Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/609c8a-0bb3-4089-bd21-7bc724f8de63/1/9u84ZazVfiC8kZdtyxTf6Web9dU.roa
File: 9u84ZazVfiC8kZdtyxTf6Web9dU.roa (raw, json)
Hash identifier: TGNgZIDznB7grIPF7Glm3k1rWj+56ul7im7IKRbiS1k=
Subject key identifier: F6:EF:38:65:AC:D5:7E:20:BC:91:97:6D:CB:14:DF:E9:67:9B:F5:D5
Certificate issuer: /CN=f6cdd5c45c8bd80c8bad10b8525300cf50bcb628
Certificate serial: 013BB832
Authority key identifier: F6:CD:D5:C4:5C:8B:D8:0C:8B:AD:10:B8:52:53:00:CF:50:BC:B6:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9s3VxFyL2AyLrRC4UlMAz1C8tig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/609c8a-0bb3-4089-bd21-7bc724f8de63/1/9u84ZazVfiC8kZdtyxTf6Web9dU.roa
Signing time: Sat 01 Jan 2022 01:57:52 +0000
ROA not before: Sat 01 Jan 2022 01:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41736
IP address blocks: 185.47.144.0/22 maxlen: 22
91.142.96.0/20 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20690994 (0x13bb832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6cdd5c45c8bd80c8bad10b8525300cf50bcb628
Validity
Not Before: Jan 1 01:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6ef3865acd57e20bc91976dcb14dfe9679bf5d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d6:0c:c0:16:1e:60:46:11:28:ca:c0:c2:84:
4f:34:bc:9d:c3:ec:5d:b2:0a:23:26:f6:bb:52:22:
4b:0f:97:64:f7:93:a9:70:3c:b7:c4:f2:ea:a8:39:
0e:0a:13:21:3a:00:f7:d7:45:9f:63:05:52:53:5e:
41:b3:88:c3:ef:c9:3a:9b:5a:e5:70:0c:14:7b:9e:
dd:2a:85:d5:e1:20:93:ca:60:17:f8:60:2e:89:66:
83:c7:d1:60:51:d8:41:26:69:50:0d:df:2f:b9:10:
e0:06:b2:fa:eb:36:17:03:fe:7a:82:bc:6f:8b:9c:
66:3b:c5:03:18:ec:d1:1c:37:25:17:b6:41:fc:28:
f8:06:93:f7:86:47:44:94:57:05:33:68:d0:c0:d0:
f4:2b:30:c0:22:fd:f6:72:aa:fc:d1:89:91:0f:17:
7c:34:3f:46:5c:db:9c:bd:4f:29:49:7f:4c:0f:c1:
30:52:57:5f:ce:3d:42:71:68:e1:1f:9a:2f:bf:62:
41:c1:35:e0:2f:d1:1e:5d:ba:33:ee:19:bb:99:0c:
2f:b4:4c:ab:59:91:e4:e1:b5:54:55:e2:e9:3a:e3:
cb:ca:59:6c:ff:0b:de:40:f1:18:9a:73:b5:de:c7:
4a:d5:3e:ff:ab:19:07:c4:97:74:00:05:a3:ad:09:
0f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:EF:38:65:AC:D5:7E:20:BC:91:97:6D:CB:14:DF:E9:67:9B:F5:D5
X509v3 Authority Key Identifier:
keyid:F6:CD:D5:C4:5C:8B:D8:0C:8B:AD:10:B8:52:53:00:CF:50:BC:B6:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9s3VxFyL2AyLrRC4UlMAz1C8tig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/609c8a-0bb3-4089-bd21-7bc724f8de63/1/9u84ZazVfiC8kZdtyxTf6Web9dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/609c8a-0bb3-4089-bd21-7bc724f8de63/1/9s3VxFyL2AyLrRC4UlMAz1C8tig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.96.0/20
185.47.144.0/22
Signature Algorithm: sha256WithRSAEncryption
56:70:7d:c5:51:24:41:7f:aa:2a:22:59:47:3b:6f:06:51:f3:
be:a8:77:58:ad:ac:14:34:54:57:59:b8:c4:37:a7:9e:df:f1:
f1:51:03:70:6a:48:46:1c:36:db:ef:45:78:62:82:84:37:1f:
36:2e:8b:5f:68:93:3c:fd:c7:1f:04:fb:70:af:c1:96:7e:d3:
e2:87:86:fe:71:28:62:23:55:7f:3f:30:b4:a3:fc:bd:59:0f:
18:14:f4:1b:47:24:87:44:d0:c4:20:b8:bb:4d:ee:a3:e4:2e:
39:cb:18:42:94:69:bc:77:fe:11:87:1b:30:33:bf:63:30:47:
b0:cb:6c:91:d5:79:74:e0:da:54:fc:27:88:5c:c3:47:b2:15:
74:e3:05:05:8c:89:1b:f4:ce:0e:db:d0:94:1c:33:ef:df:6f:
bf:86:92:8b:64:a7:09:98:3b:a5:80:38:d9:e1:1b:8e:05:54:
6e:54:02:1b:04:02:32:a0:ef:84:5e:c0:9b:a1:03:5b:95:08:
ca:e4:52:ae:0b:44:10:2e:c3:67:f8:cf:ff:f8:43:71:f2:85:
c8:7f:b0:57:d2:d1:fd:af:8b:45:cc:32:aa:ac:9a:79:9c:fc:
55:c9:20:4b:7f:6d:46:cb:21:7c:50:02:d2:97:67:cc:07:d2:
0e:8a:b5:26
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEATu4MjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NmNkZDVjNDVjOGJkODBjOGJhZDEwYjg1MjUzMDBjZjUwYmNiNjI4MB4XDTIyMDEw
MTAxNTc1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjZlZjM4NjVhY2Q1
N2UyMGJjOTE5NzZkY2IxNGRmZTk2NzliZjVkNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANjWDMAWHmBGESjKwMKETzS8ncPsXbIKIyb2u1IiSw+XZPeT
qXA8t8Ty6qg5DgoTIToA99dFn2MFUlNeQbOIw+/JOpta5XAMFHue3SqF1eEgk8pg
F/hgLolmg8fRYFHYQSZpUA3fL7kQ4Aay+us2FwP+eoK8b4ucZjvFAxjs0Rw3JRe2
Qfwo+AaT94ZHRJRXBTNo0MDQ9CswwCL99nKq/NGJkQ8XfDQ/RlzbnL1PKUl/TA/B
MFJXX849QnFo4R+aL79iQcE14C/RHl26M+4Zu5kML7RMq1mR5OG1VFXi6Trjy8pZ
bP8L3kDxGJpztd7HStU+/6sZB8SXdAAFo60JD9UCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBT27zhlrNV+ILyRl23LFN/pZ5v11TAfBgNVHSMEGDAWgBT2zdXEXIvYDIut
ELhSUwDPULy2KDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlzM1Z4RnlMMkF5THJSQzRVbE1BejFDOHRpZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzcvNjA5YzhhLTBiYjMtNDA4OS1iZDIxLTdiYzcyNGY4ZGU2My8x
Lzl1ODRaYXpWZmlDOGtaZHR5eFRmNldlYjlkVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcv
NjA5YzhhLTBiYjMtNDA4OS1iZDIxLTdiYzcyNGY4ZGU2My8xLzlzM1Z4RnlMMkF5
THJSQzRVbE1BejFDOHRpZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEBFuOYAMEArkvkDANBgkqhkiG9w0B
AQsFAAOCAQEAVnB9xVEkQX+qKiJZRztvBlHzvqh3WK2sFDRUV1m4xDennt/x8VED
cGpIRhw22+9FeGKChDcfNi6LX2iTPP3HHwT7cK/Bln7T4oeG/nEoYiNVfz8wtKP8
vVkPGBT0G0ckh0TQxCC4u03uo+QuOcsYQpRpvHf+EYcbMDO/YzBHsMtskdV5dODa
VPwniFzDR7IVdOMFBYyJG/TODtvQlBwz799vv4aSi2SnCZg7pYA42eEbjgVUblQC
GwQCMqDvhF7Am6EDW5UIyuRSrgtEEC7DZ/jP//hDcfKFyH+wV9LR/a+LRcwyqqya
eZz8VckgS39tRsshfFAC0pdnzAfSDoq1Jg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:07 2023 by rpki-client on console-fra.rpki-client.org