Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/d_MQlVORS0YI9VtJk2jPqUzMCg0.roa
File: d_MQlVORS0YI9VtJk2jPqUzMCg0.roa (raw, json)
Hash identifier: hZalSQWbgSFfSOEjTKFTI0TBz64MeGTOWfxNhIsClcA=
Subject key identifier: 77:F3:10:95:53:91:4B:46:08:F5:5B:49:93:68:CF:A9:4C:CC:0A:0D
Certificate issuer: /CN=a5295237ab44bce35ddfc2627fd49a8c44612441
Certificate serial: 27E89473
Authority key identifier: A5:29:52:37:AB:44:BC:E3:5D:DF:C2:62:7F:D4:9A:8C:44:61:24:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pSlSN6tEvONd38Jif9SajERhJEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/d_MQlVORS0YI9VtJk2jPqUzMCg0.roa
Signing time: Sat 01 Jan 2022 13:00:22 +0000
ROA not before: Sat 01 Jan 2022 13:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35238
IP address blocks: 86.63.224.0/19 maxlen: 19
91.91.0.0/16 maxlen: 16
2a00:a580::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669553779 (0x27e89473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5295237ab44bce35ddfc2627fd49a8c44612441
Validity
Not Before: Jan 1 13:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77f3109553914b4608f55b499368cfa94ccc0a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:a8:6a:1a:f3:ad:72:e2:49:0f:a5:3b:b2:
c4:95:71:dc:3a:a1:83:41:be:32:74:77:27:12:fe:
f6:97:e4:0d:ee:d1:9a:eb:3c:4b:1f:90:e8:02:3c:
42:03:87:03:11:44:61:03:28:9a:b9:ed:c5:d6:67:
3e:e8:37:98:e2:e2:ac:00:c9:8e:95:37:71:ea:e1:
ba:96:6e:c4:f4:22:17:6e:63:cd:0c:7f:09:2a:ea:
f1:ff:f8:ef:8b:69:1f:d7:92:0a:db:7a:dc:71:c4:
84:b0:88:ea:20:46:5c:e6:7c:ad:c5:44:d7:8d:84:
bb:4d:2d:2b:b1:5f:e4:43:72:ef:df:74:da:13:48:
7b:64:32:2b:d9:48:cd:49:fb:69:32:80:a7:d1:30:
28:6d:1e:4a:7a:42:22:a2:cb:fb:84:be:86:57:5b:
b4:da:f5:d1:76:69:11:f4:79:c8:c5:3b:b0:02:67:
74:6a:65:45:58:5f:f4:ff:39:09:b2:27:03:2c:d6:
c7:59:72:bb:00:c4:96:b5:ec:2c:2e:74:5b:a7:f1:
90:b7:7c:08:bd:aa:56:86:97:36:3a:1a:4e:a8:63:
c3:07:be:bd:4c:71:3d:ee:50:6c:36:58:25:33:91:
df:a6:0e:61:1f:1b:91:65:14:cb:d8:ea:fd:fb:c3:
7f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F3:10:95:53:91:4B:46:08:F5:5B:49:93:68:CF:A9:4C:CC:0A:0D
X509v3 Authority Key Identifier:
keyid:A5:29:52:37:AB:44:BC:E3:5D:DF:C2:62:7F:D4:9A:8C:44:61:24:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pSlSN6tEvONd38Jif9SajERhJEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/d_MQlVORS0YI9VtJk2jPqUzMCg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0951d7-3f67-4bd4-904d-c94feaa6cb79/1/pSlSN6tEvONd38Jif9SajERhJEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.63.224.0/19
91.91.0.0/16
IPv6:
2a00:a580::/32
Signature Algorithm: sha256WithRSAEncryption
9d:1e:7c:b3:24:89:c7:3e:7d:2f:4a:c2:60:d3:ed:64:6d:24:
5a:bb:1d:c6:83:98:51:26:f2:9b:7a:ae:ea:2e:64:dc:74:ce:
27:ca:55:0a:fe:06:02:42:83:fe:bf:97:39:9a:73:d7:40:56:
b3:40:40:cf:74:31:b4:1a:93:09:6d:16:32:03:e2:ca:4e:2e:
43:7f:fc:c6:c7:df:87:a2:00:0b:df:13:53:16:a1:e5:ac:1a:
21:b5:90:71:2e:7a:ff:65:0f:bf:48:14:d8:9e:02:7b:a9:57:
27:42:61:19:74:ce:bd:53:71:a4:5f:ff:43:da:d9:a6:37:1d:
be:89:b7:25:b2:e4:89:9c:02:e8:08:37:38:7d:55:3d:46:d8:
b5:ca:06:2c:0e:3d:d4:93:21:f5:3a:ce:67:16:78:7c:01:c5:
5f:a1:47:16:8c:b1:80:f7:83:0f:06:0c:bf:cd:5a:b2:ea:52:
05:49:b0:ee:03:1c:0a:4f:f8:22:c5:9d:70:8b:ed:f7:1a:5e:
a0:f1:ff:60:da:5f:04:ec:d0:c7:de:86:d0:ca:51:85:9f:87:
e2:c1:4b:1b:11:1b:c7:d1:40:cd:8b:49:a8:6e:3e:df:a3:13:
0e:ad:08:2a:99:94:40:1f:b2:dc:43:70:4e:ba:a2:74:50:40:
1b:c4:b2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:02 2025 by rpki-client