Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c8fa79-419f-45e3-82be-8c9be9260735/1/Qxakc8S2h5ywhmlWQcl-h1TX-Fw.roa
File: Qxakc8S2h5ywhmlWQcl-h1TX-Fw.roa (raw, json)
Hash identifier: avbSS3X7f8f2urjCzbKnSG9PGODiFn+9q3VdhMatW0A=
Subject key identifier: 43:16:A4:73:C4:B6:87:9C:B0:86:69:56:41:C9:7E:87:54:D7:F8:5C
Certificate issuer: /CN=c7572a450e1eb0229746c48b2bc492bc190214f3
Certificate serial: 0223FCD8
Authority key identifier: C7:57:2A:45:0E:1E:B0:22:97:46:C4:8B:2B:C4:92:BC:19:02:14:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1cqRQ4esCKXRsSLK8SSvBkCFPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c8fa79-419f-45e3-82be-8c9be9260735/1/Qxakc8S2h5ywhmlWQcl-h1TX-Fw.roa
Signing time: Sat 01 Jan 2022 15:06:21 +0000
ROA not before: Sat 01 Jan 2022 15:06:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 91.238.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35912920 (0x223fcd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7572a450e1eb0229746c48b2bc492bc190214f3
Validity
Not Before: Jan 1 15:06:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4316a473c4b6879cb086695641c97e8754d7f85c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:90:53:9a:0a:2a:de:7d:51:e4:b9:9f:dc:22:
4f:43:54:b9:21:f8:c7:5c:bc:47:c4:cc:7d:14:f0:
fe:45:20:e6:c4:02:4f:91:cd:56:28:3f:ca:18:1f:
84:0c:d8:2e:65:fa:30:d3:55:b3:26:a9:b3:62:fe:
f0:cb:69:16:62:35:e9:18:f5:a9:d9:a4:d7:fd:f1:
20:a5:ef:ab:ac:9d:d7:55:e3:6c:3c:ac:52:b6:ea:
16:f8:4c:47:6a:c8:8f:72:55:29:d1:cc:db:32:b4:
c4:5e:8f:67:7f:ae:63:f1:15:b9:d9:15:ae:cc:2e:
53:5c:d9:77:19:24:55:2e:b3:e5:3b:0c:0e:b0:61:
b7:b6:9f:02:b9:12:69:4c:80:6f:84:69:e2:06:40:
a0:e4:bd:87:a3:05:84:89:23:3b:ff:42:1d:80:ef:
7a:16:ce:da:ae:0a:54:ab:a1:82:61:01:fa:60:59:
c4:94:43:43:f6:b7:4e:69:1b:fe:09:48:ca:03:65:
c4:fb:cc:74:11:6f:a6:39:d4:59:29:64:0b:b8:49:
7d:01:d5:1c:af:b7:c8:e7:dd:97:90:a0:2c:41:6f:
9d:4f:ba:20:81:72:79:3f:41:c9:8c:d9:b4:2e:c5:
93:0a:48:64:ac:47:ce:c6:ad:79:d3:8d:6d:41:3d:
8e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:16:A4:73:C4:B6:87:9C:B0:86:69:56:41:C9:7E:87:54:D7:F8:5C
X509v3 Authority Key Identifier:
keyid:C7:57:2A:45:0E:1E:B0:22:97:46:C4:8B:2B:C4:92:BC:19:02:14:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1cqRQ4esCKXRsSLK8SSvBkCFPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c8fa79-419f-45e3-82be-8c9be9260735/1/Qxakc8S2h5ywhmlWQcl-h1TX-Fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c8fa79-419f-45e3-82be-8c9be9260735/1/x1cqRQ4esCKXRsSLK8SSvBkCFPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.239.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:81:7a:04:15:2d:39:fa:cc:74:91:34:1e:39:1f:6a:42:36:
75:b5:3e:3c:5e:b7:93:b9:b2:5f:9f:c1:bc:8a:96:7c:fe:de:
9c:54:ee:3d:49:dd:0c:0d:52:6c:50:56:25:c5:e4:98:13:66:
fa:97:2a:6a:3b:9f:e2:a2:42:67:60:1e:46:e8:b6:58:7c:c0:
54:e8:9b:32:08:a8:32:0f:bb:81:e5:e7:87:4e:c9:3a:a1:ac:
de:4e:83:f1:7c:15:1c:10:ee:64:ae:a6:36:22:be:e4:a3:25:
90:32:ba:52:e2:7d:e8:af:88:34:c2:7b:f2:f3:7a:5f:19:95:
6c:19:ae:24:ca:b3:be:c9:72:92:95:2c:42:09:fc:a9:f9:88:
46:60:d8:c9:f0:d9:79:9c:c8:a7:94:c6:07:f2:33:cf:58:f4:
9b:bc:2a:f3:62:17:47:dd:5c:d0:16:88:ec:f5:b3:64:7b:37:
c4:f3:e4:d8:ac:2f:7e:d9:9c:11:03:08:31:35:b0:da:f4:79:
d2:82:fd:1a:aa:04:42:be:00:e9:32:31:c4:a5:38:e8:f4:18:
e4:72:61:1a:28:51:44:0b:0b:cc:b3:3a:14:ee:d9:73:d8:24:
23:4d:32:df:27:ae:bf:ea:21:c6:64:d8:c3:c5:9e:86:a0:4f:
c1:88:77:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAiP82DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NzU3MmE0NTBlMWViMDIyOTc0NmM0OGIyYmM0OTJiYzE5MDIxNGYzMB4XDTIyMDEw
MTE1MDYyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDMxNmE0NzNjNGI2
ODc5Y2IwODY2OTU2NDFjOTdlODc1NGQ3Zjg1YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMGQU5oKKt59UeS5n9wiT0NUuSH4x1y8R8TMfRTw/kUg5sQC
T5HNVig/yhgfhAzYLmX6MNNVsyaps2L+8MtpFmI16Rj1qdmk1/3xIKXvq6yd11Xj
bDysUrbqFvhMR2rIj3JVKdHM2zK0xF6PZ3+uY/EVudkVrswuU1zZdxkkVS6z5TsM
DrBht7afArkSaUyAb4Rp4gZAoOS9h6MFhIkjO/9CHYDvehbO2q4KVKuhgmEB+mBZ
xJRDQ/a3Tmkb/glIygNlxPvMdBFvpjnUWSlkC7hJfQHVHK+3yOfdl5CgLEFvnU+6
IIFyeT9ByYzZtC7FkwpIZKxHzsatedONbUE9josCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRDFqRzxLaHnLCGaVZByX6HVNf4XDAfBgNVHSMEGDAWgBTHVypFDh6wIpdG
xIsrxJK8GQIU8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3gxY3FSUTRlc0NLWFJzU0xLOFNTdkJrQ0ZQTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvYzhmYTc5LTQxOWYtNDVlMy04MmJlLThjOWJlOTI2MDczNS8x
L1F4YWtjOFMyaDV5d2htbFdRY2wtaDFUWC1Gdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
YzhmYTc5LTQxOWYtNDVlMy04MmJlLThjOWJlOTI2MDczNS8xL3gxY3FSUTRlc0NL
WFJzU0xLOFNTdkJrQ0ZQTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvu7zANBgkqhkiG9w0BAQsFAAOC
AQEAm4F6BBUtOfrMdJE0HjkfakI2dbU+PF63k7myX5/BvIqWfP7enFTuPUndDA1S
bFBWJcXkmBNm+pcqajuf4qJCZ2AeRui2WHzAVOibMgioMg+7geXnh07JOqGs3k6D
8XwVHBDuZK6mNiK+5KMlkDK6UuJ96K+INMJ78vN6XxmVbBmuJMqzvslykpUsQgn8
qfmIRmDYyfDZeZzIp5TGB/Izz1j0m7wq82IXR91c0BaI7PWzZHs3xPPk2Kwvftmc
EQMIMTWw2vR50oL9GqoEQr4A6TIxxKU46PQY5HJhGihRRAsLzLM6FO7Zc9gkI00y
3yeuv+ohxmTYw8WehqBPwYh3rQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:30 2023 by rpki-client on console-fra.rpki-client.org