Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6b6ef2-82e2-429a-a797-c682232b5525/1/jDLthW2ehpqE1xDreHc1Isu5naI.roa
File: jDLthW2ehpqE1xDreHc1Isu5naI.roa (raw, json)
Hash identifier: ldZ3YCMzEjvfawfPGL8foyRhzoNhs5dxbRSYC5JQ3h0=
Subject key identifier: 8C:32:ED:85:6D:9E:86:9A:84:D7:10:EB:78:77:35:22:CB:B9:9D:A2
Certificate issuer: /CN=a82a0705aa84a63b01bf7d56d61ffef55d984992
Certificate serial: 01857355FB0B5F689F6BD394C5AA24BB26CD
Authority key identifier: A8:2A:07:05:AA:84:A6:3B:01:BF:7D:56:D6:1F:FE:F5:5D:98:49:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCoHBaqEpjsBv31W1h_-9V2YSZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6b6ef2-82e2-429a-a797-c682232b5525/1/jDLthW2ehpqE1xDreHc1Isu5naI.roa
Signing time: Mon 02 Jan 2023 16:34:52 +0000
ROA not before: Mon 02 Jan 2023 16:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61971
IP address blocks: 91.226.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:fb:0b:5f:68:9f:6b:d3:94:c5:aa:24:bb:26:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a82a0705aa84a63b01bf7d56d61ffef55d984992
Validity
Not Before: Jan 2 16:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c32ed856d9e869a84d710eb78773522cbb99da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a2:89:10:d0:a0:b5:fe:82:00:53:80:15:41:
8d:29:84:ed:5d:1e:f8:b1:78:a8:b8:3f:b5:10:20:
dd:47:1d:b0:17:67:53:5c:df:cc:45:db:43:b7:47:
d1:d2:e8:db:c7:0a:9e:03:45:80:a3:a0:d5:5f:73:
12:fc:18:e2:70:47:06:bb:c6:13:d0:da:48:7f:e0:
16:28:e8:17:5d:67:48:2a:21:32:8e:5f:f3:91:19:
7a:d4:d1:73:95:f4:98:88:63:d8:8e:ac:01:21:bc:
c1:27:3f:43:14:8b:7b:92:67:7a:a9:a2:08:84:e0:
ad:02:2d:37:3c:c9:f6:96:49:46:34:9d:0d:8b:9a:
52:c4:98:f0:21:56:c4:ac:1a:e4:a4:f4:e2:0d:0a:
b7:5b:fc:22:48:e3:f2:19:72:3f:7d:1b:c1:70:f9:
f8:30:f2:7c:49:3a:50:77:d7:c4:3b:d4:74:c8:a9:
ea:27:09:25:ae:24:e1:4a:f3:f7:ec:da:14:68:99:
6a:e4:5c:91:8b:4d:52:e1:79:fe:93:a3:ce:25:53:
0b:bc:2c:c2:8e:ee:7a:b9:f7:98:a6:a9:1a:dc:92:
45:cb:8a:cd:8d:7e:46:4d:3d:8b:9b:e4:74:3c:f3:
09:6b:d2:9a:91:05:b8:88:79:f6:e9:6b:56:69:2f:
41:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:32:ED:85:6D:9E:86:9A:84:D7:10:EB:78:77:35:22:CB:B9:9D:A2
X509v3 Authority Key Identifier:
keyid:A8:2A:07:05:AA:84:A6:3B:01:BF:7D:56:D6:1F:FE:F5:5D:98:49:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCoHBaqEpjsBv31W1h_-9V2YSZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6b6ef2-82e2-429a-a797-c682232b5525/1/jDLthW2ehpqE1xDreHc1Isu5naI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6b6ef2-82e2-429a-a797-c682232b5525/1/qCoHBaqEpjsBv31W1h_-9V2YSZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.136.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:87:0a:02:43:75:cf:93:6d:ef:76:26:1b:78:e2:0c:50:92:
c3:fb:e4:e8:0a:b1:69:5c:f2:da:3e:b6:8d:c6:1d:46:b9:55:
73:27:c7:74:27:6f:fa:7d:e8:c1:d3:1e:07:f7:22:22:6e:3c:
45:3c:61:49:07:4b:3b:36:f8:7d:ff:87:40:f9:1c:c0:6f:6b:
36:4a:6e:10:79:b2:82:00:5f:95:74:c9:09:d3:1a:79:a6:d2:
1a:72:4e:90:ec:3a:27:86:fe:d5:61:39:7f:36:16:57:b5:69:
23:f1:29:4e:ef:7a:e8:9e:50:37:5c:cb:4b:7e:ff:c5:c8:93:
0d:a6:33:8b:a9:66:34:80:85:24:03:53:25:f4:8e:39:91:c9:
c3:ba:5d:d7:b5:c5:db:b0:71:3d:a2:3c:f1:45:69:0e:4a:34:
68:02:6d:61:c3:65:4a:b5:0d:88:4e:68:66:44:13:54:a7:eb:
21:b0:f2:1e:32:13:e6:a2:f6:da:24:d2:31:b5:06:4f:e1:a0:
e3:0d:95:cb:fc:4b:ac:96:58:19:06:27:9d:19:73:af:6e:8b:
af:27:d6:30:11:26:cc:e9:ad:e5:41:05:34:a5:70:bf:20:01:
b0:0e:3b:77:4d:82:00:5b:2e:88:ab:15:7d:29:71:1a:1a:de:
7a:65:cc:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzVfsLX2ifa9OUxaokuybNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4MmEwNzA1YWE4NGE2M2IwMWJmN2Q1NmQ2MWZmZWY1NWQ5
ODQ5OTIwHhcNMjMwMTAyMTYzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzMyZWQ4NTZkOWU4NjlhODRkNzEwZWI3ODc3MzUyMmNiYjk5ZGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaKJENCgtf6CAFOAFUGNKYTtXR74
sXiouD+1ECDdRx2wF2dTXN/MRdtDt0fR0ujbxwqeA0WAo6DVX3MS/BjicEcGu8YT
0NpIf+AWKOgXXWdIKiEyjl/zkRl61NFzlfSYiGPYjqwBIbzBJz9DFIt7kmd6qaII
hOCtAi03PMn2lklGNJ0Ni5pSxJjwIVbErBrkpPTiDQq3W/wiSOPyGXI/fRvBcPn4
MPJ8STpQd9fEO9R0yKnqJwklriThSvP37NoUaJlq5FyRi01S4Xn+k6POJVMLvCzC
ju56ufeYpqka3JJFy4rNjX5GTT2Lm+R0PPMJa9KakQW4iHn26WtWaS9BRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIwy7YVtnoaahNcQ63h3NSLLuZ2iMB8GA1UdIwQY
MBaAFKgqBwWqhKY7Ab99VtYf/vVdmEmSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUNvSEJhcUVwanNCdjMxVzFoXy05VjJZU1pJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy82YjZlZjItODJlMi00MjlhLWE3OTct
YzY4MjIzMmI1NTI1LzEvakRMdGhXMmVocHFFMXhEcmVIYzFJc3U1bmFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy82YjZlZjItODJlMi00MjlhLWE3OTctYzY4MjIzMmI1NTI1
LzEvcUNvSEJhcUVwanNCdjMxVzFoXy05VjJZU1pJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+KIMA0G
CSqGSIb3DQEBCwUAA4IBAQBthwoCQ3XPk23vdiYbeOIMUJLD++ToCrFpXPLaPraN
xh1GuVVzJ8d0J2/6fejB0x4H9yIibjxFPGFJB0s7Nvh9/4dA+RzAb2s2Sm4QebKC
AF+VdMkJ0xp5ptIack6Q7Donhv7VYTl/NhZXtWkj8SlO73ronlA3XMtLfv/FyJMN
pjOLqWY0gIUkA1Ml9I45kcnDul3XtcXbsHE9ojzxRWkOSjRoAm1hw2VKtQ2ITmhm
RBNUp+shsPIeMhPmovbaJNIxtQZP4aDjDZXL/EusllgZBiedGXOvbouvJ9YwESbM
6a3lQQU0pXC/IAGwDjt3TYIAWy6IqxV9KXEaGt56Zcyl
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:25 2025 by rpki-client