Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/3HhXYN0ZNiEJK9ckRSDgt5ZL0F4.roa
File: 3HhXYN0ZNiEJK9ckRSDgt5ZL0F4.roa (raw, json)
Hash identifier: Q7fAEB8X6Lkz8GFEaYl+P5IRsiINhHxAIe+OKIiDhmM=
Subject key identifier: DC:78:57:60:DD:19:36:21:09:2B:D7:24:45:20:E0:B7:96:4B:D0:5E
Certificate issuer: /CN=288798a754d6da2aca18f617f63d3d5f14297b81
Certificate serial: 09DC9130
Authority key identifier: 28:87:98:A7:54:D6:DA:2A:CA:18:F6:17:F6:3D:3D:5F:14:29:7B:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIeYp1TW2irKGPYX9j09XxQpe4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/3HhXYN0ZNiEJK9ckRSDgt5ZL0F4.roa
Signing time: Sat 01 Jan 2022 08:53:19 +0000
ROA not before: Sat 01 Jan 2022 08:53:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47992
IP address blocks: 91.213.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165450032 (0x9dc9130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=288798a754d6da2aca18f617f63d3d5f14297b81
Validity
Not Before: Jan 1 08:53:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc785760dd193621092bd7244520e0b7964bd05e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6d:0f:0b:1e:13:68:f2:f3:de:4d:fd:1d:a9:
6a:7f:df:06:1a:86:a7:d5:77:9e:0c:25:ec:3a:bf:
d6:92:e0:ae:fb:0a:c6:ee:71:5e:b9:c0:cb:19:40:
25:41:93:cf:7a:73:1a:d0:4c:c2:e1:b8:1a:52:e6:
af:a4:70:ce:08:f3:e4:1e:1a:84:b1:d2:9a:52:4e:
31:ba:5f:2a:6b:42:7b:42:d2:e6:c9:8d:fd:a1:48:
8a:ef:b4:fe:f4:36:9b:44:75:da:5d:be:18:7f:4a:
8a:28:95:0c:08:80:1e:11:9b:5d:80:9e:53:be:9e:
99:c9:3b:d1:cd:9d:d6:ff:c6:34:11:9c:96:7a:a2:
cd:6f:72:fc:c2:3c:bc:e4:46:de:5e:6f:59:72:a7:
72:8b:4f:46:99:73:87:2f:73:9e:6e:ac:af:80:61:
9d:0f:5d:8f:a4:ad:dc:46:b1:6b:30:b2:09:23:53:
80:c7:4a:39:d0:d3:e4:e6:50:a3:8c:da:0f:db:c1:
26:b0:1e:8a:ce:d7:3c:09:98:ae:75:cc:00:20:96:
ea:59:e7:db:6b:28:ab:42:f3:2b:70:ec:17:09:e7:
bd:20:d4:16:b0:89:d1:0e:bc:30:fd:92:a9:f6:54:
dc:4e:ad:52:a3:3f:78:da:41:76:7f:ae:43:b1:d6:
89:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:78:57:60:DD:19:36:21:09:2B:D7:24:45:20:E0:B7:96:4B:D0:5E
X509v3 Authority Key Identifier:
keyid:28:87:98:A7:54:D6:DA:2A:CA:18:F6:17:F6:3D:3D:5F:14:29:7B:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIeYp1TW2irKGPYX9j09XxQpe4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/3HhXYN0ZNiEJK9ckRSDgt5ZL0F4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/KIeYp1TW2irKGPYX9j09XxQpe4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.91.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:83:08:d8:ab:fa:44:75:74:16:30:a1:02:08:24:92:96:dd:
86:24:32:3e:b9:39:82:9f:b2:1a:04:78:55:e1:44:d1:93:f2:
d0:54:09:f4:91:ad:0d:4f:8b:40:b1:cf:5c:fc:bc:db:7b:14:
57:da:7f:cd:2f:b6:9f:ff:2c:bb:00:f8:bb:a9:f3:de:e6:ef:
ee:58:c8:2e:2c:fb:f4:f2:81:0e:2f:e4:bc:62:d8:54:ed:2a:
5a:da:5a:5f:a7:7a:6c:c7:4c:48:79:bb:99:50:02:d4:dc:ac:
3f:7b:5c:d3:e5:b6:e2:cd:8e:6f:43:4d:36:15:25:e4:cf:bd:
c4:43:92:49:96:84:91:14:08:49:00:9b:f0:39:3e:7b:63:b6:
13:0f:19:4c:95:56:01:df:6d:30:bb:13:5b:a0:d6:04:ab:67:
47:1c:9d:c1:31:ea:80:99:ca:8d:3f:ec:19:f1:33:a6:41:09:
5b:6a:5b:c1:44:1f:f4:2e:bc:5d:fd:c4:88:41:fd:5b:83:c3:
1a:ce:5c:f3:32:b2:b4:05:74:11:45:45:e6:1b:d8:b1:58:13:
f0:8b:8c:d5:64:8f:34:04:dd:a7:7a:e8:a8:d9:bd:62:10:41:
8e:c2:e0:c5:94:f7:7d:9f:5c:be:a2:15:5d:aa:72:7d:4a:e3:
35:77:01:72
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECdyRMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ODg3OThhNzU0ZDZkYTJhY2ExOGY2MTdmNjNkM2Q1ZjE0Mjk3YjgxMB4XDTIyMDEw
MTA4NTMxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGM3ODU3NjBkZDE5
MzYyMTA5MmJkNzI0NDUyMGUwYjc5NjRiZDA1ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANttDwseE2jy895N/R2pan/fBhqGp9V3ngwl7Dq/1pLgrvsK
xu5xXrnAyxlAJUGTz3pzGtBMwuG4GlLmr6Rwzgjz5B4ahLHSmlJOMbpfKmtCe0LS
5smN/aFIiu+0/vQ2m0R12l2+GH9KiiiVDAiAHhGbXYCeU76emck70c2d1v/GNBGc
lnqizW9y/MI8vORG3l5vWXKncotPRplzhy9znm6sr4BhnQ9dj6St3EaxazCyCSNT
gMdKOdDT5OZQo4zaD9vBJrAeis7XPAmYrnXMACCW6lnn22soq0LzK3DsFwnnvSDU
FrCJ0Q68MP2SqfZU3E6tUqM/eNpBdn+uQ7HWiS8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTceFdg3Rk2IQkr1yRFIOC3lkvQXjAfBgNVHSMEGDAWgBQoh5inVNbaKsoY
9hf2PT1fFCl7gTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tJZVlwMVRXMmlyS0dQWVg5ajA5WHhRcGU0RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvMmY2OWM1LWEzODYtNGZhNS04MjE1LTg5MDZiZDNiYzkwYi8x
LzNIaFhZTjBaTmlFSks5Y2tSU0RndDVaTDBGNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
MmY2OWM1LWEzODYtNGZhNS04MjE1LTg5MDZiZDNiYzkwYi8xL0tJZVlwMVRXMmly
S0dQWVg5ajA5WHhRcGU0RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvVWzANBgkqhkiG9w0BAQsFAAOC
AQEAWoMI2Kv6RHV0FjChAggkkpbdhiQyPrk5gp+yGgR4VeFE0ZPy0FQJ9JGtDU+L
QLHPXPy823sUV9p/zS+2n/8suwD4u6nz3ubv7ljILiz79PKBDi/kvGLYVO0qWtpa
X6d6bMdMSHm7mVAC1NysP3tc0+W24s2Ob0NNNhUl5M+9xEOSSZaEkRQISQCb8Dk+
e2O2Ew8ZTJVWAd9tMLsTW6DWBKtnRxydwTHqgJnKjT/sGfEzpkEJW2pbwUQf9C68
Xf3EiEH9W4PDGs5c8zKytAV0EUVF5hvYsVgT8IuM1WSPNATdp3roqNm9YhBBjsLg
xZT3fZ9cvqIVXapyfUrjNXcBcg==
-----END CERTIFICATE-----
Generated at Fri Feb 21 13:02:22 2025 by rpki-client