Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/f9YPLtFu3ArX-Zo159F4IrE0iGo.roa
File: f9YPLtFu3ArX-Zo159F4IrE0iGo.roa (raw, json)
Hash identifier: 7FKjICz9h3olfbHj1QOmwQA33KlI/WNV4WZVztI1Ugo=
Subject key identifier: 7F:D6:0F:2E:D1:6E:DC:0A:D7:F9:9A:35:E7:D1:78:22:B1:34:88:6A
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 082614FC
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/f9YPLtFu3ArX-Zo159F4IrE0iGo.roa
Signing time: Sat 01 Jan 2022 03:52:29 +0000
ROA not before: Sat 01 Jan 2022 03:52:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210554
IP address blocks: 91.149.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136713468 (0x82614fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jan 1 03:52:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fd60f2ed16edc0ad7f99a35e7d17822b134886a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:54:01:50:71:95:42:54:e9:1d:23:09:27:93:
f1:e9:29:85:b8:5f:22:7d:b1:8b:e8:cd:60:b1:38:
4e:65:d3:60:ba:d3:0a:37:53:92:a6:ab:15:9b:0a:
44:bd:b0:e4:84:36:6f:46:0f:c8:5e:a1:99:9c:e5:
8d:9d:00:70:aa:7e:ac:e9:e1:e7:dc:e3:7b:dd:66:
72:56:71:0e:b1:81:dc:62:f6:f3:53:b0:c7:b0:ef:
e8:c0:0a:86:b8:0b:6d:70:78:0f:12:60:e6:be:c7:
87:7d:18:54:46:d1:c3:be:47:84:40:e9:c6:3b:75:
5c:71:02:98:2e:1b:f3:c2:d4:29:1c:ca:c7:17:be:
3c:80:05:4a:82:17:3e:d8:2d:ef:a8:fc:00:60:59:
2b:7f:8e:6a:f5:37:57:68:eb:0b:66:74:f4:e2:d1:
fa:24:ea:aa:ef:8d:06:8c:12:d6:9c:a4:98:3f:5e:
b6:d7:9c:37:8c:3b:97:4e:35:0b:fd:21:93:a3:40:
94:26:e8:16:81:d1:97:7d:12:4d:90:dc:9a:b5:f3:
f2:b9:db:2d:45:c4:1f:ae:56:c6:ae:ab:a6:e0:76:
e5:58:43:89:04:76:03:5e:5f:36:8e:3c:b7:f4:64:
69:ea:3a:7e:f8:92:c6:26:bb:bf:fa:bc:39:24:da:
69:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D6:0F:2E:D1:6E:DC:0A:D7:F9:9A:35:E7:D1:78:22:B1:34:88:6A
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/f9YPLtFu3ArX-Zo159F4IrE0iGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.198.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:f1:48:77:76:c4:5a:e6:f9:82:02:71:9c:41:51:5e:82:21:
dc:ee:1f:75:59:a9:ef:b0:40:81:77:dd:83:c0:20:67:ea:65:
d8:2a:bd:fe:44:8d:39:22:50:34:24:10:b3:a3:5d:0a:60:b0:
81:ff:9c:df:c2:41:05:56:34:ed:a8:c1:08:c5:54:2e:a9:9b:
e2:ab:12:5e:2b:24:94:2d:9e:5d:0c:bc:0b:ba:5d:a6:2c:8d:
ac:f6:ee:6f:aa:d6:e4:1c:df:99:5a:49:90:a2:d1:2a:db:bc:
a1:ea:1a:8c:06:33:15:93:0e:de:03:d6:00:5b:c7:78:e2:cf:
4b:f4:d0:84:ca:52:b0:62:0c:44:1d:af:46:80:0d:b9:56:13:
e5:59:06:b9:02:c6:21:b6:cd:49:aa:48:33:43:bf:c8:24:0b:
d7:14:05:ab:3d:04:be:4f:59:a1:aa:b9:4e:2e:3b:93:26:a3:
b8:b7:91:13:48:ae:5c:86:b8:d6:cf:11:ce:e4:da:47:be:d1:
e6:cb:ce:2d:3e:aa:73:58:fa:d0:f9:20:59:f8:4c:91:26:69:
bd:8f:65:b1:41:1e:6b:98:0c:78:1e:d5:2e:e7:c1:f6:ad:a0:
6e:39:f1:90:72:e7:27:32:15:86:4c:87:21:ce:8b:41:95:94:
12:3f:c7:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:24:07 2025 by rpki-client