Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/s8vrFw5GoaUVNImkT6nCNsS_XJ4.roa
File: s8vrFw5GoaUVNImkT6nCNsS_XJ4.roa (raw, json)
Hash identifier: P/yRlZYbPks03INua0CTAxo6XVPJc7ZMXfNswglLUEg=
Subject key identifier: B3:CB:EB:17:0E:46:A1:A5:15:34:89:A4:4F:A9:C2:36:C4:BF:5C:9E
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 0822C022
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/s8vrFw5GoaUVNImkT6nCNsS_XJ4.roa
Signing time: Sat 01 Jan 2022 03:52:26 +0000
ROA not before: Sat 01 Jan 2022 03:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41354
IP address blocks: 91.149.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136495138 (0x822c022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jan 1 03:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3cbeb170e46a1a5153489a44fa9c236c4bf5c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a4:89:2f:93:79:39:11:e3:df:56:b5:26:3a:
33:5e:49:8d:49:95:a9:33:b1:db:29:0d:fd:b6:49:
6b:02:ae:48:53:e8:1e:86:69:95:cf:2f:2c:a8:bd:
78:aa:6d:39:b1:f0:5d:2a:6b:ce:8f:17:07:57:24:
c2:5e:4f:87:91:ad:ae:c8:a9:69:c2:88:02:a6:5d:
12:ed:8a:cb:f3:f5:85:85:78:ad:1b:7c:b2:80:06:
54:b9:36:0f:0a:50:6f:01:2c:bb:ee:de:57:e2:42:
73:de:54:ba:94:de:a2:3b:39:e5:da:82:97:ac:a1:
56:e0:d8:a8:42:fa:9d:fd:15:cc:f2:3c:96:52:89:
6f:3f:cd:4f:2e:d5:2e:3c:88:5e:8e:ad:95:d5:45:
1d:71:26:fc:59:7b:9e:aa:33:75:72:69:ba:2e:67:
2b:de:95:5a:0a:aa:85:e1:79:dc:70:9a:0d:69:53:
d6:9a:e4:e5:79:c9:39:53:24:c4:52:4e:56:f4:63:
63:1c:bb:66:95:65:a1:b5:47:18:65:f2:1f:03:44:
13:60:49:37:de:09:f7:95:2a:e9:0c:52:01:34:c1:
23:5f:80:b1:c2:45:a9:8e:76:a8:f3:ae:4e:b4:04:
e6:eb:8a:82:e4:41:ce:b6:c2:bd:1e:ab:e7:90:2f:
df:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CB:EB:17:0E:46:A1:A5:15:34:89:A4:4F:A9:C2:36:C4:BF:5C:9E
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/s8vrFw5GoaUVNImkT6nCNsS_XJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.241.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:8d:63:c7:22:e0:b0:de:bf:45:23:5e:e5:89:f0:17:7a:f9:
4d:e1:cf:bb:e4:4f:0f:77:0d:31:34:0c:2b:7a:89:af:d5:1b:
e0:d7:57:d2:6a:74:1f:69:6e:16:d3:9e:fe:2d:d5:6c:f2:90:
cb:eb:90:46:cc:4c:bc:cc:4a:c8:25:d4:41:15:c9:fb:c4:00:
7e:54:a6:cb:f1:d9:86:7f:de:e5:dc:96:76:3b:7b:bf:6d:f3:
75:2c:33:d4:10:43:41:eb:5f:d3:72:3a:f8:ed:2c:0f:a2:89:
06:2b:a5:e2:eb:34:4b:26:b0:07:3f:1b:fa:a9:55:d0:e0:df:
5f:ce:bd:1b:d5:dd:87:be:7a:9c:f7:bc:06:c7:a9:2e:50:e2:
aa:1d:2d:91:4c:b9:71:a4:cf:90:05:cc:3c:26:e8:e7:52:85:
1f:a6:2e:4b:9b:d6:80:a4:c7:a8:11:e1:3d:05:8f:2d:eb:7d:
d6:c6:d4:ba:40:f7:e9:ed:95:d6:71:66:67:f1:5b:b6:57:8a:
b3:94:fb:bc:22:6e:9c:b4:5c:67:50:95:f6:45:ed:5b:66:ee:
6e:55:ea:d9:41:e3:e7:12:02:38:e2:25:cd:c4:58:cb:8c:56:
6f:21:7b:65:13:fa:1c:3e:28:40:b0:6b:c8:e5:86:a5:e2:05:
8b:ca:57:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:43 2025 by rpki-client