Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/kM4j3Bvew-Vi2uEsN_xznuHgrlU.roa
File: kM4j3Bvew-Vi2uEsN_xznuHgrlU.roa (raw, json)
Hash identifier: EeTpCyAmSO0ri+9d4EMfJDKuecV2QPUxCjUMhK+YrbQ=
Subject key identifier: 90:CE:23:DC:1B:DE:C3:E5:62:DA:E1:2C:37:FC:73:9E:E1:E0:AE:55
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 0823B971
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/kM4j3Bvew-Vi2uEsN_xznuHgrlU.roa
Signing time: Sat 01 Jan 2022 03:52:27 +0000
ROA not before: Sat 01 Jan 2022 03:52:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64286
IP address blocks: 91.149.242.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136558961 (0x823b971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jan 1 03:52:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90ce23dc1bdec3e562dae12c37fc739ee1e0ae55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d9:3e:83:37:96:62:9a:17:38:7d:0b:fa:4e:
f4:ac:6c:9b:83:1e:fe:0e:b9:66:53:c1:89:11:e7:
e6:fb:e4:55:dc:81:85:91:91:52:d0:4b:d4:c1:ab:
1c:bb:9f:57:ee:ab:00:72:ed:73:08:08:16:fb:0c:
3d:79:f4:1e:ca:e4:57:59:bb:77:9c:81:56:a6:7e:
cb:07:ff:fd:37:b7:c7:cd:41:33:07:62:f8:74:71:
93:5a:2d:71:66:ff:10:cd:b2:7c:e5:90:1a:02:d0:
ae:03:09:52:c2:d4:bf:32:f0:ba:fe:e9:90:86:4a:
e3:11:fb:91:92:5e:9c:17:3f:59:e9:7a:54:66:7e:
a7:3b:83:62:8c:60:1e:86:61:89:96:d2:eb:f2:79:
51:a5:ae:57:46:f5:3b:06:89:21:9e:64:8c:c4:99:
29:61:a7:47:b6:0f:d6:be:d4:d1:8b:9f:9c:7e:3e:
8e:0d:81:ea:63:4b:b7:92:38:6c:f1:1a:ee:7c:3b:
25:6e:10:2e:67:d7:80:01:a4:f7:ec:62:44:9a:33:
27:ef:ad:1d:75:2c:b6:e8:21:99:27:4e:a6:ae:28:
92:ec:00:f5:f9:c9:5a:08:2a:f3:ec:66:74:44:3d:
c4:7f:60:e8:cc:94:73:9b:e4:e0:51:f1:0f:76:14:
0e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:CE:23:DC:1B:DE:C3:E5:62:DA:E1:2C:37:FC:73:9E:E1:E0:AE:55
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/kM4j3Bvew-Vi2uEsN_xznuHgrlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.242.0/23
Signature Algorithm: sha256WithRSAEncryption
56:78:3c:13:8f:01:2d:bb:8b:8f:6b:72:7b:fa:7d:e5:48:78:
93:6a:83:48:aa:33:57:58:05:f0:e8:56:43:9a:33:07:be:42:
57:bb:3a:81:32:62:db:b7:1e:01:90:31:82:8a:bd:04:fc:11:
a7:a3:4f:74:ab:ba:40:e4:39:10:9e:43:c7:2e:be:f4:34:9b:
10:77:d9:8c:29:3c:43:b6:be:a6:ed:bf:f4:0e:ca:5d:65:45:
44:fa:22:b4:a4:6b:a4:93:e4:c4:73:d1:53:99:22:a4:7a:b0:
73:2f:7f:c2:57:38:aa:62:62:86:4c:e5:a0:4e:8a:7b:6b:b8:
54:f9:dc:77:f7:f8:e9:8f:3d:57:6d:69:f9:69:87:21:80:30:
8a:ad:55:c7:92:d0:ad:a0:15:de:68:48:7c:6a:0a:a1:d7:25:
63:0d:fa:54:30:80:36:d3:02:e3:67:82:00:29:a5:d9:5a:3d:
e8:64:a5:9d:47:a5:23:48:1f:23:58:ad:7b:0a:ba:28:42:18:
c7:c9:11:d2:a9:44:7c:3c:7e:f2:08:14:41:45:2d:e9:91:3b:
b7:8d:33:90:15:38:39:0f:de:2e:1e:a4:b1:8d:0d:dd:b4:46:
77:0a:7e:dd:20:83:ba:ae:47:61:9f:ec:98:1c:c8:0b:c7:ad:
b3:b0:bf:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECCO5cTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Njc4NTBlNTcxZjNmMmFjYTJjMWVjMWQ3ZTUwMmQ5YmQxODRjNDVjMB4XDTIyMDEw
MTAzNTIyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTBjZTIzZGMxYmRl
YzNlNTYyZGFlMTJjMzdmYzczOWVlMWUwYWU1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJzZPoM3lmKaFzh9C/pO9Kxsm4Me/g65ZlPBiRHn5vvkVdyB
hZGRUtBL1MGrHLufV+6rAHLtcwgIFvsMPXn0HsrkV1m7d5yBVqZ+ywf//Te3x81B
Mwdi+HRxk1otcWb/EM2yfOWQGgLQrgMJUsLUvzLwuv7pkIZK4xH7kZJenBc/Wel6
VGZ+pzuDYoxgHoZhiZbS6/J5UaWuV0b1OwaJIZ5kjMSZKWGnR7YP1r7U0YufnH4+
jg2B6mNLt5I4bPEa7nw7JW4QLmfXgAGk9+xiRJozJ++tHXUstughmSdOpq4okuwA
9fnJWggq8+xmdEQ9xH9g6MyUc5vk4FHxD3YUDqECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQziPcG97D5WLa4Sw3/HOe4eCuVTAfBgNVHSMEGDAWgBSmeFDlcfPyrKLB
7B1+UC2b0YTEXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BuaFE1WEh6OHF5aXdld2RmbEF0bTlHRXhGdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvMzMwOWI1LWY5M2YtNGM2Mi04ZGNlLWIwYzE1MWU1MTZjZi8x
L2tNNGozQnZldy1WaTJ1RXNOX3h6bnVIZ3JsVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
MzMwOWI1LWY5M2YtNGM2Mi04ZGNlLWIwYzE1MWU1MTZjZi8xL3BuaFE1WEh6OHF5
aXdld2RmbEF0bTlHRXhGdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVuV8jANBgkqhkiG9w0BAQsFAAOC
AQEAVng8E48BLbuLj2tye/p95Uh4k2qDSKozV1gF8OhWQ5ozB75CV7s6gTJi27ce
AZAxgoq9BPwRp6NPdKu6QOQ5EJ5Dxy6+9DSbEHfZjCk8Q7a+pu2/9A7KXWVFRPoi
tKRrpJPkxHPRU5kipHqwcy9/wlc4qmJihkzloE6Ke2u4VPncd/f46Y89V21p+WmH
IYAwiq1Vx5LQraAV3mhIfGoKodclYw36VDCANtMC42eCACml2Vo96GSlnUelI0gf
I1itewq6KEIYx8kR0qlEfDx+8ggUQUUt6ZE7t40zkBU4OQ/eLh6ksY0N3bRGdwp+
3SCDuq5HYZ/smBzIC8ets7C/qA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org