Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/zKcgv6jcIynHRq_hLbZ3Qga8Xw0.roa
File: zKcgv6jcIynHRq_hLbZ3Qga8Xw0.roa (raw, json)
Hash identifier: PR8N/6NIr+Hswb1w2dsSSq0InCr+ss0Y69e8DoRIdcE=
Subject key identifier: CC:A7:20:BF:A8:DC:23:29:C7:46:AF:E1:2D:B6:77:42:06:BC:5F:0D
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 08D430CC
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/zKcgv6jcIynHRq_hLbZ3Qga8Xw0.roa
Signing time: Fri 11 Mar 2022 08:15:25 +0000
ROA not before: Fri 11 Mar 2022 08:15:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 91.149.200.0/24 maxlen: 24
91.149.228.0/22 maxlen: 22
91.149.244.0/22 maxlen: 22
91.149.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148123852 (0x8d430cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Mar 11 08:15:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cca720bfa8dc2329c746afe12db6774206bc5f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:da:51:8a:0e:a0:b6:d5:97:e3:1a:09:0e:
76:06:ad:22:8f:37:61:6d:fb:d1:24:4d:8a:c4:fe:
45:9b:e9:76:38:e3:99:83:2b:cd:60:f8:22:d1:e8:
d3:b5:92:28:b0:90:3a:14:23:94:6c:76:ed:57:bc:
4a:fd:5e:e7:a7:b6:32:ca:3e:d9:75:17:89:b0:5d:
44:07:2c:cb:6a:f6:84:69:57:e1:2d:ea:89:07:b4:
67:40:42:03:af:8e:49:3b:f8:7c:2e:c9:88:d3:b3:
8d:11:04:e0:97:3a:2a:36:58:d0:23:fd:a6:e5:2d:
2d:9f:9a:d0:1c:76:48:4f:2d:e9:4f:38:a1:59:c6:
1e:c5:b7:5a:f5:fa:79:3f:21:a8:ba:93:3f:0e:fb:
bc:b9:44:a1:ba:01:33:06:33:88:8e:4f:1d:96:56:
d3:1e:34:29:01:f4:bc:90:c8:4c:d8:73:9c:42:19:
6f:22:cb:69:8a:2a:5c:bf:63:b8:a1:c4:55:8a:2e:
98:8e:1d:19:f0:76:36:5b:86:3c:52:15:99:90:29:
ab:10:95:63:a7:dd:23:07:c7:cb:0b:f5:bd:9e:95:
63:fc:d9:47:99:46:4a:e6:37:6f:e9:7a:63:ac:95:
69:8e:c0:93:d9:b9:d3:df:fe:08:fe:7d:98:f3:c9:
18:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A7:20:BF:A8:DC:23:29:C7:46:AF:E1:2D:B6:77:42:06:BC:5F:0D
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/zKcgv6jcIynHRq_hLbZ3Qga8Xw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.200.0/24
91.149.228.0/22
91.149.244.0-91.149.251.255
Signature Algorithm: sha256WithRSAEncryption
5d:95:78:27:88:83:46:36:b4:2a:f2:c6:d6:ac:a7:86:06:2a:
f4:a0:b9:79:54:e9:48:36:96:50:25:b2:26:c8:25:16:83:66:
ae:db:ce:30:22:3d:a7:ec:9b:fa:e0:61:e8:a0:67:9a:19:2c:
3f:4e:27:cd:81:50:97:ba:d9:f3:1e:d7:4d:59:61:cb:23:dd:
c6:b9:71:8f:15:d8:a9:25:00:e6:65:5d:85:7f:14:d1:9c:54:
79:c8:f2:9a:4f:d9:b0:7f:be:12:25:73:3c:b0:40:e4:23:0f:
45:c2:e6:a5:72:c6:4f:96:95:39:14:db:89:98:9d:96:f1:61:
f0:aa:ec:88:32:ae:8a:bb:57:0b:20:b8:49:e4:ac:5a:92:43:
f1:60:00:63:c7:e1:80:25:e3:50:a4:c0:40:28:d5:69:d8:5b:
9d:a4:72:ed:59:a7:85:67:ad:f4:d5:3d:ff:09:9c:08:c0:2b:
d9:66:fb:f8:01:17:05:17:3b:f9:08:3b:f8:93:72:75:b3:73:
61:1b:fe:56:22:c5:d1:74:d5:26:b5:25:5b:be:6e:a5:43:2c:
b8:84:0f:70:05:3c:ec:be:c1:07:27:64:8c:3a:d4:07:f4:50:
91:57:93:03:a6:cb:f6:15:34:eb:3e:d3:c7:9b:3e:32:c6:b7:
43:7a:3b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org