Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/w3r2hu78GYoURqSgxWrUQRPtOW4.roa
File: w3r2hu78GYoURqSgxWrUQRPtOW4.roa (raw, json)
Hash identifier: va5hoBQ506zNgOoaO6Fx7ePpVr0n1z0nmdg23WU9+7Q=
Subject key identifier: C3:7A:F6:86:EE:FC:19:8A:14:46:A4:A0:C5:6A:D4:41:13:ED:39:6E
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 08243911
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/w3r2hu78GYoURqSgxWrUQRPtOW4.roa
Signing time: Sat 01 Jan 2022 03:52:28 +0000
ROA not before: Sat 01 Jan 2022 03:52:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133120
IP address blocks: 91.149.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136591633 (0x8243911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jan 1 03:52:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c37af686eefc198a1446a4a0c56ad44113ed396e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:92:2c:44:6d:9f:60:d2:a2:ca:2b:00:28:34:
18:0a:31:ec:c4:21:69:e5:e0:35:22:0d:a5:f5:08:
e1:f1:e8:90:ee:ab:56:01:ef:11:d6:6c:28:e8:0e:
c4:99:fd:86:67:26:9d:92:51:27:f0:06:1b:fe:c4:
e3:b3:a0:19:91:50:89:cb:c0:e5:27:de:02:05:67:
a2:a3:2b:b6:81:6a:7c:30:14:4a:ae:2a:76:c6:51:
8b:6f:fc:02:ac:19:21:2a:e8:a1:7b:02:50:00:c5:
ea:e7:c9:58:e8:13:f2:03:4c:44:63:40:78:15:37:
6a:98:8c:f1:74:b7:3e:ab:22:da:e4:a2:17:3b:86:
de:89:ba:ab:19:12:58:cb:23:9d:a0:2f:39:9e:d6:
c4:15:8a:5e:b7:dc:89:69:ce:1c:59:b5:87:91:76:
ca:54:9d:41:b9:fc:e3:34:85:26:01:e6:1e:3c:eb:
93:31:93:94:67:cb:c6:0f:c1:53:5a:c7:b2:96:49:
7c:5d:b9:3e:70:49:02:69:3b:1c:a3:99:43:44:bc:
f0:d9:43:ea:f8:50:8e:84:d2:ec:f9:bc:a0:28:16:
8b:5a:51:d6:79:19:da:d1:8c:b5:b2:5d:8f:37:5b:
06:6d:02:4f:26:5f:8b:3e:d8:87:30:e1:c4:8e:37:
8e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7A:F6:86:EE:FC:19:8A:14:46:A4:A0:C5:6A:D4:41:13:ED:39:6E
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/w3r2hu78GYoURqSgxWrUQRPtOW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.236.0/22
Signature Algorithm: sha256WithRSAEncryption
99:c9:19:fe:c6:5d:23:31:a2:70:a6:65:72:e3:4d:22:e8:1e:
e3:a7:02:bd:b0:7e:89:a0:b6:01:b0:45:57:79:f5:47:a1:e8:
84:67:17:4d:ef:48:78:2d:95:23:23:c4:4f:96:99:78:88:27:
c7:07:55:b3:44:63:fc:4d:b9:cb:40:5f:92:4e:cd:ba:3f:25:
f5:6a:11:e5:ed:d2:b0:9a:ee:b2:c9:cb:a8:a2:60:2f:6f:6b:
47:46:05:e2:69:b0:88:0a:89:35:eb:78:75:f8:da:19:6d:50:
8b:be:9a:aa:2d:8c:4b:a4:05:4b:02:92:b4:08:63:3b:87:47:
35:e6:8f:e1:5a:58:c4:01:08:70:b0:e8:2d:62:8d:91:ab:90:
9d:c7:42:80:15:69:6c:99:7a:99:1d:b2:bb:94:21:f2:77:53:
3f:30:86:6e:5b:c4:a7:b3:4e:d9:7f:b3:98:83:55:ac:f8:67:
78:88:d2:a3:a0:8b:5c:6a:f1:85:db:61:1e:c1:55:71:17:a9:
49:3b:13:06:92:72:eb:a1:78:f8:9f:86:32:47:56:54:9e:6c:
f6:ac:d3:a0:be:22:17:de:4e:0d:b3:5b:85:ac:d4:32:55:79:
ed:47:f5:f6:63:95:1c:f4:6c:3f:f0:48:0c:e5:f8:b7:c5:0c:
46:f8:86:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org