Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/n7ejlkZb-FrvuylcPqCzl8rPtt0.roa
File: n7ejlkZb-FrvuylcPqCzl8rPtt0.roa (raw, json)
Hash identifier: QxS5U47GUXWB8BWqrxuvZMA3Tzw4PCRzKU8m0ENnv8s=
Subject key identifier: 9F:B7:A3:96:46:5B:F8:5A:EF:BB:29:5C:3E:A0:B3:97:CA:CF:B6:DD
Certificate issuer: /CN=5178bd334e074232735a0127ff858afd4a0c30a6
Certificate serial: 01857155538286A325A31EF102A542AFECCB
Authority key identifier: 51:78:BD:33:4E:07:42:32:73:5A:01:27:FF:85:8A:FD:4A:0C:30:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXi9M04HQjJzWgEn_4WK_UoMMKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/n7ejlkZb-FrvuylcPqCzl8rPtt0.roa
Signing time: Mon 02 Jan 2023 07:14:55 +0000
ROA not before: Mon 02 Jan 2023 07:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3238
IP address blocks: 91.105.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:53:82:86:a3:25:a3:1e:f1:02:a5:42:af:ec:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5178bd334e074232735a0127ff858afd4a0c30a6
Validity
Not Before: Jan 2 07:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fb7a396465bf85aefbb295c3ea0b397cacfb6dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d3:4f:c1:b0:4c:fe:bb:9b:15:72:55:70:6a:
32:3c:cf:f8:6e:60:7c:77:19:7e:27:7e:dd:88:77:
03:02:a3:15:a0:bd:c2:66:6c:cf:f6:72:d3:2b:92:
95:89:b5:5f:95:a2:ed:e0:ba:44:85:a4:c7:37:81:
a6:33:2f:79:ec:f5:e1:f7:a8:13:ce:ee:48:2e:3e:
ba:54:36:6d:1b:58:8e:c3:32:4f:05:9b:39:75:9f:
b6:9c:6b:49:2b:6a:93:1f:4e:64:1e:f8:eb:b3:02:
49:b2:67:62:65:d7:91:cf:dd:58:43:41:1b:e7:70:
d3:46:f3:a9:f2:de:d0:a3:2a:13:20:da:e5:17:d4:
86:4d:a5:0c:6e:37:31:fc:d6:cd:23:db:82:e6:a4:
8a:87:20:08:d8:c2:f5:3c:c5:f0:7d:24:a1:ba:b1:
94:f4:7c:a9:c2:d7:bb:f9:69:dd:0f:87:80:20:89:
da:32:21:20:71:3e:1f:a0:db:68:19:3b:0c:d1:1b:
9b:a6:f3:37:cb:d6:51:52:bc:4e:23:36:ad:34:7b:
38:6d:78:3b:ab:1d:d1:89:9c:cb:e1:2b:77:58:8d:
96:c2:69:64:4f:4b:60:ec:8d:f1:a5:a3:a9:51:df:
21:5e:a5:63:ec:c8:55:d7:64:87:50:d7:32:bd:79:
83:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B7:A3:96:46:5B:F8:5A:EF:BB:29:5C:3E:A0:B3:97:CA:CF:B6:DD
X509v3 Authority Key Identifier:
keyid:51:78:BD:33:4E:07:42:32:73:5A:01:27:FF:85:8A:FD:4A:0C:30:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXi9M04HQjJzWgEn_4WK_UoMMKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/n7ejlkZb-FrvuylcPqCzl8rPtt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/UXi9M04HQjJzWgEn_4WK_UoMMKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.105.208.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:fe:d9:25:f2:d4:3c:1a:ad:5c:fb:d9:5e:09:ba:75:d2:4a:
16:58:36:70:d3:7e:68:e6:4e:92:5b:a1:92:4b:3e:bc:4c:9f:
44:f3:96:6a:45:f6:28:c5:d3:5c:1a:22:be:b0:13:46:e4:e8:
ad:ea:40:12:61:95:51:01:c2:fb:0f:25:36:d0:86:f7:06:a0:
71:6f:f2:3b:d3:61:23:f1:b5:ad:1c:13:f6:4d:be:d7:7a:e9:
b6:f3:62:1c:76:f4:80:eb:84:93:72:d4:ac:81:65:02:1b:55:
8c:18:47:90:07:07:fa:77:82:39:d9:8e:0d:cd:65:8e:3f:32:
63:ae:22:f7:f6:5f:3f:5a:4f:89:25:f3:00:cf:70:48:29:06:
44:81:17:74:4f:10:9c:85:a4:e5:f9:42:f6:dc:c5:96:3a:c6:
1a:6b:0c:4a:e0:4d:44:a6:98:0f:40:0f:a5:1f:d8:e8:d6:a2:
38:e3:e6:5e:e1:00:92:bd:40:44:5c:6a:fe:3b:3e:1e:90:88:
58:46:7d:cd:22:2b:0a:5d:f2:0c:1d:e6:6b:11:02:15:9e:3e:
d3:a8:92:e2:0c:57:53:92:19:b7:8a:68:ab:1d:c4:92:b7:14:
e5:fd:b6:44:0f:5e:9e:39:60:9a:87:38:31:f6:32:13:c4:6d:
64:25:23:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxVVOChqMlox7xAqVCr+zLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNzhiZDMzNGUwNzQyMzI3MzVhMDEyN2ZmODU4YWZkNGEw
YzMwYTYwHhcNMjMwMTAyMDcxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmI3YTM5NjQ2NWJmODVhZWZiYjI5NWMzZWEwYjM5N2NhY2ZiNmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndNPwbBM/rubFXJVcGoyPM/4bmB8
dxl+J37diHcDAqMVoL3CZmzP9nLTK5KVibVflaLt4LpEhaTHN4GmMy957PXh96gT
zu5ILj66VDZtG1iOwzJPBZs5dZ+2nGtJK2qTH05kHvjrswJJsmdiZdeRz91YQ0Eb
53DTRvOp8t7QoyoTINrlF9SGTaUMbjcx/NbNI9uC5qSKhyAI2ML1PMXwfSShurGU
9Hypwte7+WndD4eAIInaMiEgcT4foNtoGTsM0RubpvM3y9ZRUrxOIzatNHs4bXg7
qx3RiZzL4St3WI2WwmlkT0tg7I3xpaOpUd8hXqVj7MhV12SHUNcyvXmDOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ+3o5ZGW/ha77spXD6gs5fKz7bdMB8GA1UdIwQY
MBaAFFF4vTNOB0Iyc1oBJ/+Fiv1KDDCmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVhpOU0wNEhRakp6V2dFbl80V0tfVW9NTUtZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9iMzM1OWQtNmJmZi00MTQ4LWJkMjAt
MDg5YmFkOTU1MjEwLzEvbjdlamxrWmItRnJ2dXlsY1BxQ3psOHJQdHQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9iMzM1OWQtNmJmZi00MTQ4LWJkMjAtMDg5YmFkOTU1MjEw
LzEvVVhpOU0wNEhRakp6V2dFbl80V0tfVW9NTUtZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW2nQMA0G
CSqGSIb3DQEBCwUAA4IBAQCw/tkl8tQ8Gq1c+9leCbp10koWWDZw035o5k6SW6GS
Sz68TJ9E85ZqRfYoxdNcGiK+sBNG5Oit6kASYZVRAcL7DyU20Ib3BqBxb/I702Ej
8bWtHBP2Tb7Xeum282IcdvSA64STctSsgWUCG1WMGEeQBwf6d4I52Y4NzWWOPzJj
riL39l8/Wk+JJfMAz3BIKQZEgRd0TxCchaTl+UL23MWWOsYaawxK4E1EppgPQA+l
H9jo1qI44+Ze4QCSvUBEXGr+Oz4ekIhYRn3NIisKXfIMHeZrEQIVnj7TqJLiDFdT
khm3imirHcSStxTl/bZED16eOWCahzgx9jITxG1kJSNc
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:59 2025 by rpki-client