Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/1a31bd-42e3-4f89-b981-d0a1c92899a4/1/M91e4VITzf-xJkbC3P2siymg0iU.roa
File: M91e4VITzf-xJkbC3P2siymg0iU.roa (raw, json)
Hash identifier: hTRseawb5LvM/GMcYeh6r6NAQzN0mofAX5inObPW+jw=
Subject key identifier: 33:DD:5E:E1:52:13:CD:FF:B1:26:46:C2:DC:FD:AC:8B:29:A0:D2:25
Certificate issuer: /CN=91aa574b511c291b7cfae9195bdd09e0038602c0
Certificate serial: A89221
Authority key identifier: 91:AA:57:4B:51:1C:29:1B:7C:FA:E9:19:5B:DD:09:E0:03:86:02:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kapXS1EcKRt8-ukZW90J4AOGAsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/1a31bd-42e3-4f89-b981-d0a1c92899a4/1/M91e4VITzf-xJkbC3P2siymg0iU.roa
Signing time: Sat 01 Jan 2022 00:51:31 +0000
ROA not before: Sat 01 Jan 2022 00:51:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 91.242.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11047457 (0xa89221)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91aa574b511c291b7cfae9195bdd09e0038602c0
Validity
Not Before: Jan 1 00:51:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33dd5ee15213cdffb12646c2dcfdac8b29a0d225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d4:f3:eb:c9:e6:25:a3:0f:24:2c:92:53:78:
3e:e4:99:1e:e9:5b:50:dd:b8:ab:c8:b2:3f:58:02:
75:1e:6d:03:42:dd:b4:6b:37:9e:2a:4c:6f:f2:e3:
19:9d:74:7d:b3:31:a5:d6:5a:e5:b5:66:20:a0:6b:
fb:30:ac:d1:ae:03:5d:a9:93:8f:e5:e3:ed:77:36:
90:7f:ff:9e:2e:be:bf:b7:df:a3:0d:53:bf:53:72:
5b:6d:b2:94:56:93:df:61:4b:98:a1:0f:56:11:b5:
a4:fa:78:8e:63:f5:15:32:a7:e2:8c:60:41:80:c3:
fe:4d:2c:6c:ae:99:23:15:4d:7c:a5:ef:16:ae:ed:
c8:c9:70:07:2f:39:8a:87:19:70:56:d7:52:59:a5:
8e:76:75:7a:61:1e:b5:4d:cf:c7:77:6e:c7:16:e3:
39:4d:1b:59:83:01:4e:e7:9c:91:9c:93:c9:60:8e:
7b:fc:e9:b1:ec:68:da:8d:61:29:74:72:ea:d3:60:
8f:c1:e9:ba:ac:67:c4:15:17:59:a3:42:29:04:cc:
f3:c0:fc:6a:7b:75:1f:e9:e7:30:10:69:a3:ba:46:
53:ae:6a:07:75:0f:90:84:29:d2:64:f2:24:4c:2f:
83:e3:61:86:a0:ec:9d:fd:0e:86:52:86:72:e0:d3:
96:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DD:5E:E1:52:13:CD:FF:B1:26:46:C2:DC:FD:AC:8B:29:A0:D2:25
X509v3 Authority Key Identifier:
keyid:91:AA:57:4B:51:1C:29:1B:7C:FA:E9:19:5B:DD:09:E0:03:86:02:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kapXS1EcKRt8-ukZW90J4AOGAsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/1a31bd-42e3-4f89-b981-d0a1c92899a4/1/M91e4VITzf-xJkbC3P2siymg0iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/1a31bd-42e3-4f89-b981-d0a1c92899a4/1/kapXS1EcKRt8-ukZW90J4AOGAsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.225.0/24
Signature Algorithm: sha256WithRSAEncryption
10:dc:2c:ed:9f:09:40:12:0a:df:c9:f6:d5:a9:52:dd:1e:b4:
c9:18:dd:ee:f6:a9:cd:d4:38:61:d6:11:42:c2:a7:c6:78:f5:
fb:f9:82:5a:21:f4:b8:80:06:1f:61:cd:fd:64:0a:a1:94:42:
46:a5:f1:22:1a:27:9f:2d:81:ae:17:9d:21:b0:20:6d:06:c4:
fe:c5:36:1d:41:3c:68:ba:ec:27:f0:bb:b6:3d:e4:58:0c:0d:
4f:8e:5a:0f:aa:a6:2d:15:ac:d3:39:f7:fc:0c:73:86:4d:44:
3a:76:1e:c2:b5:2d:07:ca:cb:51:9a:91:b0:82:15:60:30:f7:
38:0e:fb:f5:6b:cd:d1:d2:a2:27:af:e6:99:83:55:b6:4a:61:
73:f2:55:74:08:23:fc:80:c3:a2:ad:95:6e:52:4a:8e:3b:d1:
cf:e2:0f:85:8a:4c:a8:31:b9:c8:a4:5a:c1:5d:3e:c3:6e:74:
59:98:c6:2a:91:08:12:7b:69:82:40:2b:f1:b4:91:5c:de:38:
ff:d4:55:c6:6d:af:d5:a0:1e:07:b9:89:78:10:fc:fc:80:88:
ca:e5:59:c5:43:1b:70:bd:f8:60:b5:4c:19:5e:64:09:2e:1f:
7c:23:fc:19:80:81:63:70:18:75:c2:9f:4d:cf:9e:f4:97:03:
81:9e:63:44
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAKiSITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MWFhNTc0YjUxMWMyOTFiN2NmYWU5MTk1YmRkMDllMDAzODYwMmMwMB4XDTIyMDEw
MTAwNTEzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzNkZDVlZTE1MjEz
Y2RmZmIxMjY0NmMyZGNmZGFjOGIyOWEwZDIyNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMrU8+vJ5iWjDyQsklN4PuSZHulbUN24q8iyP1gCdR5tA0Ld
tGs3nipMb/LjGZ10fbMxpdZa5bVmIKBr+zCs0a4DXamTj+Xj7Xc2kH//ni6+v7ff
ow1Tv1NyW22ylFaT32FLmKEPVhG1pPp4jmP1FTKn4oxgQYDD/k0sbK6ZIxVNfKXv
Fq7tyMlwBy85iocZcFbXUlmljnZ1emEetU3Px3duxxbjOU0bWYMBTueckZyTyWCO
e/zpsexo2o1hKXRy6tNgj8HpuqxnxBUXWaNCKQTM88D8ant1H+nnMBBpo7pGU65q
B3UPkIQp0mTyJEwvg+NhhqDsnf0OhlKGcuDTlsECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQz3V7hUhPN/7EmRsLc/ayLKaDSJTAfBgNVHSMEGDAWgBSRqldLURwpG3z6
6Rlb3QngA4YCwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2thcFhTMUVjS1J0OC11a1pXOTBKNEFPR0FzQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTAvMWEzMWJkLTQyZTMtNGY4OS1iOTgxLWQwYTFjOTI4OTlhNC8x
L005MWU0VklUemYteEprYkMzUDJzaXltZzBpVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAv
MWEzMWJkLTQyZTMtNGY4OS1iOTgxLWQwYTFjOTI4OTlhNC8xL2thcFhTMUVjS1J0
OC11a1pXOTBKNEFPR0FzQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvy4TANBgkqhkiG9w0BAQsFAAOC
AQEAENws7Z8JQBIK38n21alS3R60yRjd7vapzdQ4YdYRQsKnxnj1+/mCWiH0uIAG
H2HN/WQKoZRCRqXxIhonny2BrhedIbAgbQbE/sU2HUE8aLrsJ/C7tj3kWAwNT45a
D6qmLRWs0zn3/Axzhk1EOnYewrUtB8rLUZqRsIIVYDD3OA779WvN0dKiJ6/mmYNV
tkphc/JVdAgj/IDDoq2VblJKjjvRz+IPhYpMqDG5yKRawV0+w250WZjGKpEIEntp
gkAr8bSRXN44/9RVxm2v1aAeB7mJeBD8/ICIyuVZxUMbcL34YLVMGV5kCS4ffCP8
GYCBY3AYdcKfTc+e9JcDgZ5jRA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:43 2024 by rpki-client on console-ams.rpki-client.org