Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/zqJrCV6GnCWXIjwDDeqKZko_MzM.roa
File: zqJrCV6GnCWXIjwDDeqKZko_MzM.roa (raw, json)
Hash identifier: PTmRZIgGsk9QbxsUllyddIgNUEnYbf5YD/Ar6Zv2j4c=
Subject key identifier: CE:A2:6B:09:5E:86:9C:25:97:22:3C:03:0D:EA:8A:66:4A:3F:33:33
Certificate issuer: /CN=5178bd334e074232735a0127ff858afd4a0c30a6
Certificate serial: 0342ED61
Authority key identifier: 51:78:BD:33:4E:07:42:32:73:5A:01:27:FF:85:8A:FD:4A:0C:30:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXi9M04HQjJzWgEn_4WK_UoMMKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/zqJrCV6GnCWXIjwDDeqKZko_MzM.roa
Signing time: Sat 01 Jan 2022 04:53:24 +0000
ROA not before: Sat 01 Jan 2022 04:53:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3238
IP address blocks: 91.105.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54717793 (0x342ed61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5178bd334e074232735a0127ff858afd4a0c30a6
Validity
Not Before: Jan 1 04:53:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cea26b095e869c2597223c030dea8a664a3f3333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:61:e6:1b:ab:f8:ba:d4:9b:b9:02:de:1e:
b4:f0:2a:2e:0a:af:67:d6:9f:cd:62:40:6a:d3:19:
38:1c:65:7b:21:b1:72:e6:8a:e1:f7:52:ca:1f:7c:
08:1d:34:dd:73:0c:e4:a4:a5:33:7c:d0:7f:34:5c:
42:0c:bb:10:ed:af:65:35:d0:59:ef:77:2f:70:4a:
db:06:32:f7:3c:27:19:a6:8a:f1:e4:c2:bd:9e:f3:
43:c4:a8:6c:4b:f6:fb:96:2f:09:e2:43:96:32:22:
2e:16:8e:15:11:0d:38:c8:0d:7c:e9:69:9e:50:72:
f7:35:05:c7:91:a9:91:c2:ae:4a:df:62:02:aa:84:
1a:b0:00:07:29:ff:28:54:2b:64:65:70:0b:ba:8a:
94:d0:4d:28:6f:bd:19:3f:a1:8b:8c:48:3b:e5:67:
44:07:af:3a:94:cb:5d:ad:e7:72:5c:e6:b6:b5:fb:
98:04:e3:84:aa:f1:cc:3c:9b:35:a9:cd:79:ad:64:
c5:ff:2f:f4:05:68:bb:a9:8b:a2:5c:37:41:ea:b7:
69:e4:a8:15:9d:60:a6:aa:a7:74:bd:a4:31:3b:99:
b3:f9:88:6d:64:4d:3c:88:c6:e3:36:95:d5:49:05:
c6:c8:3b:d7:56:ea:93:ba:66:1b:9d:f1:86:f9:27:
a4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A2:6B:09:5E:86:9C:25:97:22:3C:03:0D:EA:8A:66:4A:3F:33:33
X509v3 Authority Key Identifier:
keyid:51:78:BD:33:4E:07:42:32:73:5A:01:27:FF:85:8A:FD:4A:0C:30:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXi9M04HQjJzWgEn_4WK_UoMMKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/zqJrCV6GnCWXIjwDDeqKZko_MzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b3359d-6bff-4148-bd20-089bad955210/1/UXi9M04HQjJzWgEn_4WK_UoMMKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.105.208.0/22
Signature Algorithm: sha256WithRSAEncryption
48:9d:18:fe:a9:eb:1e:6d:42:0e:eb:cc:81:09:5b:71:f8:83:
74:5b:3e:7a:71:b3:13:7e:6f:5b:e0:5c:ef:f6:5b:3f:6e:f5:
07:12:1c:9a:9c:64:17:20:4e:73:ee:7d:e9:6a:08:58:e4:f0:
7d:41:0f:e3:f9:8e:a3:01:dd:25:ef:4a:ed:41:c4:9b:2b:cb:
6f:7b:0d:3f:85:24:29:f9:5e:cb:2b:59:b8:76:1a:b4:e1:89:
40:0e:41:15:b8:fd:f0:58:de:65:c1:aa:e8:d5:65:b3:0b:7b:
c0:3e:49:4c:bd:a4:ab:b1:7a:b2:6e:9c:6e:96:e4:8b:c3:86:
98:51:d8:e2:85:79:ed:a1:46:2b:1a:57:b6:95:6b:ca:46:40:
c9:d0:96:53:1c:f0:07:2b:0a:43:23:09:09:6f:36:c2:d8:89:
21:c9:57:25:6f:d3:f8:78:b9:32:4e:53:a4:7f:ba:88:e4:1a:
57:6e:15:a0:91:f0:61:64:66:a9:0a:c1:5a:85:6e:b2:d0:53:
70:0c:0e:e8:36:2c:7c:d2:b1:3a:1f:00:bf:c6:85:57:d8:88:
bf:31:c8:e1:ba:c9:2e:ed:29:b9:2c:08:fe:54:05:35:63:ad:
07:bc:74:3f:68:16:2f:7c:79:1b:8b:00:76:5c:52:0d:cd:74:
c3:20:d3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:58 2025 by rpki-client