Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06af59-fd8e-478b-b710-b0e70b269d8c/1/2xkMqyd9oD384zi1AyM63muazzs.roa
File: 2xkMqyd9oD384zi1AyM63muazzs.roa (raw, json)
Hash identifier: kg0CaJcCq0AG5RAUXiStb8hs8P1i5kD7eCKBSlddELk=
Subject key identifier: DB:19:0C:AB:27:7D:A0:3D:FC:E3:38:B5:03:23:3A:DE:6B:9A:CF:3B
Certificate issuer: /CN=9dd9ada6daa63cc6513b19ee887341a4986430fe
Certificate serial: 023A26
Authority key identifier: 9D:D9:AD:A6:DA:A6:3C:C6:51:3B:19:EE:88:73:41:A4:98:64:30:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndmtptqmPMZROxnuiHNBpJhkMP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06af59-fd8e-478b-b710-b0e70b269d8c/1/2xkMqyd9oD384zi1AyM63muazzs.roa
Signing time: Thu 06 Jan 2022 04:10:18 +0000
ROA not before: Thu 06 Jan 2022 04:10:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204062
IP address blocks: 91.103.149.0/24 maxlen: 24
91.103.148.0/24 maxlen: 24
91.103.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145958 (0x23a26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dd9ada6daa63cc6513b19ee887341a4986430fe
Validity
Not Before: Jan 6 04:10:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db190cab277da03dfce338b503233ade6b9acf3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0b:f3:cf:30:97:03:24:56:77:6a:2c:ea:30:
b6:ba:e5:1c:bb:5f:29:d1:92:5d:d9:d5:fd:35:bb:
bd:bd:86:54:c2:d1:ea:27:eb:f5:65:98:ec:eb:9d:
29:9e:79:77:db:fc:bc:c7:b8:49:31:b3:16:ae:e4:
64:7b:c3:89:5e:d9:fd:8f:00:02:ba:38:79:5c:a5:
3f:c4:1c:67:67:2a:0f:3b:12:b7:fc:83:80:4b:47:
02:d9:cc:0b:78:d6:0e:72:ed:ad:f1:06:6e:5b:0d:
f2:66:78:e1:6d:13:6d:6a:02:e0:46:3f:06:66:05:
e7:2a:62:99:a7:f2:ff:18:a2:d6:d1:82:53:64:a7:
ab:0b:1c:22:ca:ab:aa:57:48:39:c5:c7:12:87:70:
f1:3b:01:ca:e4:e5:11:c2:39:48:ce:f9:72:5c:44:
68:2a:f7:49:ef:c8:94:ef:1b:cb:13:22:ef:b9:f5:
5f:82:a6:d1:c8:f5:32:24:af:8c:21:22:6b:92:89:
17:7f:09:9e:59:44:13:c4:f4:a3:fb:fd:8e:17:bf:
e9:8e:1f:2b:e8:80:92:62:ce:5b:c1:7a:72:71:72:
67:cd:d9:8d:bb:15:2d:2a:4c:59:eb:cc:4a:9b:80:
fb:7a:1f:40:3e:71:54:f9:c8:a0:a5:e6:99:b9:3b:
65:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:19:0C:AB:27:7D:A0:3D:FC:E3:38:B5:03:23:3A:DE:6B:9A:CF:3B
X509v3 Authority Key Identifier:
keyid:9D:D9:AD:A6:DA:A6:3C:C6:51:3B:19:EE:88:73:41:A4:98:64:30:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndmtptqmPMZROxnuiHNBpJhkMP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06af59-fd8e-478b-b710-b0e70b269d8c/1/2xkMqyd9oD384zi1AyM63muazzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06af59-fd8e-478b-b710-b0e70b269d8c/1/ndmtptqmPMZROxnuiHNBpJhkMP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.148.0-91.103.150.255
Signature Algorithm: sha256WithRSAEncryption
79:b3:95:2a:cc:e9:bb:3b:f5:5a:06:b3:cb:78:80:35:c7:91:
f2:f4:e7:5f:39:61:f5:de:7b:91:e0:28:78:ba:6f:2f:62:99:
0a:73:28:66:bf:f3:57:34:3f:40:dd:ea:27:71:bb:b8:10:91:
f6:39:24:50:62:5f:5a:77:8c:b7:40:ce:f5:e4:58:65:c8:44:
cc:67:36:29:af:e9:53:19:52:6d:a1:fe:9b:68:92:e6:e7:54:
b9:d9:c7:3b:2e:aa:ab:3a:9d:89:69:01:44:0b:9c:b9:48:3e:
86:2c:e1:5d:d8:dc:db:df:01:ee:81:b5:71:f3:d8:6d:86:01:
00:ef:b3:96:80:71:fb:d4:8d:a1:76:41:72:27:ff:20:e4:e4:
4b:7a:67:d6:da:38:f9:d0:ef:95:13:5e:48:2e:78:ca:07:84:
d9:73:27:ad:75:30:72:4d:64:38:33:d4:21:92:ff:12:cb:0b:
f3:65:e0:07:dc:8c:8c:54:60:24:b2:0a:09:e0:94:44:66:70:
54:20:9c:db:39:a8:4c:46:da:23:96:71:ae:86:84:ba:1d:d2:
f2:f7:e1:1d:04:d8:b6:cd:01:0f:d1:9e:3a:63:36:8a:fd:eb:
3a:cc:59:5c:4e:d8:2f:82:d8:71:ec:e5:21:82:d1:da:02:bc:
c4:80:f5:c3
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIDAjomMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDlk
ZDlhZGE2ZGFhNjNjYzY1MTNiMTllZTg4NzM0MWE0OTg2NDMwZmUwHhcNMjIwMTA2
MDQxMDE4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkYjE5MGNhYjI3N2Rh
MDNkZmNlMzM4YjUwMzIzM2FkZTZiOWFjZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsQvzzzCXAyRWd2os6jC2uuUcu18p0ZJd2dX9Nbu9vYZUwtHq
J+v1ZZjs650pnnl32/y8x7hJMbMWruRke8OJXtn9jwACujh5XKU/xBxnZyoPOxK3
/IOAS0cC2cwLeNYOcu2t8QZuWw3yZnjhbRNtagLgRj8GZgXnKmKZp/L/GKLW0YJT
ZKerCxwiyquqV0g5xccSh3DxOwHK5OURwjlIzvlyXERoKvdJ78iU7xvLEyLvufVf
gqbRyPUyJK+MISJrkokXfwmeWUQTxPSj+/2OF7/pjh8r6ICSYs5bwXpycXJnzdmN
uxUtKkxZ68xKm4D7eh9APnFU+cigpeaZuTtlXQIDAQABo4ICETCCAg0wHQYDVR0O
BBYEFNsZDKsnfaA9/OM4tQMjOt5rms87MB8GA1UdIwQYMBaAFJ3ZrabapjzGUTsZ
7ohzQaSYZDD+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bmRtdHB0cW1QTVpST3hudWlITkJwSmhrTVA0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC81MC8wNmFmNTktZmQ4ZS00NzhiLWI3MTAtYjBlNzBiMjY5ZDhjLzEv
MnhrTXF5ZDlvRDM4NHppMUF5TTYzbXVhenpzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8w
NmFmNTktZmQ4ZS00NzhiLWI3MTAtYjBlNzBiMjY5ZDhjLzEvbmRtdHB0cW1QTVpS
T3hudWlITkJwSmhrTVA0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcG
CCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAJbZ5QDBABbZ5YwDQYJKoZIhvcN
AQELBQADggEBAHmzlSrM6bs79VoGs8t4gDXHkfL05185YfXee5HgKHi6by9imQpz
KGa/81c0P0Dd6idxu7gQkfY5JFBiX1p3jLdAzvXkWGXIRMxnNimv6VMZUm2h/pto
kubnVLnZxzsuqqs6nYlpAUQLnLlIPoYs4V3Y3NvfAe6BtXHz2G2GAQDvs5aAcfvU
jaF2QXIn/yDk5Et6Z9baOPnQ75UTXkgueMoHhNlzJ611MHJNZDgz1CGS/xLLC/Nl
4AfcjIxUYCSyCgnglERmcFQgnNs5qExG2iOWca6GhLod0vL34R0E2LbNAQ/Rnjpj
Nor96zrMWVxO2C+C2HHs5SGC0doCvMSA9cM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:11 2024 by rpki-client on console-fra.rpki-client.org