Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/o_FqzlSqBpLq6VXlxTq8zaEaR4Q.roa
File: o_FqzlSqBpLq6VXlxTq8zaEaR4Q.roa (raw, json)
Hash identifier: qfx7jS4DUTejxuBqqDLtvCqrEof9yNORENQqFebGzaA=
Subject key identifier: A3:F1:6A:CE:54:AA:06:92:EA:E9:55:E5:C5:3A:BC:CD:A1:1A:47:84
Certificate issuer: /CN=fb05135f037d25d716d3b721c1ab721366faf905
Certificate serial: 06843115
Authority key identifier: FB:05:13:5F:03:7D:25:D7:16:D3:B7:21:C1:AB:72:13:66:FA:F9:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wUTXwN9JdcW07chwatyE2b6-QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/o_FqzlSqBpLq6VXlxTq8zaEaR4Q.roa
Signing time: Sat 01 Jan 2022 02:54:26 +0000
ROA not before: Sat 01 Jan 2022 02:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212337
IP address blocks: 91.220.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109326613 (0x6843115)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb05135f037d25d716d3b721c1ab721366faf905
Validity
Not Before: Jan 1 02:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3f16ace54aa0692eae955e5c53abccda11a4784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:00:7c:e2:32:30:a5:d0:18:23:29:3e:c4:e8:
c0:c3:ff:a4:8a:21:7b:73:84:6f:bd:a6:43:a0:dd:
e5:b6:e3:6e:92:2a:80:a2:4c:bf:a7:d0:76:63:47:
8e:97:8b:3c:7d:8b:19:d6:c9:b4:7a:ba:17:ec:3a:
2a:56:15:f7:51:cf:61:3c:ca:02:59:44:a5:8f:a8:
1d:59:bb:2d:78:d9:c9:21:eb:70:8e:e9:e0:0b:32:
11:fe:9a:fd:51:dc:d0:29:17:8c:17:a9:09:41:51:
bb:db:95:2c:93:db:62:21:e2:1f:25:5f:6b:13:0f:
53:44:a0:1d:45:3e:54:0e:0f:10:09:e9:34:be:16:
d2:38:f9:92:29:71:f8:33:f4:57:58:43:92:41:cc:
86:c0:21:63:14:a2:c8:36:7f:04:3f:30:55:28:1a:
53:f1:65:29:b2:21:cb:66:19:a5:5f:84:42:4b:c3:
6c:35:bd:d3:f9:c5:49:56:74:b0:8e:8a:1b:6a:b9:
a5:4a:de:5a:e6:0d:89:73:99:35:ac:06:f2:27:f6:
46:b2:bc:da:c4:ef:d7:a9:dd:8c:ba:47:25:16:7b:
d8:5b:15:02:6f:ca:f5:95:43:98:80:18:55:5c:db:
ca:b8:e9:5b:f0:36:aa:bc:c9:a6:dc:32:eb:89:55:
83:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F1:6A:CE:54:AA:06:92:EA:E9:55:E5:C5:3A:BC:CD:A1:1A:47:84
X509v3 Authority Key Identifier:
keyid:FB:05:13:5F:03:7D:25:D7:16:D3:B7:21:C1:AB:72:13:66:FA:F9:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wUTXwN9JdcW07chwatyE2b6-QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/o_FqzlSqBpLq6VXlxTq8zaEaR4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/1-wUTXwN9JdcW07chwatyE2b6-QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.171.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:75:28:2f:c7:c8:0b:d6:2a:e0:49:83:09:0c:b7:c7:59:9a:
52:0d:eb:ef:75:f4:a0:ee:a8:7e:87:c7:d8:69:46:4b:1d:5c:
af:fd:6e:b5:f0:71:5d:3a:67:db:3a:4b:a7:a6:8b:32:5c:ff:
f9:ee:8a:d4:28:66:14:78:b7:be:8b:e2:8e:dc:7a:10:69:5a:
e2:5d:72:a7:03:1d:a4:ca:be:a9:ca:ad:df:6d:45:9b:29:07:
58:c2:8d:f6:dd:f0:b8:cf:3c:7e:99:ab:62:30:94:e3:98:5a:
5a:a4:c1:42:ad:e4:5c:3f:5d:0b:28:a9:a8:17:4d:84:03:91:
6a:a7:3b:9d:43:52:fd:53:36:aa:c7:b8:f2:d1:28:37:34:b0:
18:bf:82:66:f6:03:17:a4:01:bb:56:2c:5f:21:be:57:d8:6c:
33:d0:3d:15:fd:5c:3e:a0:0a:3c:66:de:aa:67:ca:42:cd:ec:
54:88:72:e1:5f:14:c6:a5:86:29:8b:90:21:79:f4:b7:b4:7f:
1b:1b:e3:b3:76:27:e8:e7:87:c4:6a:81:22:81:c9:ba:05:f2:
59:5c:de:d5:10:ff:7b:fe:35:97:9c:6a:ba:15:85:b7:06:91:
3f:25:a5:71:53:9e:29:b8:8f:28:35:7e:60:7d:a7:68:2c:dd:
a8:07:e1:49
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEBoQxFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YjA1MTM1ZjAzN2QyNWQ3MTZkM2I3MjFjMWFiNzIxMzY2ZmFmOTA1MB4XDTIyMDEw
MTAyNTQyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTNmMTZhY2U1NGFh
MDY5MmVhZTk1NWU1YzUzYWJjY2RhMTFhNDc4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4AfOIyMKXQGCMpPsTowMP/pIohe3OEb72mQ6Dd5bbjbpIq
gKJMv6fQdmNHjpeLPH2LGdbJtHq6F+w6KlYV91HPYTzKAllEpY+oHVm7LXjZySHr
cI7p4AsyEf6a/VHc0CkXjBepCUFRu9uVLJPbYiHiHyVfaxMPU0SgHUU+VA4PEAnp
NL4W0jj5kilx+DP0V1hDkkHMhsAhYxSiyDZ/BD8wVSgaU/FlKbIhy2YZpV+EQkvD
bDW90/nFSVZ0sI6KG2q5pUreWuYNiXOZNawG8if2RrK82sTv16ndjLpHJRZ72FsV
Am/K9ZVDmIAYVVzbyrjpW/A2qrzJptwy64lVg10CAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSj8WrOVKoGkurpVeXFOrzNoRpHhDAfBgNVHSMEGDAWgBT7BRNfA30l1xbT
tyHBq3ITZvr5BTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtd1VUWHdOOUpkY1cwN2Nod2F0eUUyYjYtUVUuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2VlLzlhYTI1Yi01ZDFmLTQzYjgtOWY4OS1jY2I1ZTM5YjIwOGIv
MS9vX0ZxemxTcUJwTHE2VlhseFRxOHphRWFSNFEucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Vl
LzlhYTI1Yi01ZDFmLTQzYjgtOWY4OS1jY2I1ZTM5YjIwOGIvMS8xLXdVVFh3TjlK
ZGNXMDdjaHdhdHlFMmI2LVFVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9yrMA0GCSqGSIb3DQEBCwUA
A4IBAQBcdSgvx8gL1irgSYMJDLfHWZpSDevvdfSg7qh+h8fYaUZLHVyv/W618HFd
OmfbOkunposyXP/57orUKGYUeLe+i+KO3HoQaVriXXKnAx2kyr6pyq3fbUWbKQdY
wo323fC4zzx+matiMJTjmFpapMFCreRcP10LKKmoF02EA5FqpzudQ1L9Uzaqx7jy
0Sg3NLAYv4Jm9gMXpAG7VixfIb5X2Gwz0D0V/Vw+oAo8Zt6qZ8pCzexUiHLhXxTG
pYYpi5AhefS3tH8bG+Ozdifo54fEaoEigcm6BfJZXN7VEP97/jWXnGq6FYW3BpE/
JaVxU54puI8oNX5gfadoLN2oB+FJ
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:14 2025 by rpki-client