Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/YTCM1vzdzFqm2IVuskqeN05peKI.roa
File: YTCM1vzdzFqm2IVuskqeN05peKI.roa (raw, json)
Hash identifier: Cyqr05LYfaFJl0NAot6biaHk+CG9VbqXlO+IlOlARFw=
Subject key identifier: 61:30:8C:D6:FC:DD:CC:5A:A6:D8:85:6E:B2:4A:9E:37:4E:69:78:A2
Certificate issuer: /CN=69b60a6d77c4cac8f102d810be330b3d391efe93
Certificate serial: 01835F465E30D8C069CDA8FEA60DDCB8B3D8
Authority key identifier: 69:B6:0A:6D:77:C4:CA:C8:F1:02:D8:10:BE:33:0B:3D:39:1E:FE:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/abYKbXfEysjxAtgQvjMLPTke_pM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/YTCM1vzdzFqm2IVuskqeN05peKI.roa
Signing time: Wed 21 Sep 2022 08:59:50 +0000
ROA not before: Wed 21 Sep 2022 08:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3214
IP address blocks: 91.202.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5f:46:5e:30:d8:c0:69:cd:a8:fe:a6:0d:dc:b8:b3:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69b60a6d77c4cac8f102d810be330b3d391efe93
Validity
Not Before: Sep 21 08:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61308cd6fcddcc5aa6d8856eb24a9e374e6978a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9a:00:37:d2:08:65:69:2b:d5:3f:b0:7c:d6:
ae:2f:10:9d:4b:8b:78:94:5f:d4:ea:54:b2:75:2a:
4d:c2:a9:32:ba:fe:6e:ca:eb:70:81:7c:08:c6:01:
4b:cf:3d:81:7b:f9:d9:18:c8:49:90:66:e7:07:d0:
a4:8e:42:82:f4:14:52:01:e4:ad:26:62:51:41:36:
9c:47:0b:62:dd:46:b0:f9:0d:5a:92:04:67:fd:cf:
b4:65:57:0d:f3:73:ea:eb:7f:f3:39:08:ff:f2:b9:
bc:70:65:6b:b7:96:1c:97:98:a9:1e:3d:09:21:f3:
83:28:a2:ba:58:8d:28:ed:a9:b8:1a:3f:87:0e:0d:
4b:f5:5f:da:5a:24:a9:d7:d6:55:75:02:c6:f5:cf:
d7:e6:ff:35:b7:cb:3d:51:8a:49:9c:9d:77:1c:f2:
d6:9f:a1:5c:8a:87:52:01:17:ca:7c:52:1c:e8:4f:
28:70:df:eb:b2:06:0a:fe:87:0b:b5:c1:61:da:3f:
d5:1f:93:a8:54:72:15:17:80:53:ee:aa:39:6e:f4:
94:89:53:3f:3c:fa:b9:49:8a:5e:f4:44:18:1b:c2:
c4:ce:fc:fd:6f:df:3e:a5:3f:29:83:09:32:ec:85:
fc:b6:e8:59:bf:94:b9:a3:8b:f9:dd:f9:40:4a:7f:
8f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:30:8C:D6:FC:DD:CC:5A:A6:D8:85:6E:B2:4A:9E:37:4E:69:78:A2
X509v3 Authority Key Identifier:
keyid:69:B6:0A:6D:77:C4:CA:C8:F1:02:D8:10:BE:33:0B:3D:39:1E:FE:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/abYKbXfEysjxAtgQvjMLPTke_pM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/YTCM1vzdzFqm2IVuskqeN05peKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/abYKbXfEysjxAtgQvjMLPTke_pM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.209.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:35:9c:42:8c:52:e2:e7:d9:65:73:5b:90:87:5a:de:f4:de:
f3:2a:84:a7:ad:57:d4:7f:bf:d9:44:28:44:f0:8e:07:06:6b:
1a:fc:b0:95:b3:69:78:7a:6b:60:54:87:ba:01:67:a9:58:bc:
7e:af:e3:9a:36:99:b3:00:af:64:c2:c6:5b:79:cd:6c:32:89:
f2:0a:1f:2b:82:21:ff:fc:d5:a1:62:c1:f4:b8:00:e5:a1:37:
aa:c7:79:4a:1e:ca:00:e6:d1:0c:3b:92:45:4f:56:dd:3f:69:
8a:67:f9:23:4d:57:21:0e:e9:d9:83:ef:6b:a8:58:93:46:75:
55:c2:1f:e2:37:92:29:ec:da:cf:6f:0d:c3:93:84:a9:3b:f3:
24:6a:59:66:8b:5a:a0:fd:34:47:48:28:66:ae:24:6d:47:79:
d8:b9:40:f1:d4:e6:58:af:c5:18:e3:8c:5a:6e:bc:4b:b0:55:
ff:db:ad:b2:c2:3b:62:7a:fe:57:98:32:20:ec:d0:93:05:c9:
48:07:13:86:ee:81:34:8f:48:b7:e5:97:a2:74:be:61:2b:47:
c5:7b:ba:45:9d:a3:07:3c:fc:d6:97:bc:f2:fe:62:9f:cb:52:
ea:61:a5:7b:a1:0a:11:c8:3a:13:ff:5e:19:22:bf:c7:36:c0:
ae:91:00:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNfRl4w2MBpzaj+pg3cuLPYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5YjYwYTZkNzdjNGNhYzhmMTAyZDgxMGJlMzMwYjNkMzkx
ZWZlOTMwHhcNMjIwOTIxMDg1OTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTMwOGNkNmZjZGRjYzVhYTZkODg1NmViMjRhOWUzNzRlNjk3OGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5oAN9IIZWkr1T+wfNauLxCdS4t4
lF/U6lSydSpNwqkyuv5uyutwgXwIxgFLzz2Be/nZGMhJkGbnB9CkjkKC9BRSAeSt
JmJRQTacRwti3Uaw+Q1akgRn/c+0ZVcN83Pq63/zOQj/8rm8cGVrt5Ycl5ipHj0J
IfODKKK6WI0o7am4Gj+HDg1L9V/aWiSp19ZVdQLG9c/X5v81t8s9UYpJnJ13HPLW
n6FciodSARfKfFIc6E8ocN/rsgYK/ocLtcFh2j/VH5OoVHIVF4BT7qo5bvSUiVM/
PPq5SYpe9EQYG8LEzvz9b98+pT8pgwky7IX8tuhZv5S5o4v53flASn+PuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGEwjNb83cxaptiFbrJKnjdOaXiiMB8GA1UdIwQY
MBaAFGm2Cm13xMrI8QLYEL4zCz05Hv6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWJZS2JYZkV5c2p4QXRnUXZqTUxQVGtlX3BNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy81ZmY0ZmYtNWJmZS00MTIzLWExNTIt
NGFkOTkxNGJiYTY4LzEvWVRDTTF2emR6RnFtMklWdXNrcWVOMDVwZUtJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy81ZmY0ZmYtNWJmZS00MTIzLWExNTItNGFkOTkxNGJiYTY4
LzEvYWJZS2JYZkV5c2p4QXRnUXZqTUxQVGtlX3BNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8rRMA0G
CSqGSIb3DQEBCwUAA4IBAQCrNZxCjFLi59llc1uQh1re9N7zKoSnrVfUf7/ZRChE
8I4HBmsa/LCVs2l4emtgVIe6AWepWLx+r+OaNpmzAK9kwsZbec1sMonyCh8rgiH/
/NWhYsH0uADloTeqx3lKHsoA5tEMO5JFT1bdP2mKZ/kjTVchDunZg+9rqFiTRnVV
wh/iN5Ip7NrPbw3Dk4SpO/Mkallmi1qg/TRHSChmriRtR3nYuUDx1OZYr8UY44xa
brxLsFX/262ywjtiev5XmDIg7NCTBclIBxOG7oE0j0i35ZeidL5hK0fFe7pFnaMH
PPzWl7zy/mKfy1LqYaV7oQoRyDoT/14ZIr/HNsCukQAq
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:45 2024 by rpki-client on console-ams.rpki-client.org