Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/05a772-c920-4d99-9a05-e2cb9124f543/1/9epAapRLa2-y9lN1ApORscaoZd4.roa
File: 9epAapRLa2-y9lN1ApORscaoZd4.roa (raw, json)
Hash identifier: jWgBbxuGWdczMegs/hqHXTkA139wTkt7FmIrjiwE8U4=
Subject key identifier: F5:EA:40:6A:94:4B:6B:6F:B2:F6:53:75:02:93:91:B1:C6:A8:65:DE
Certificate issuer: /CN=4b3152f0d77e057fb2c9bf80d803329879440776
Certificate serial: 01856DB878D798CCAD907D2A857CE1F431A2
Authority key identifier: 4B:31:52:F0:D7:7E:05:7F:B2:C9:BF:80:D8:03:32:98:79:44:07:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SzFS8Nd-BX-yyb-A2AMymHlEB3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/05a772-c920-4d99-9a05-e2cb9124f543/1/9epAapRLa2-y9lN1ApORscaoZd4.roa
Signing time: Sun 01 Jan 2023 14:24:44 +0000
ROA not before: Sun 01 Jan 2023 14:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44285
IP address blocks: 91.247.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:78:d7:98:cc:ad:90:7d:2a:85:7c:e1:f4:31:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3152f0d77e057fb2c9bf80d803329879440776
Validity
Not Before: Jan 1 14:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5ea406a944b6b6fb2f65375029391b1c6a865de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:88:69:0f:19:e7:23:3d:71:86:a5:49:6e:5b:
9a:3d:37:ac:b1:b3:ae:2f:bd:72:d6:3b:56:a2:41:
30:8d:fd:b9:aa:5d:b0:36:af:5c:54:35:6c:b2:7f:
8b:33:cb:67:9e:cd:fe:7c:cd:37:23:4c:78:50:09:
45:97:f0:d6:b8:1c:a6:37:0a:ce:56:e7:e6:7e:0b:
48:5f:c6:0b:92:60:35:2a:b4:c5:5c:69:d7:a5:55:
44:28:88:ce:a7:f5:90:b8:ac:56:6c:56:68:0b:ec:
76:d8:4f:57:a5:1b:72:bb:df:b8:11:e2:20:7b:03:
61:43:f9:4d:bd:a6:05:b0:0c:38:02:ef:91:e5:4a:
fa:6d:83:39:19:31:d2:af:90:65:e8:1b:90:c0:6c:
e4:c9:ec:8d:05:31:e3:2d:ca:50:a6:33:b4:02:da:
64:03:19:61:98:fa:bd:f7:6c:5a:49:eb:27:9c:c2:
88:85:1e:a3:92:a5:a8:ae:2a:11:da:66:3d:18:45:
05:6c:d8:d7:31:f7:e7:12:a1:10:ae:d2:d2:26:3f:
40:83:76:7f:cd:36:e2:c6:b8:80:a4:94:63:18:f2:
85:ff:2e:2e:3a:87:d9:22:58:a4:2a:f5:cb:d8:6c:
43:7d:63:b1:3c:d9:ed:6f:03:bd:52:a8:aa:70:4a:
57:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:EA:40:6A:94:4B:6B:6F:B2:F6:53:75:02:93:91:B1:C6:A8:65:DE
X509v3 Authority Key Identifier:
keyid:4B:31:52:F0:D7:7E:05:7F:B2:C9:BF:80:D8:03:32:98:79:44:07:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzFS8Nd-BX-yyb-A2AMymHlEB3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/05a772-c920-4d99-9a05-e2cb9124f543/1/9epAapRLa2-y9lN1ApORscaoZd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/05a772-c920-4d99-9a05-e2cb9124f543/1/SzFS8Nd-BX-yyb-A2AMymHlEB3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.171.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b5:99:3c:69:26:65:88:53:a5:d2:0b:84:cc:16:53:58:70:
60:43:bb:e5:32:08:a5:5f:32:d4:f0:e7:e7:ca:02:3f:d4:4e:
5b:41:a9:4b:0c:e4:41:bc:d9:c0:1f:6f:2b:89:3a:3d:8b:1e:
44:bb:99:75:ee:63:4a:79:4c:b5:fb:e1:19:f6:ab:d1:87:17:
77:54:b2:94:f8:e6:86:7c:5c:6d:af:3b:69:94:5c:fb:5d:45:
9e:65:90:b9:f9:7b:a1:5e:43:38:50:23:31:d3:51:39:da:60:
39:b0:c5:06:9c:56:e6:e3:92:97:a2:52:1b:09:68:55:0a:80:
bf:61:74:89:4b:33:31:b8:3f:b7:4b:65:3f:35:e0:cc:e3:a5:
98:50:f9:8d:bb:b2:95:63:c4:af:6e:78:e8:88:c6:fe:36:22:
cc:a5:25:8a:38:90:d0:bb:49:f9:31:ba:84:9f:98:5c:27:f9:
52:99:8f:e6:ce:cc:ca:16:a1:97:9e:63:78:0e:55:c9:16:32:
fe:66:62:16:af:6a:ec:fa:80:a7:e5:28:20:6d:d3:42:3e:b5:
be:77:76:55:55:db:77:a0:c1:40:c5:3f:a5:46:36:77:85:63:
df:b6:93:9a:00:ec:df:81:9b:7c:0d:c1:62:5c:51:83:96:ee:
7e:47:9b:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtuHjXmMytkH0qhXzh9DGiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMzE1MmYwZDc3ZTA1N2ZiMmM5YmY4MGQ4MDMzMjk4Nzk0
NDA3NzYwHhcNMjMwMTAxMTQyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWVhNDA2YTk0NGI2YjZmYjJmNjUzNzUwMjkzOTFiMWM2YTg2NWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuohpDxnnIz1xhqVJbluaPTessbOu
L71y1jtWokEwjf25ql2wNq9cVDVssn+LM8tnns3+fM03I0x4UAlFl/DWuBymNwrO
VufmfgtIX8YLkmA1KrTFXGnXpVVEKIjOp/WQuKxWbFZoC+x22E9XpRtyu9+4EeIg
ewNhQ/lNvaYFsAw4Au+R5Ur6bYM5GTHSr5Bl6BuQwGzkyeyNBTHjLcpQpjO0Atpk
AxlhmPq992xaSesnnMKIhR6jkqWorioR2mY9GEUFbNjXMffnEqEQrtLSJj9Ag3Z/
zTbixriApJRjGPKF/y4uOofZIlikKvXL2GxDfWOxPNntbwO9UqiqcEpXDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPXqQGqUS2tvsvZTdQKTkbHGqGXeMB8GA1UdIwQY
MBaAFEsxUvDXfgV/ssm/gNgDMph5RAd2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3pGUzhOZC1CWC15eWItQTJBTXltSGxFQjNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wNWE3NzItYzkyMC00ZDk5LTlhMDUt
ZTJjYjkxMjRmNTQzLzEvOWVwQWFwUkxhMi15OWxOMUFwT1JzY2FvWmQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8wNWE3NzItYzkyMC00ZDk5LTlhMDUtZTJjYjkxMjRmNTQz
LzEvU3pGUzhOZC1CWC15eWItQTJBTXltSGxFQjNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/erMA0G
CSqGSIb3DQEBCwUAA4IBAQBFtZk8aSZliFOl0guEzBZTWHBgQ7vlMgilXzLU8Ofn
ygI/1E5bQalLDORBvNnAH28riTo9ix5Eu5l17mNKeUy1++EZ9qvRhxd3VLKU+OaG
fFxtrztplFz7XUWeZZC5+XuhXkM4UCMx01E52mA5sMUGnFbm45KXolIbCWhVCoC/
YXSJSzMxuD+3S2U/NeDM46WYUPmNu7KVY8SvbnjoiMb+NiLMpSWKOJDQu0n5MbqE
n5hcJ/lSmY/mzszKFqGXnmN4DlXJFjL+ZmIWr2rs+oCn5SggbdNCPrW+d3ZVVdt3
oMFAxT+lRjZ3hWPftpOaAOzfgZt8DcFiXFGDlu5+R5u9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org