Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/l7qXEcWPr6wPsUb9fBgKKi9oEyw.roa
File: l7qXEcWPr6wPsUb9fBgKKi9oEyw.roa (raw, json)
Hash identifier: H2W9Pz0AuSJJYyAaZS4FoQM3NrpcYUHSRtYnXnuKAZo=
Subject key identifier: 97:BA:97:11:C5:8F:AF:AC:0F:B1:46:FD:7C:18:0A:2A:2F:68:13:2C
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 08EC347E
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/l7qXEcWPr6wPsUb9fBgKKi9oEyw.roa
Signing time: Tue 22 Mar 2022 14:01:28 +0000
ROA not before: Tue 22 Mar 2022 14:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29405
IP address blocks: 91.149.228.0/22 maxlen: 22
91.149.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149697662 (0x8ec347e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Mar 22 14:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97ba9711c58fafac0fb146fd7c180a2a2f68132c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ea:a0:d7:eb:a3:2b:36:0a:37:bc:74:2f:ca:
91:14:85:42:3f:1d:30:37:56:70:0e:86:29:6f:dc:
2e:8d:15:3e:69:f5:50:6a:82:c1:ab:0a:4c:c5:4b:
39:3c:d7:c6:44:11:ee:52:00:e2:91:d3:2f:74:76:
e1:17:44:0e:99:81:2d:66:aa:b2:81:74:55:56:cf:
7d:4c:ba:b6:56:9f:22:0d:00:00:7d:81:6a:e9:aa:
f5:0b:d2:a5:d5:a5:f0:87:b8:c3:65:f1:c6:ae:24:
6c:45:4e:f7:93:99:35:bb:99:1a:ed:ce:45:d2:93:
ff:6d:1d:d9:80:40:c0:21:c2:cf:a5:81:9a:28:ba:
f7:5e:d6:fe:86:cd:71:6e:a1:06:06:7c:21:7a:85:
fd:b8:91:ab:d3:32:88:a1:f7:89:a5:a8:04:cc:38:
c2:2f:4d:1e:24:41:78:52:29:3a:c5:c0:00:43:67:
0f:7e:f8:39:53:27:dd:f2:17:34:78:27:70:20:e3:
6d:0e:aa:81:57:5e:85:0f:46:36:e6:3a:f8:99:ef:
69:66:18:f6:48:24:a8:cf:f3:e7:9d:2f:f8:87:6a:
f8:92:3c:d0:92:1e:20:92:41:45:28:c4:c6:df:b9:
22:74:57:e9:a1:c9:4c:0c:d1:57:21:a0:e6:03:b7:
e1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:BA:97:11:C5:8F:AF:AC:0F:B1:46:FD:7C:18:0A:2A:2F:68:13:2C
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/l7qXEcWPr6wPsUb9fBgKKi9oEyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.228.0/22
91.149.244.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:e0:ea:44:a8:63:5a:b5:e6:0f:9b:d6:48:bf:ec:46:e1:28:
76:68:2e:9b:f6:f4:e8:fb:8a:fd:d4:dc:2b:d4:2a:a4:e6:ee:
4f:4c:94:37:5e:aa:72:5c:c4:fb:9b:18:6e:4b:83:cb:aa:82:
80:7d:58:ab:85:b2:9d:70:d4:32:e7:34:82:81:f3:86:57:79:
a6:ff:36:f2:cf:95:c9:52:e3:bb:d3:80:c8:c8:b7:2f:77:6c:
51:73:65:b5:10:ae:d5:08:38:29:e2:44:a4:c7:c4:e5:1c:d2:
45:1b:ad:aa:e2:d8:68:62:96:6a:b0:af:c2:f6:12:61:ff:1f:
6f:fe:ed:66:d1:0e:a4:2b:9c:80:bd:8d:10:b0:dd:6e:98:9d:
ca:35:4f:56:db:bf:d6:3e:98:29:6a:f1:79:0b:ac:de:80:09:
8f:14:3f:c7:32:a5:d1:3e:58:a0:35:a8:38:f6:25:c5:50:fe:
12:49:67:69:5b:b1:2a:61:34:0c:18:38:54:d8:1c:7e:fe:b9:
fc:a8:a0:c1:bb:b0:43:04:e2:32:6a:d7:0b:6c:a1:56:57:39:
e4:03:72:dc:92:a9:67:ec:50:ec:79:bb:10:8c:1f:fe:4e:fb:
3e:b1:08:80:f5:cb:9a:37:21:78:c8:83:a3:5b:9c:09:ea:fc:
dc:cc:89:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org