:31:f7:fa:a5:fa:22:16:9f:59:99:f4:ec:d5:
34:fc:24:3a:21:03:ff:a2:34:ff:f4:14:0c:4d:bf:ab:af:87:
f0:bc:18:a0:f4:c1:98:a9:4f:36:ab:83:f9:a1:de:32:ad:b9:
9e:9f:f1:d5:3f:22:ae:d9:c6:e2:f9:6e:74:6a:88:70:80:bf:
92:6b:97:e5:61:7e:d8:59:fb:f5:d0:d8:50:44:6b:68:07:7e:
41:98:de:f8:3f:15:b8:ab:8d:e4:1e:95:e1:a5:f4:45:8b:da:
d0:85:43:90:f5:09:51:cd:b8:14:f0:8c:03:39:52:ce:07:ee:
0f:12:bc:64:dd:92:7c:cc:f1:1b:47:79:30:20:1b:38:7c:bf:
10:52:d3:38:04:87:8a:18:4b:14:61:bf:9d:2a:66:90:c5:f2:
57:a7:d3:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwoaCojCHfhFpkzkfutv5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4NWUwZGYzMDQ4NjI4Y2NkYjUzOTYzNTU2OTcwODVlNDI1
MGE4YzcwHhcNMjMwMTAxMjM1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDNiNjU2ODc5Nzk5YmZjNjAwOTVhNmYzYmY4OGFmYTdhMTU4ZmZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBtEO8rPtBLd+Sc0gH8QiDRnzSxh
F48F6pGWW6VO1CavS8E394AB329t1j1mamoB1gqudjdleBcVOhGYo/9vQboeV7a9
0U3fHWccMB3ud5zG/9Jn6Lbrh02S9oOrFFiByVIjqpfIdtbzezEaSkuuUf5wHNl2
lkXZ0eq5dUzCcu18y5TM+j4PcpRdCGE65EkrP0/wvf14IqbcxeXXLgHufWRT82YF
7nZTX/bCl9ApBjwPeqW6uYF4wMSqv468jp1aetL4I8iTyXiUCoWDstx6FmKwGv8W
eKblYYE+S71YwuouyLihmyicEp/0riGdobiVD6Gvh4xb5TL4aejNA6FLFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC07ZWh5eZv8YAlabzv4ivp6FY//MB8GA1UdIwQY
MBaAFHheDfMEhijM21OWNVaXCF5CUKjHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUY0Tjh3U0dLTXpiVTVZMVZwY0lYa0pRcU1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS83MmUyMGMtYTJhOC00YmU4LWI5NTUt
NjRmNjdjNDRiYmZhLzEvTFR0bGFIbDVtX3hnQ1Zwdk9faUstbm9Wal84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS83MmUyMGMtYTJhOC00YmU4LWI5NTUtNjRmNjdjNDRiYmZh
LzEvZUY0Tjh3U0dLTXpiVTVZMVZwY0lYa0pRcU1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW82eMA0G
CSqGSIb3DQEBCwUAA4IBAQAmSvDTRyFSDiq5y5fq+qDVCHZxwEnBz60K6u5EQaXl
Vm8GA3RFUv85/yG4TcLsWIugdnC2TO/6e5o40ek6s7TC5C/60nB9DZeY51HjU96p
ZUghAivEn1aKQXHGzXYKYjH3+qX6IhafWZn07NU0/CQ6IQP/ojT/9BQMTb+rr4fw
vBig9MGYqU82q4P5od4yrbmen/HVPyKu2cbi+W50aohwgL+Sa5flYX7YWfv10NhQ
RGtoB35BmN74PxW4q43kHpXhpfRFi9rQhUOQ9QlRzbgU8IwDOVLOB+4PErxk3ZJ8
zPEbR3kwIBs4fL8QUtM4BIeKGEsUYb+dKmaQxfJXp9P4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:47 2024 by rpki-client on console-ams.rpki-client.org