Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/HXWJs7p3ft2fZ5so-dhzh8RIgiM.roa
File: HXWJs7p3ft2fZ5so-dhzh8RIgiM.roa (raw, json)
Hash identifier: b4e8FUewOUgGInyVVGTQSTETsrxD+XTXSVj8lL5d/7w=
Subject key identifier: 1D:75:89:B3:BA:77:7E:DD:9F:67:9B:28:F9:D8:73:87:C4:48:82:23
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 081E0E9C
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/HXWJs7p3ft2fZ5so-dhzh8RIgiM.roa
Signing time: Sat 01 Jan 2022 03:52:25 +0000
ROA not before: Sat 01 Jan 2022 03:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 91.149.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136187548 (0x81e0e9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jan 1 03:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d7589b3ba777edd9f679b28f9d87387c4488223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:07:8d:c1:e9:99:64:3c:3e:a4:89:c5:22:45:
67:15:f8:14:7b:ee:5f:59:66:4e:21:f4:b4:34:65:
9c:fc:0f:ed:2d:50:fe:6a:5f:5f:31:c8:74:91:83:
39:83:7e:20:68:e0:8a:65:29:7e:67:87:ca:d4:c0:
c0:67:9d:c3:01:2d:6e:69:c1:5f:6c:e5:11:e4:db:
d0:ae:d4:a9:6d:52:1c:93:1a:e3:4a:90:b7:16:57:
1f:3c:02:1d:e3:ff:a1:a9:f7:5a:0c:2b:52:81:12:
9d:9c:d3:2c:7d:9b:59:8f:28:1c:4f:b4:d7:82:d8:
ac:97:eb:a0:60:36:73:26:7c:12:0b:c5:fd:ad:fb:
60:71:1c:e9:73:94:f6:08:23:6d:10:cc:01:42:20:
d1:5e:31:80:68:e4:36:23:32:b6:fd:f0:c3:82:ba:
f4:58:44:53:fc:0a:2c:47:55:fb:01:b6:d1:31:9d:
3d:91:59:1b:d0:bd:1a:c8:ec:64:04:9b:b8:d7:c3:
5c:d4:78:3a:28:34:f3:48:a4:7a:54:89:e3:e8:6b:
d9:13:35:a7:ce:b2:6d:eb:ae:23:97:45:d9:eb:34:
08:82:98:99:02:9d:b1:55:3d:ac:22:d9:ee:19:22:
b3:f6:7c:c1:99:9a:c3:48:c9:aa:c1:a3:52:03:9d:
17:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:75:89:B3:BA:77:7E:DD:9F:67:9B:28:F9:D8:73:87:C4:48:82:23
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/HXWJs7p3ft2fZ5so-dhzh8RIgiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.230.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:32:69:22:26:53:5b:d9:e8:5b:94:b6:f7:2a:e0:4d:4a:27:
32:48:ed:c1:76:6e:aa:58:d0:56:7e:a2:fa:94:53:b1:3c:f3:
8b:b8:4e:c5:31:16:7a:d0:de:56:f1:b2:f9:3b:81:64:d8:43:
1d:96:6e:31:1b:79:9d:a1:22:7e:db:87:6d:7b:b2:f1:78:87:
8c:47:e5:b4:69:02:d7:56:df:42:bd:92:b4:6f:0d:4e:c5:8d:
f2:a2:f4:4d:a1:0d:82:36:45:8b:38:78:0d:65:c6:32:78:ae:
86:18:a0:fa:d5:39:3c:be:31:84:a1:85:35:84:17:15:9a:0d:
33:f4:c0:68:22:42:3b:7d:33:38:fb:53:ed:fb:b8:18:11:a6:
53:06:02:43:a2:10:75:c2:d5:32:e9:25:31:c2:de:1e:08:2d:
85:36:6b:e9:6e:84:38:5e:9e:0a:89:23:d0:58:da:23:c7:51:
8a:a7:dd:f3:fa:68:4b:88:76:f2:40:0a:80:f8:64:a0:a0:5d:
72:f7:90:84:5f:34:86:b1:71:ed:19:db:d4:85:d4:50:56:01:
49:94:94:8d:a7:b4:b8:43:09:dd:a2:49:c4:f6:67:9c:09:f9:
2e:01:a6:6c:3a:a3:6e:91:48:b0:a3:11:82:7a:fb:c8:9f:87:
d9:56:c5:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECB4OnDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Njc4NTBlNTcxZjNmMmFjYTJjMWVjMWQ3ZTUwMmQ5YmQxODRjNDVjMB4XDTIyMDEw
MTAzNTIyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWQ3NTg5YjNiYTc3
N2VkZDlmNjc5YjI4ZjlkODczODdjNDQ4ODIyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI4HjcHpmWQ8PqSJxSJFZxX4FHvuX1lmTiH0tDRlnPwP7S1Q
/mpfXzHIdJGDOYN+IGjgimUpfmeHytTAwGedwwEtbmnBX2zlEeTb0K7UqW1SHJMa
40qQtxZXHzwCHeP/oan3WgwrUoESnZzTLH2bWY8oHE+014LYrJfroGA2cyZ8EgvF
/a37YHEc6XOU9ggjbRDMAUIg0V4xgGjkNiMytv3ww4K69FhEU/wKLEdV+wG20TGd
PZFZG9C9GsjsZASbuNfDXNR4Oig080ikelSJ4+hr2RM1p86ybeuuI5dF2es0CIKY
mQKdsVU9rCLZ7hkis/Z8wZmaw0jJqsGjUgOdF7sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQddYmzund+3Z9nmyj52HOHxEiCIzAfBgNVHSMEGDAWgBSmeFDlcfPyrKLB
7B1+UC2b0YTEXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BuaFE1WEh6OHF5aXdld2RmbEF0bTlHRXhGdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvMzMwOWI1LWY5M2YtNGM2Mi04ZGNlLWIwYzE1MWU1MTZjZi8x
L0hYV0pzN3AzZnQyZlo1c28tZGh6aDhSSWdpTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
MzMwOWI1LWY5M2YtNGM2Mi04ZGNlLWIwYzE1MWU1MTZjZi8xL3BuaFE1WEh6OHF5
aXdld2RmbEF0bTlHRXhGdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFuV5jANBgkqhkiG9w0BAQsFAAOC
AQEAizJpIiZTW9noW5S29yrgTUonMkjtwXZuqljQVn6i+pRTsTzzi7hOxTEWetDe
VvGy+TuBZNhDHZZuMRt5naEiftuHbXuy8XiHjEfltGkC11bfQr2StG8NTsWN8qL0
TaENgjZFizh4DWXGMniuhhig+tU5PL4xhKGFNYQXFZoNM/TAaCJCO30zOPtT7fu4
GBGmUwYCQ6IQdcLVMuklMcLeHggthTZr6W6EOF6eCokj0FjaI8dRiqfd8/poS4h2
8kAKgPhkoKBdcveQhF80hrFx7Rnb1IXUUFYBSZSUjae0uEMJ3aJJxPZnnAn5LgGm
bDqjbpFIsKMRgnr7yJ+H2VbFLg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:37 2025 by rpki-client