Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/391a9f-db82-4bb2-aac9-7bafbfac9184/1/4zyTKEsg3S3zuPUBFQXSxIQ7Dew.roa
File: 4zyTKEsg3S3zuPUBFQXSxIQ7Dew.roa (raw, json)
Hash identifier: LoP5Y1ztaB6qPpuy3kdOlBEEmtknj6RdxnBgg8HNNIc=
Subject key identifier: E3:3C:93:28:4B:20:DD:2D:F3:B8:F5:01:15:05:D2:C4:84:3B:0D:EC
Certificate issuer: /CN=987e7ec85c73a7f26b7befb2aa869a2ea7a1d1c3
Certificate serial: 0189654ABF646D52E5F5F194F05A864C7BCF
Authority key identifier: 98:7E:7E:C8:5C:73:A7:F2:6B:7B:EF:B2:AA:86:9A:2E:A7:A1:D1:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mH5-yFxzp_Jre--yqoaaLqeh0cM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/391a9f-db82-4bb2-aac9-7bafbfac9184/1/4zyTKEsg3S3zuPUBFQXSxIQ7Dew.roa
Signing time: Mon 17 Jul 2023 19:19:04 +0000
ROA not before: Mon 17 Jul 2023 19:19:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 91.190.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:4a:bf:64:6d:52:e5:f5:f1:94:f0:5a:86:4c:7b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=987e7ec85c73a7f26b7befb2aa869a2ea7a1d1c3
Validity
Not Before: Jul 17 19:19:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e33c93284b20dd2df3b8f5011505d2c4843b0dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ce:9d:51:95:f8:9c:d1:ff:ad:a7:95:2f:1e:
19:bb:ee:d1:99:a8:14:2e:fc:ec:76:0a:89:c7:1b:
a5:63:0f:f5:6e:e0:3a:2d:5b:6b:ed:e8:19:60:79:
18:ce:7c:7c:ff:79:0e:0f:77:db:b4:24:a6:54:64:
63:e0:63:0e:ed:ac:b2:24:2a:66:48:1d:88:9a:91:
d1:2e:94:3d:4f:8e:9c:22:ea:e3:23:75:6e:a3:dd:
9f:ac:36:3a:b2:46:7a:7b:0a:f3:1a:99:be:8a:00:
4f:9d:43:ef:1b:65:da:97:3b:e2:8b:b0:01:ca:3e:
5a:dc:26:c5:d1:09:44:5d:9f:d9:a1:5b:ac:59:f9:
6d:de:cc:2a:d1:b0:5f:52:e4:31:ae:7c:93:17:5c:
3a:02:0a:af:74:33:c9:a2:69:9b:31:f6:bc:31:60:
9f:9d:ad:82:fd:73:c2:3b:84:0d:3f:ff:35:6e:14:
5f:9c:d1:0e:ce:d7:ae:06:18:5b:1c:e6:2d:7e:78:
ea:1b:1e:cd:9c:80:5f:54:e2:75:d6:1a:0a:b0:48:
18:e8:3a:7b:9a:95:45:04:84:51:78:45:38:50:f9:
73:48:fc:47:9b:cd:14:20:ee:82:ef:ad:37:95:45:
82:03:0e:60:b8:4e:5e:5c:8e:6f:a3:9b:12:50:1f:
6f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3C:93:28:4B:20:DD:2D:F3:B8:F5:01:15:05:D2:C4:84:3B:0D:EC
X509v3 Authority Key Identifier:
keyid:98:7E:7E:C8:5C:73:A7:F2:6B:7B:EF:B2:AA:86:9A:2E:A7:A1:D1:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mH5-yFxzp_Jre--yqoaaLqeh0cM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/391a9f-db82-4bb2-aac9-7bafbfac9184/1/4zyTKEsg3S3zuPUBFQXSxIQ7Dew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/391a9f-db82-4bb2-aac9-7bafbfac9184/1/mH5-yFxzp_Jre--yqoaaLqeh0cM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.158.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:bb:e9:2b:29:95:a2:20:e0:3b:03:b3:80:d1:ac:f7:c5:ab:
d4:71:2d:23:55:c5:0c:af:c8:8c:54:21:9c:21:71:dc:2c:78:
20:3c:ef:0a:6a:c0:78:6f:d9:a3:99:7e:ea:ef:a9:87:b2:03:
5f:0d:77:f7:90:d5:21:d8:6b:47:1e:0e:01:8d:8c:5b:2e:05:
cd:db:b9:fb:23:6e:57:26:6b:fb:c3:af:7c:4d:5c:03:c6:cf:
f1:59:6e:38:41:b7:9d:25:95:50:60:1f:41:ca:81:38:78:64:
c0:82:3a:ed:9f:93:4c:35:a8:0f:7e:95:c5:36:65:76:c6:c0:
5c:9a:a9:5f:d2:ce:89:e5:7d:b2:f7:9f:52:80:97:06:41:9f:
a9:e7:8d:4e:4d:c3:ff:79:99:a4:07:a0:05:bf:78:96:77:1b:
7f:d6:a5:e6:e1:af:b3:87:08:f8:f9:8b:0f:01:6e:1b:b3:85:
ce:d1:18:70:5a:a7:f0:5a:c7:12:6c:61:0e:6a:55:ab:b6:ca:
a4:20:0e:48:42:24:aa:87:42:ac:db:ad:de:7f:cc:ea:00:8a:
d9:88:99:31:28:38:2a:3e:65:56:dd:40:74:d4:92:14:a3:35:
1f:3e:19:70:f2:96:de:9d:ab:e1:94:5d:04:98:bc:94:47:26:
e3:04:e4:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYllSr9kbVLl9fGU8FqGTHvPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4N2U3ZWM4NWM3M2E3ZjI2YjdiZWZiMmFhODY5YTJlYTdh
MWQxYzMwHhcNMjMwNzE3MTkxOTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzNjOTMyODRiMjBkZDJkZjNiOGY1MDExNTA1ZDJjNDg0M2IwZGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjc6dUZX4nNH/raeVLx4Zu+7RmagU
LvzsdgqJxxulYw/1buA6LVtr7egZYHkYznx8/3kOD3fbtCSmVGRj4GMO7ayyJCpm
SB2ImpHRLpQ9T46cIurjI3Vuo92frDY6skZ6ewrzGpm+igBPnUPvG2Xalzvii7AB
yj5a3CbF0QlEXZ/ZoVusWflt3swq0bBfUuQxrnyTF1w6AgqvdDPJommbMfa8MWCf
na2C/XPCO4QNP/81bhRfnNEOzteuBhhbHOYtfnjqGx7NnIBfVOJ11hoKsEgY6Dp7
mpVFBIRReEU4UPlzSPxHm80UIO6C7603lUWCAw5guE5eXI5vo5sSUB9vQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOM8kyhLIN0t87j1ARUF0sSEOw3sMB8GA1UdIwQY
MBaAFJh+fshcc6fya3vvsqqGmi6nodHDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUg1LXlGeHpwX0pyZS0teXFvYWFMcWVoMGNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8zOTFhOWYtZGI4Mi00YmIyLWFhYzkt
N2JhZmJmYWM5MTg0LzEvNHp5VEtFc2czUzN6dVBVQkZRWFN4SVE3RGV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS8zOTFhOWYtZGI4Mi00YmIyLWFhYzktN2JhZmJmYWM5MTg0
LzEvbUg1LXlGeHpwX0pyZS0teXFvYWFMcWVoMGNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW76eMA0G
CSqGSIb3DQEBCwUAA4IBAQC7u+krKZWiIOA7A7OA0az3xavUcS0jVcUMr8iMVCGc
IXHcLHggPO8KasB4b9mjmX7q76mHsgNfDXf3kNUh2GtHHg4BjYxbLgXN27n7I25X
Jmv7w698TVwDxs/xWW44QbedJZVQYB9ByoE4eGTAgjrtn5NMNagPfpXFNmV2xsBc
mqlf0s6J5X2y959SgJcGQZ+p541OTcP/eZmkB6AFv3iWdxt/1qXm4a+zhwj4+YsP
AW4bs4XO0RhwWqfwWscSbGEOalWrtsqkIA5IQiSqh0Ks263ef8zqAIrZiJkxKDgq
PmVW3UB01JIUozUfPhlw8pbenavhlF0EmLyURybjBORA
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:42 2025 by rpki-client