Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/uXkW3_UecYv5Eq2gNrdhAqoOquQ.roa
File: uXkW3_UecYv5Eq2gNrdhAqoOquQ.roa (raw, json)
Hash identifier: 812Ga4QNMrFvUw4H2obQpTBN328rLUGj1ZKboZBfbfY=
Subject key identifier: B9:79:16:DF:F5:1E:71:8B:F9:12:AD:A0:36:B7:61:02:AA:0E:AA:E4
Certificate issuer: /CN=69b60a6d77c4cac8f102d810be330b3d391efe93
Certificate serial: F776
Authority key identifier: 69:B6:0A:6D:77:C4:CA:C8:F1:02:D8:10:BE:33:0B:3D:39:1E:FE:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/abYKbXfEysjxAtgQvjMLPTke_pM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/uXkW3_UecYv5Eq2gNrdhAqoOquQ.roa
Signing time: Wed 12 Jan 2022 19:20:58 +0000
ROA not before: Wed 12 Jan 2022 19:20:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.202.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63350 (0xf776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69b60a6d77c4cac8f102d810be330b3d391efe93
Validity
Not Before: Jan 12 19:20:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b97916dff51e718bf912ada036b76102aa0eaae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f0:1b:40:c8:1d:f0:49:07:43:94:bd:37:5a:
90:d8:10:bd:a7:eb:57:98:0f:d0:89:b0:3c:1e:c5:
0c:68:b8:c3:cf:8e:f4:15:b5:97:19:3a:b5:ee:6e:
01:d8:33:08:ce:4e:b1:a8:64:24:9b:82:9f:34:83:
d7:c5:bf:71:42:98:7a:d4:26:56:0a:5e:bf:c9:b0:
a7:dd:60:b7:88:12:91:83:37:da:b3:e9:49:a4:7a:
0e:56:66:61:c8:b9:74:b3:34:7d:43:14:7c:4f:dc:
e6:8f:65:45:52:5b:f9:1d:6f:31:90:48:f5:4d:93:
ac:db:1c:f0:1a:15:74:a0:fb:7f:a6:13:c5:ce:40:
ad:2c:dc:fb:7b:ff:38:d8:d4:8d:ed:b7:6d:b3:48:
8a:d9:26:0a:53:13:df:f9:5d:62:67:52:31:fc:61:
5e:d8:1e:82:84:bd:2a:ae:d1:40:e6:a1:d6:3d:18:
c1:bc:ad:3d:f2:b1:9f:20:bf:23:d3:64:08:66:5b:
e0:cf:ac:13:0f:b4:34:64:25:56:65:12:fa:8c:41:
c6:06:54:e8:d6:f6:e5:c1:22:db:cb:79:3c:b1:60:
3c:f9:9c:0d:8d:44:86:27:77:81:d8:ff:f4:6e:b6:
6b:e5:21:63:42:47:14:0b:ba:84:8b:64:f8:c7:7a:
67:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:79:16:DF:F5:1E:71:8B:F9:12:AD:A0:36:B7:61:02:AA:0E:AA:E4
X509v3 Authority Key Identifier:
keyid:69:B6:0A:6D:77:C4:CA:C8:F1:02:D8:10:BE:33:0B:3D:39:1E:FE:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/abYKbXfEysjxAtgQvjMLPTke_pM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/uXkW3_UecYv5Eq2gNrdhAqoOquQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/abYKbXfEysjxAtgQvjMLPTke_pM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.209.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:29:2b:dc:9f:b5:87:19:ac:35:e1:1f:18:da:f8:42:9b:fd:
ec:2c:8e:0b:d3:23:bc:69:e5:3c:be:d1:ff:35:84:57:dd:92:
72:d5:70:43:dd:9f:3c:96:c3:75:d4:03:bf:bd:a6:99:11:06:
ad:57:cf:5f:be:37:b8:f8:0a:12:0e:ad:05:35:28:83:42:6d:
c6:6a:18:fd:e0:d8:0c:d3:d6:4a:b7:6d:50:af:b8:18:cf:ce:
70:08:46:4a:4d:62:3c:52:64:58:11:1b:da:59:57:f9:cb:87:
4f:55:0c:18:d6:e1:93:76:65:a6:a1:d4:ab:59:17:81:ca:52:
99:2c:0c:73:51:3d:62:5e:13:db:e4:e6:f9:ff:7b:03:99:5c:
17:3f:4e:2e:8e:49:29:ab:aa:70:37:a9:cb:49:c7:06:58:7f:
d0:57:3b:2f:bc:4a:9e:4e:ba:c3:b5:aa:f8:5d:ef:5f:a5:3c:
33:cf:90:6b:bf:ef:4a:d0:82:0f:de:cc:98:fd:7e:bc:b5:b5:
11:03:1d:76:97:7d:1e:69:a3:2e:0d:35:80:35:ea:c9:5d:94:
8b:97:1f:32:ca:02:a5:45:a1:bb:c4:75:7f:b5:0a:e8:80:3d:
44:5d:ee:05:06:65:26:e4:1f:3b:f6:63:a9:ad:29:4e:92:02:
3d:96:35:69
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAPd2MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY5
YjYwYTZkNzdjNGNhYzhmMTAyZDgxMGJlMzMwYjNkMzkxZWZlOTMwHhcNMjIwMTEy
MTkyMDU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiOTc5MTZkZmY1MWU3
MThiZjkxMmFkYTAzNmI3NjEwMmFhMGVhYWU0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAp/AbQMgd8EkHQ5S9N1qQ2BC9p+tXmA/QibA8HsUMaLjDz470
FbWXGTq17m4B2DMIzk6xqGQkm4KfNIPXxb9xQph61CZWCl6/ybCn3WC3iBKRgzfa
s+lJpHoOVmZhyLl0szR9QxR8T9zmj2VFUlv5HW8xkEj1TZOs2xzwGhV0oPt/phPF
zkCtLNz7e/842NSN7bdts0iK2SYKUxPf+V1iZ1Ix/GFe2B6ChL0qrtFA5qHWPRjB
vK098rGfIL8j02QIZlvgz6wTD7Q0ZCVWZRL6jEHGBlTo1vblwSLby3k8sWA8+ZwN
jUSGJ3eB2P/0brZr5SFjQkcUC7qEi2T4x3pn/wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLl5Ft/1HnGL+RKtoDa3YQKqDqrkMB8GA1UdIwQYMBaAFGm2Cm13xMrI8QLY
EL4zCz05Hv6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
YWJZS2JYZkV5c2p4QXRnUXZqTUxQVGtlX3BNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kYy81ZmY0ZmYtNWJmZS00MTIzLWExNTItNGFkOTkxNGJiYTY4LzEv
dVhrVzNfVWVjWXY1RXEyZ05yZGhBcW9PcXVRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy81
ZmY0ZmYtNWJmZS00MTIzLWExNTItNGFkOTkxNGJiYTY4LzEvYWJZS2JYZkV5c2p4
QXRnUXZqTUxQVGtlX3BNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8rRMA0GCSqGSIb3DQEBCwUAA4IB
AQBMKSvcn7WHGaw14R8Y2vhCm/3sLI4L0yO8aeU8vtH/NYRX3ZJy1XBD3Z88lsN1
1AO/vaaZEQatV89fvje4+AoSDq0FNSiDQm3Gahj94NgM09ZKt21Qr7gYz85wCEZK
TWI8UmRYERvaWVf5y4dPVQwY1uGTdmWmodSrWReBylKZLAxzUT1iXhPb5Ob5/3sD
mVwXP04ujkkpq6pwN6nLSccGWH/QVzsvvEqeTrrDtar4Xe9fpTwzz5Brv+9K0IIP
3syY/X68tbURAx12l30eaaMuDTWANerJXZSLlx8yygKlRaG7xHV/tQrogD1EXe4F
BmUm5B879mOprSlOkgI9ljVp
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:08 2025 by rpki-client