Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/VBpNN7w2V_MXTxdwiD9q-uTLm-w.roa
File: VBpNN7w2V_MXTxdwiD9q-uTLm-w.roa (raw, json)
Hash identifier: hDI00N9+X6G4EK9IXc/2Tcm2NDVu5tdn3u73/PT3zqg=
Subject key identifier: 54:1A:4D:37:BC:36:57:F3:17:4F:17:70:88:3F:6A:FA:E4:CB:9B:EC
Certificate issuer: /CN=318afc52c816ec5d736e7e52c3386528e6cbbeea
Certificate serial: 0185710BDFEDDDBF3DA05A8E0C30B9AD5F85
Authority key identifier: 31:8A:FC:52:C8:16:EC:5D:73:6E:7E:52:C3:38:65:28:E6:CB:BE:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYr8UsgW7F1zbn5SwzhlKObLvuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/VBpNN7w2V_MXTxdwiD9q-uTLm-w.roa
Signing time: Mon 02 Jan 2023 05:54:41 +0000
ROA not before: Mon 02 Jan 2023 05:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210579
IP address blocks: 91.227.138.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0b:df:ed:dd:bf:3d:a0:5a:8e:0c:30:b9:ad:5f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=318afc52c816ec5d736e7e52c3386528e6cbbeea
Validity
Not Before: Jan 2 05:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=541a4d37bc3657f3174f1770883f6afae4cb9bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ab:a7:8a:b9:01:20:a5:50:22:af:e3:3d:13:
19:d4:a9:59:2c:df:0e:f2:92:2b:64:08:ab:5a:94:
33:1a:a7:4b:4c:9a:8a:8c:9d:bb:b3:1c:18:ed:55:
1c:6f:27:ac:71:d8:78:67:df:c0:ea:70:a5:56:44:
6f:f7:3d:3e:d1:ca:d1:95:99:00:56:c5:66:63:a4:
c4:15:30:0c:13:47:6a:2c:95:1b:25:33:e8:90:fb:
99:bd:65:b1:95:eb:62:03:1a:58:3a:fc:1e:d0:15:
62:0a:a8:0e:91:a0:46:23:71:29:ec:7e:e7:a1:d5:
bf:30:26:05:1a:68:d0:45:fc:06:49:82:5c:71:8e:
0c:9f:6d:6a:21:8a:87:48:17:20:47:c5:06:24:95:
6e:ee:46:0b:e9:0d:05:92:7a:96:7e:3c:ea:2d:e8:
a5:c5:63:d5:18:ab:47:a9:fe:81:46:77:20:ab:a1:
c1:ab:de:de:5c:4a:e4:3e:65:3b:04:9b:0f:2f:17:
bb:af:47:51:8e:8c:dd:0e:ae:04:7a:d7:f3:ce:ca:
04:17:6a:c5:2e:65:18:ff:68:f0:cd:16:c2:4a:5d:
00:cd:da:09:1e:5c:7e:17:83:58:db:fa:20:96:3a:
89:b1:fc:70:cb:04:86:da:91:77:ce:ca:15:ae:79:
ef:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1A:4D:37:BC:36:57:F3:17:4F:17:70:88:3F:6A:FA:E4:CB:9B:EC
X509v3 Authority Key Identifier:
keyid:31:8A:FC:52:C8:16:EC:5D:73:6E:7E:52:C3:38:65:28:E6:CB:BE:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYr8UsgW7F1zbn5SwzhlKObLvuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/VBpNN7w2V_MXTxdwiD9q-uTLm-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/MYr8UsgW7F1zbn5SwzhlKObLvuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.138.0/23
Signature Algorithm: sha256WithRSAEncryption
75:39:97:72:8f:49:d2:69:f3:21:e2:ac:32:80:9f:d7:ae:e3:
b7:c0:97:02:51:83:04:9c:9f:9b:fb:68:93:82:f2:e0:1f:f6:
84:f1:e4:47:79:e6:00:f6:28:58:b8:09:f9:9a:92:9e:cf:dd:
fc:02:47:73:e0:1b:97:e1:fc:e1:35:5c:1b:fa:84:6d:22:f1:
58:ad:d7:0b:9d:00:79:b4:36:ec:a5:a1:4d:db:68:4d:83:97:
17:15:3d:b7:84:bf:a4:84:19:1e:9d:b1:4e:4d:52:54:0d:29:
3d:4c:08:2d:0f:ae:ad:35:64:4d:08:46:33:1a:42:f3:2d:8a:
dc:8f:d1:91:11:75:5c:89:73:ef:ba:cc:42:10:9a:11:68:c4:
86:91:a7:d3:c4:b7:3b:fe:7f:a7:79:7f:85:a9:93:8d:24:9d:
b4:5b:84:79:97:04:a3:8b:1d:04:b3:5b:7b:a6:74:3d:1b:21:
9a:0e:85:3c:00:a0:e1:b9:4c:ea:1c:58:95:9c:73:cb:e6:b1:
64:07:7a:24:c3:6d:9d:0c:5c:8f:63:b5:3e:4e:0d:a0:17:84:
2d:32:21:9b:85:67:13:bd:bf:9f:7d:83:f2:12:05:eb:94:41:
89:e6:8b:05:43:3a:52:94:3c:6f:e1:28:41:e7:d0:6f:70:ea:
12:91:bc:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxC9/t3b89oFqODDC5rV+FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxOGFmYzUyYzgxNmVjNWQ3MzZlN2U1MmMzMzg2NTI4ZTZj
YmJlZWEwHhcNMjMwMTAyMDU1NDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDFhNGQzN2JjMzY1N2YzMTc0ZjE3NzA4ODNmNmFmYWU0Y2I5YmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6unirkBIKVQIq/jPRMZ1KlZLN8O
8pIrZAirWpQzGqdLTJqKjJ27sxwY7VUcbyescdh4Z9/A6nClVkRv9z0+0crRlZkA
VsVmY6TEFTAME0dqLJUbJTPokPuZvWWxletiAxpYOvwe0BViCqgOkaBGI3Ep7H7n
odW/MCYFGmjQRfwGSYJccY4Mn21qIYqHSBcgR8UGJJVu7kYL6Q0FknqWfjzqLeil
xWPVGKtHqf6BRncgq6HBq97eXErkPmU7BJsPLxe7r0dRjozdDq4EetfzzsoEF2rF
LmUY/2jwzRbCSl0AzdoJHlx+F4NY2/ogljqJsfxwywSG2pF3zsoVrnnvuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFQaTTe8NlfzF08XcIg/avrky5vsMB8GA1UdIwQY
MBaAFDGK/FLIFuxdc25+UsM4ZSjmy77qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlyOFVzZ1c3RjF6Ym41U3d6aGxLT2JMdnVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9mMTA5YTgtZjQ2Ni00ZGVmLWFiZGQt
MWZlNTUwNjFkMjhmLzEvVkJwTk43dzJWX01YVHhkd2lEOXEtdVRMbS13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9mMTA5YTgtZjQ2Ni00ZGVmLWFiZGQtMWZlNTUwNjFkMjhm
LzEvTVlyOFVzZ1c3RjF6Ym41U3d6aGxLT2JMdnVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+OKMA0G
CSqGSIb3DQEBCwUAA4IBAQB1OZdyj0nSafMh4qwygJ/XruO3wJcCUYMEnJ+b+2iT
gvLgH/aE8eRHeeYA9ihYuAn5mpKez938Akdz4BuX4fzhNVwb+oRtIvFYrdcLnQB5
tDbspaFN22hNg5cXFT23hL+khBkenbFOTVJUDSk9TAgtD66tNWRNCEYzGkLzLYrc
j9GREXVciXPvusxCEJoRaMSGkafTxLc7/n+neX+FqZONJJ20W4R5lwSjix0Es1t7
pnQ9GyGaDoU8AKDhuUzqHFiVnHPL5rFkB3okw22dDFyPY7U+Tg2gF4QtMiGbhWcT
vb+ffYPyEgXrlEGJ5osFQzpSlDxv4ShB59BvcOoSkbxl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:27 2024 by rpki-client on console-fra.rpki-client.org