Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/M6XTqyo9Ny5p9U8bItuamdhE3SY.roa
File: M6XTqyo9Ny5p9U8bItuamdhE3SY.roa (raw, json)
Hash identifier: h3jKBXBQd/x1Yy+LzMeWfpTBvdfI4TMNXY2RMNvZezs=
Subject key identifier: 33:A5:D3:AB:2A:3D:37:2E:69:F5:4F:1B:22:DB:9A:99:D8:44:DD:26
Certificate issuer: /CN=bbfe42cb30c3d496f96f11ed93cf74361708c7e1
Certificate serial: 018CC56E413781825752E4B0CFC43FDD0399
Authority key identifier: BB:FE:42:CB:30:C3:D4:96:F9:6F:11:ED:93:CF:74:36:17:08:C7:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_5CyzDD1Jb5bxHtk890NhcIx-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/M6XTqyo9Ny5p9U8bItuamdhE3SY.roa
Signing time: Mon 01 Jan 2024 14:29:46 +0000
ROA not before: Mon 01 Jan 2024 14:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44073
IP address blocks: 91.198.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:41:37:81:82:57:52:e4:b0:cf:c4:3f:dd:03:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbfe42cb30c3d496f96f11ed93cf74361708c7e1
Validity
Not Before: Jan 1 14:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33a5d3ab2a3d372e69f54f1b22db9a99d844dd26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:10:7b:3a:8e:35:81:ea:f9:12:fc:d3:a8:1d:
16:09:ff:34:0d:bf:62:f1:3a:45:98:c2:da:b4:b0:
3d:92:09:7d:36:5b:ef:c4:06:d0:83:e7:4d:1d:5d:
4d:2e:3c:1d:c0:06:50:1f:1c:c7:4f:55:cc:cc:70:
20:8e:45:f6:9a:d4:13:69:54:93:e9:5e:87:02:4c:
67:64:2e:19:2f:c6:96:df:fa:f5:d5:a7:2c:df:90:
4e:bc:8a:19:68:1f:32:06:0e:7b:cf:c8:9c:a8:e8:
45:bd:99:be:11:35:43:0d:8c:89:f1:d4:bd:b4:b6:
b8:72:00:03:77:a5:5b:58:4b:aa:e2:a0:f0:4b:2b:
55:7b:67:e8:a0:d5:02:0c:ee:a5:47:71:29:42:95:
eb:04:a7:75:89:aa:67:e7:78:28:b6:89:db:de:37:
b3:d5:ab:a4:9e:81:63:15:b8:4f:32:44:a2:58:1f:
d9:e0:8d:1b:01:a7:c7:99:81:cc:05:e7:f4:ca:11:
17:ad:3f:3d:05:ec:04:56:44:b1:ce:b5:f2:b9:1d:
39:78:1d:d9:be:e4:96:56:dc:04:53:ca:46:45:d6:
8d:f3:af:f4:ef:4b:b8:5c:63:f8:ca:23:79:07:41:
2f:c6:39:24:ae:83:ce:62:fa:9b:70:83:ec:61:63:
c9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A5:D3:AB:2A:3D:37:2E:69:F5:4F:1B:22:DB:9A:99:D8:44:DD:26
X509v3 Authority Key Identifier:
keyid:BB:FE:42:CB:30:C3:D4:96:F9:6F:11:ED:93:CF:74:36:17:08:C7:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_5CyzDD1Jb5bxHtk890NhcIx-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/M6XTqyo9Ny5p9U8bItuamdhE3SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/u_5CyzDD1Jb5bxHtk890NhcIx-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.112.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:3b:ea:38:a2:bb:8a:2a:4c:fc:e3:dc:f1:96:b3:1b:29:0e:
9a:fb:0e:69:65:c9:a8:2b:04:ac:7a:39:ce:ed:03:ef:09:94:
ad:6f:a0:4c:5b:57:8c:91:3f:70:9b:bc:30:a3:0a:8a:37:1a:
25:18:cf:55:2a:cc:51:ec:72:e4:3a:22:23:aa:fe:26:9d:f9:
87:74:35:a2:9c:02:47:91:73:13:ba:9c:51:8c:b7:07:f8:99:
bd:80:bc:24:70:1a:e7:0b:8f:07:b1:d4:28:3a:a1:cf:2d:d3:
57:d0:63:9b:6e:a7:05:d6:b2:04:c8:e1:f4:16:62:21:5f:87:
e0:07:0f:a4:99:6d:ba:3e:12:f0:ac:52:7f:22:52:b9:7e:30:
4b:08:94:26:d8:7b:00:ba:d1:91:19:0d:fb:a4:67:e1:c0:ab:
14:cc:90:bb:89:01:9e:24:77:76:0f:5e:e3:f2:26:ec:cb:d1:
4f:4c:b9:d5:0e:7c:b4:36:83:49:87:91:1f:e8:3b:5d:fd:f1:
5f:e4:28:d8:f0:a1:f4:4c:af:e0:97:63:6b:2f:c8:16:81:00:
e7:63:80:7a:05:0d:ea:7a:90:5a:1b:03:a0:a2:dc:48:e5:00:
2e:3a:b6:8e:d9:db:ff:68:8c:40:4e:9b:c7:87:3a:65:82:53:
80:25:21:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbkE3gYJXUuSwz8Q/3QOZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiZmU0MmNiMzBjM2Q0OTZmOTZmMTFlZDkzY2Y3NDM2MTcw
OGM3ZTEwHhcNMjQwMTAxMTQyOTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2E1ZDNhYjJhM2QzNzJlNjlmNTRmMWIyMmRiOWE5OWQ4NDRkZDI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxB7Oo41ger5EvzTqB0WCf80Db9i
8TpFmMLatLA9kgl9NlvvxAbQg+dNHV1NLjwdwAZQHxzHT1XMzHAgjkX2mtQTaVST
6V6HAkxnZC4ZL8aW3/r11acs35BOvIoZaB8yBg57z8icqOhFvZm+ETVDDYyJ8dS9
tLa4cgADd6VbWEuq4qDwSytVe2fooNUCDO6lR3EpQpXrBKd1iapn53gotonb3jez
1auknoFjFbhPMkSiWB/Z4I0bAafHmYHMBef0yhEXrT89BewEVkSxzrXyuR05eB3Z
vuSWVtwEU8pGRdaN86/070u4XGP4yiN5B0EvxjkkroPOYvqbcIPsYWPJlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDOl06sqPTcuafVPGyLbmpnYRN0mMB8GA1UdIwQY
MBaAFLv+Qssww9SW+W8R7ZPPdDYXCMfhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdV81Q3l6REQxSmI1YnhIdGs4OTBOaGNJeC1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9jMjZhN2MtMmJlZi00YWJjLWEyMjUt
ZjFkMTE0MTNlMThhLzEvTTZYVHF5bzlOeTVwOVU4Ykl0dWFtZGhFM1NZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9jMjZhN2MtMmJlZi00YWJjLWEyMjUtZjFkMTE0MTNlMThh
LzEvdV81Q3l6REQxSmI1YnhIdGs4OTBOaGNJeC1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8ZwMA0G
CSqGSIb3DQEBCwUAA4IBAQAbO+o4oruKKkz849zxlrMbKQ6a+w5pZcmoKwSsejnO
7QPvCZStb6BMW1eMkT9wm7wwowqKNxolGM9VKsxR7HLkOiIjqv4mnfmHdDWinAJH
kXMTupxRjLcH+Jm9gLwkcBrnC48HsdQoOqHPLdNX0GObbqcF1rIEyOH0FmIhX4fg
Bw+kmW26PhLwrFJ/IlK5fjBLCJQm2HsAutGRGQ37pGfhwKsUzJC7iQGeJHd2D17j
8ibsy9FPTLnVDny0NoNJh5Ef6Dtd/fFf5CjY8KH0TK/gl2NrL8gWgQDnY4B6BQ3q
epBaGwOgotxI5QAuOraO2dv/aIxATpvHhzplglOAJSHU
-----END CERTIFICATE-----
Generated at Tue Apr 8 05:02:49 2025 by rpki-client