Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9bced6-605c-4e68-8781-a4efa36ea9b5/1/udRPTluzhJ2dKgBh37rXDpcEVwc.roa
File: udRPTluzhJ2dKgBh37rXDpcEVwc.roa (raw, json)
Hash identifier: 52aajfKoTSbqGZDU5bDFx0+VVZgBRx2kGGJdiuVGa7c=
Subject key identifier: B9:D4:4F:4E:5B:B3:84:9D:9D:2A:00:61:DF:BA:D7:0E:97:04:57:07
Certificate issuer: /CN=e54484753a0074f1e52d46188c9aa878a6dec6f2
Certificate serial: 01856E0ADC5B5D5BA304A7542D58AE9C6658
Authority key identifier: E5:44:84:75:3A:00:74:F1:E5:2D:46:18:8C:9A:A8:78:A6:DE:C6:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5USEdToAdPHlLUYYjJqoeKbexvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9bced6-605c-4e68-8781-a4efa36ea9b5/1/udRPTluzhJ2dKgBh37rXDpcEVwc.roa
Signing time: Sun 01 Jan 2023 15:54:43 +0000
ROA not before: Sun 01 Jan 2023 15:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203730
IP address blocks: 91.217.11.0/24 maxlen: 24
91.217.10.0/24 maxlen: 24
91.217.10.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:dc:5b:5d:5b:a3:04:a7:54:2d:58:ae:9c:66:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e54484753a0074f1e52d46188c9aa878a6dec6f2
Validity
Not Before: Jan 1 15:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9d44f4e5bb3849d9d2a0061dfbad70e97045707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6d:6c:6b:88:1c:78:78:a2:cb:eb:7a:82:01:
6c:66:7a:92:89:86:f7:fb:34:bc:86:d5:03:88:4f:
87:78:51:d6:e2:e5:cc:eb:81:16:7d:81:00:3a:cb:
14:63:a5:31:db:7d:57:34:d9:7f:3c:f5:1c:91:11:
65:67:aa:45:20:75:ce:e1:36:ce:33:c9:cc:d0:a3:
d9:8e:3a:0d:ba:a8:02:28:23:81:4e:5e:5b:54:c3:
6a:30:a9:95:e6:80:ef:df:9d:be:ae:27:23:ee:61:
ad:c8:88:57:2c:8e:fd:7c:46:22:f8:83:f0:f6:b6:
03:10:26:5c:34:9f:6e:67:5f:a0:39:38:03:f7:f3:
50:fb:28:3a:17:26:8e:72:b4:ef:ea:24:07:5e:50:
4f:22:da:e6:33:df:92:d8:ab:b4:77:3c:79:54:e6:
c7:01:eb:30:90:de:4d:ad:28:80:2f:5b:ec:0b:79:
ef:f7:8b:ff:5e:9b:e2:32:fe:b2:e7:37:88:e7:a9:
04:a3:e2:de:fb:9c:45:f6:8a:44:e9:a8:23:c9:ac:
54:96:85:20:3b:14:75:f9:ee:20:d6:92:31:24:bc:
31:72:56:b5:01:0b:34:2e:7a:bc:67:34:bf:06:20:
40:7a:ad:78:c3:62:09:42:55:a8:a5:ca:d2:fc:28:
11:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D4:4F:4E:5B:B3:84:9D:9D:2A:00:61:DF:BA:D7:0E:97:04:57:07
X509v3 Authority Key Identifier:
keyid:E5:44:84:75:3A:00:74:F1:E5:2D:46:18:8C:9A:A8:78:A6:DE:C6:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5USEdToAdPHlLUYYjJqoeKbexvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9bced6-605c-4e68-8781-a4efa36ea9b5/1/udRPTluzhJ2dKgBh37rXDpcEVwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9bced6-605c-4e68-8781-a4efa36ea9b5/1/5USEdToAdPHlLUYYjJqoeKbexvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.10.0/23
Signature Algorithm: sha256WithRSAEncryption
65:21:9d:db:1f:2b:8c:07:00:6d:6a:36:1f:b4:6d:b5:e6:05:
46:c6:23:ed:66:76:b0:55:10:09:bb:8c:dd:54:da:f9:bf:74:
e8:c7:72:15:68:15:4f:56:f5:fe:2c:24:ea:bb:77:f7:52:ce:
c4:3f:e8:ac:cb:56:58:52:62:df:e8:f6:ad:94:53:6f:a2:5c:
26:90:54:be:6f:bd:06:a7:ab:63:5a:b4:66:7d:d4:aa:00:fb:
f5:9a:6e:31:37:b8:89:80:ff:c2:66:20:bf:a5:b8:eb:9b:18:
d6:1b:8d:b7:db:7d:63:97:6a:c6:27:63:0e:73:63:db:c9:b1:
59:a2:26:b9:c0:d2:59:4f:02:cc:50:3a:0a:a9:15:7f:c2:3c:
22:25:b5:f4:2e:b1:5f:cc:4d:d6:85:df:cc:bd:03:66:3f:11:
3e:7e:2f:f8:1a:74:98:7e:0e:d3:07:f3:93:12:ec:15:c6:56:
27:3d:32:ac:27:e6:17:be:1c:f5:4f:1e:d7:2f:5e:8e:36:02:
9f:8d:24:1e:49:76:11:12:9b:7e:f7:c0:30:ca:e1:7c:31:26:
72:b3:8f:46:db:d3:f4:3d:81:74:fd:6c:e7:4a:fc:f9:b2:4e:
4d:46:b3:e3:4e:82:2c:a7:37:70:bf:f3:47:56:00:cf:8b:53:
6d:7f:4a:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuCtxbXVujBKdULViunGZYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NDQ4NDc1M2EwMDc0ZjFlNTJkNDYxODhjOWFhODc4YTZk
ZWM2ZjIwHhcNMjMwMTAxMTU1NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWQ0NGY0ZTViYjM4NDlkOWQyYTAwNjFkZmJhZDcwZTk3MDQ1NzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjm1sa4gceHiiy+t6ggFsZnqSiYb3
+zS8htUDiE+HeFHW4uXM64EWfYEAOssUY6Ux231XNNl/PPUckRFlZ6pFIHXO4TbO
M8nM0KPZjjoNuqgCKCOBTl5bVMNqMKmV5oDv352+ricj7mGtyIhXLI79fEYi+IPw
9rYDECZcNJ9uZ1+gOTgD9/NQ+yg6FyaOcrTv6iQHXlBPItrmM9+S2Ku0dzx5VObH
AeswkN5NrSiAL1vsC3nv94v/XpviMv6y5zeI56kEo+Le+5xF9opE6agjyaxUloUg
OxR1+e4g1pIxJLwxcla1AQs0Lnq8ZzS/BiBAeq14w2IJQlWopcrS/CgRgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLnUT05bs4SdnSoAYd+61w6XBFcHMB8GA1UdIwQY
MBaAFOVEhHU6AHTx5S1GGIyaqHim3sbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVVTRWRUb0FkUEhsTFVZWWpKcW9lS2JleHZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny85YmNlZDYtNjA1Yy00ZTY4LTg3ODEt
YTRlZmEzNmVhOWI1LzEvdWRSUFRsdXpoSjJkS2dCaDM3clhEcGNFVndjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny85YmNlZDYtNjA1Yy00ZTY4LTg3ODEtYTRlZmEzNmVhOWI1
LzEvNVVTRWRUb0FkUEhsTFVZWWpKcW9lS2JleHZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW9kKMA0G
CSqGSIb3DQEBCwUAA4IBAQBlIZ3bHyuMBwBtajYftG215gVGxiPtZnawVRAJu4zd
VNr5v3Tox3IVaBVPVvX+LCTqu3f3Us7EP+isy1ZYUmLf6PatlFNvolwmkFS+b70G
p6tjWrRmfdSqAPv1mm4xN7iJgP/CZiC/pbjrmxjWG423231jl2rGJ2MOc2PbybFZ
oia5wNJZTwLMUDoKqRV/wjwiJbX0LrFfzE3Whd/MvQNmPxE+fi/4GnSYfg7TB/OT
EuwVxlYnPTKsJ+YXvhz1Tx7XL16ONgKfjSQeSXYREpt+98AwyuF8MSZys49G29P0
PYF0/WznSvz5sk5NRrPjToIspzdwv/NHVgDPi1Ntf0oc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:20 2024 by rpki-client on console-fra.rpki-client.org