Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/M3Thi1Ya4IN4ZDA265Nrr5IU17M.roa
File: M3Thi1Ya4IN4ZDA265Nrr5IU17M.roa (raw, json)
Hash identifier: QJl+XWpP6I/240GQyt1GqvHKqE+R6tTLzITBDk+9Cx4=
Subject key identifier: 33:74:E1:8B:56:1A:E0:83:78:64:30:36:EB:93:6B:AF:92:14:D7:B3
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 0D14B8
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/M3Thi1Ya4IN4ZDA265Nrr5IU17M.roa
Signing time: Mon 24 Jan 2022 08:49:58 +0000
ROA not before: Mon 24 Jan 2022 08:49:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.232.103.0/24 maxlen: 24
91.232.99.0/24 maxlen: 24
91.231.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857272 (0xd14b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jan 24 08:49:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3374e18b561ae08378643036eb936baf9214d7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6e:23:61:7f:b8:df:01:bc:4e:a5:0e:50:16:
d8:0b:56:6e:45:81:b6:4e:b5:ad:2d:29:47:41:3f:
9a:dc:7a:02:65:02:a3:4a:7d:99:25:16:72:16:b4:
1e:8f:8d:9d:7f:c0:a4:e1:e6:a7:6e:8a:00:61:ac:
b9:0b:d7:76:7f:6e:54:ab:28:e8:bf:2f:2f:fd:8e:
86:6b:ec:6f:f4:91:e8:b2:29:5a:2b:ed:c5:33:23:
2f:8b:45:b0:c5:f6:8b:85:c8:c5:39:19:0b:28:ef:
c8:ee:e1:8a:32:0c:dc:cc:56:eb:a3:f6:10:4e:63:
1f:e2:62:9b:ce:b4:26:65:3a:85:02:c7:23:e7:1c:
24:54:85:80:b3:09:c3:40:1e:bf:8b:45:5c:3f:b0:
3c:2b:a4:97:ff:38:ef:38:e0:4d:55:05:96:f9:b0:
9b:c9:18:47:49:0f:63:1d:34:d5:40:23:8c:2f:d8:
9a:86:fe:da:4f:b6:c7:8b:e0:2b:9f:f1:3c:96:e6:
27:bc:d9:e8:bf:14:73:de:27:7e:c2:bd:e1:7b:72:
41:e9:61:97:68:18:b1:b3:e5:a1:44:77:bc:7b:cc:
74:35:dc:39:e8:40:a1:85:c5:39:22:fa:6f:1a:34:
c2:66:2f:53:4a:3e:10:29:87:8f:c4:2d:7a:7f:b8:
46:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:74:E1:8B:56:1A:E0:83:78:64:30:36:EB:93:6B:AF:92:14:D7:B3
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/M3Thi1Ya4IN4ZDA265Nrr5IU17M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
91.232.99.0/24
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:2c:a4:2f:3c:71:c1:97:46:f7:d1:b9:5f:1e:25:2a:1f:d2:
7d:f7:b2:4d:46:ce:70:db:ff:7a:d1:43:f0:ee:11:c3:2d:60:
af:ab:8b:3f:33:72:09:05:e0:72:86:a4:1a:2c:03:d1:d1:91:
47:8b:23:65:eb:f1:1c:7a:21:3b:6a:41:0b:c2:7a:c8:d8:64:
66:2b:21:06:94:4e:82:27:a4:0f:45:ef:e6:bf:47:36:0c:5b:
8e:01:02:2f:7d:86:d4:76:3d:11:8d:49:22:2b:4a:88:e5:63:
72:05:b7:b8:a8:a8:24:ad:a0:a5:a4:4c:8a:56:50:b7:d9:18:
c1:28:7c:f5:8c:c2:b9:0a:de:08:ae:a9:99:7c:a0:3f:35:59:
21:c4:a7:19:1a:54:88:fb:0e:f8:d5:ff:1c:0c:79:ed:29:c2:
fb:2b:37:83:e1:2e:0e:50:5b:6e:80:bd:7e:7b:c1:16:19:f5:
d3:eb:89:e9:63:b6:2e:d8:21:48:44:ec:27:07:88:21:b2:6b:
d1:a8:98:97:51:db:8f:9c:54:c4:5a:06:ac:8c:ad:8b:12:53:
be:cc:31:1b:54:7e:b2:55:79:4e:ee:f2:34:14:ee:3c:0a:4e:
88:a5:9f:e4:6f:16:7e:a0:3b:6c:ba:60:05:33:28:d8:90:6a:
dd:f2:e2:56
-----BEGIN CERTIFICATE-----
MIIE+jCCA+KgAwIBAgIDDRS4MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUz
MTYzMTgyNDdkMjExODQxZjk2MjBhOWExMTMwMDEwZGRiNDg2ZjIwHhcNMjIwMTI0
MDg0OTU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzMzc0ZTE4YjU2MWFl
MDgzNzg2NDMwMzZlYjkzNmJhZjkyMTRkN2IzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzW4jYX+43wG8TqUOUBbYC1ZuRYG2TrWtLSlHQT+a3HoCZQKj
Sn2ZJRZyFrQej42df8Ck4eanbooAYay5C9d2f25Uqyjovy8v/Y6Ga+xv9JHosila
K+3FMyMvi0WwxfaLhcjFORkLKO/I7uGKMgzczFbro/YQTmMf4mKbzrQmZTqFAscj
5xwkVIWAswnDQB6/i0VcP7A8K6SX/zjvOOBNVQWW+bCbyRhHSQ9jHTTVQCOML9ia
hv7aT7bHi+Arn/E8luYnvNnovxRz3id+wr3he3JB6WGXaBixs+WhRHe8e8x0Ndw5
6EChhcU5IvpvGjTCZi9TSj4QKYePxC16f7hGMwIDAQABo4ICFTCCAhEwHQYDVR0O
BBYEFDN04YtWGuCDeGQwNuuTa6+SFNezMB8GA1UdIwQYMBaAFOMWMYJH0hGEH5Yg
qaETABDdtIbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEv
TTNUaGkxWWE0SU40WkRBMjY1TnJyNUlVMTdNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9l
ZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEvNHhZeGdrZlNFWVFm
bGlDcG9STUFFTjIwaHZJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsG
CCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAW+ecAwQAW+hjAwQAW+hnMA0GCSqG
SIb3DQEBCwUAA4IBAQAbLKQvPHHBl0b30blfHiUqH9J997JNRs5w2/960UPw7hHD
LWCvq4s/M3IJBeByhqQaLAPR0ZFHiyNl6/EceiE7akELwnrI2GRmKyEGlE6CJ6QP
Re/mv0c2DFuOAQIvfYbUdj0RjUkiK0qI5WNyBbe4qKgkraClpEyKVlC32RjBKHz1
jMK5Ct4IrqmZfKA/NVkhxKcZGlSI+w741f8cDHntKcL7KzeD4S4OUFtugL1+e8EW
GfXT64npY7Yu2CFIROwnB4ghsmvRqJiXUduPnFTEWgasjK2LElO+zDEbVH6yVXlO
7vI0FO48Ck6IpZ/kbxZ+oDtsumAFMyjYkGrd8uJW
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:36 2025 by rpki-client