Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/Q-lD_y0e5r-fenlts7uCH24GY6c.roa
File: Q-lD_y0e5r-fenlts7uCH24GY6c.roa (raw, json)
Hash identifier: RrAihRGw8xhvaCXornBWg7Lp2ap1kzfU9tDcDkADHy0=
Subject key identifier: 43:E9:43:FF:2D:1E:E6:BF:9F:7A:79:6D:B3:BB:82:1F:6E:06:63:A7
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 0A9F8494
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/Q-lD_y0e5r-fenlts7uCH24GY6c.roa
Signing time: Fri 03 Jun 2022 07:58:22 +0000
ROA not before: Fri 03 Jun 2022 07:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178226324 (0xa9f8494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Jun 3 07:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43e943ff2d1ee6bf9f7a796db3bb821f6e0663a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:eb:fc:86:2c:66:72:51:f5:d3:0b:b5:12:98:
ed:8e:ea:d0:32:a7:03:f4:ef:7b:16:ef:62:07:aa:
5f:01:75:62:48:1d:05:df:6f:aa:56:70:ec:84:e8:
34:95:b3:dd:1e:fa:1a:8e:43:65:ab:f1:c4:89:c4:
81:a3:55:6f:39:56:47:4b:00:b6:2c:ab:ed:ab:c5:
a9:82:7d:ac:6a:46:1d:96:6a:8b:f8:93:c1:fd:ab:
28:8c:73:65:3b:81:89:9a:fd:ff:0e:26:a1:b0:7b:
04:ce:9c:68:6f:6e:be:d3:0e:37:4f:31:73:cc:ad:
b1:c8:7a:6e:eb:cb:d1:45:b0:53:ca:0c:a4:c6:3d:
42:69:22:fd:16:3c:22:57:21:df:52:63:c1:19:75:
68:c8:6f:3e:92:0c:f4:76:fe:e3:c8:67:62:e6:24:
49:02:4d:4b:fc:eb:65:51:e2:a1:2d:f2:1b:44:a7:
c5:74:0e:7e:f5:f9:7d:2d:86:0f:55:8d:5a:87:e4:
ae:76:01:a8:b7:0f:88:32:ac:1c:86:a4:eb:9e:58:
62:eb:0a:70:02:70:da:52:12:d1:97:cf:db:80:29:
c4:f1:f0:28:dd:c7:ec:b4:6b:fa:3a:c3:4b:ae:d3:
fc:f6:ca:e6:84:2d:8d:a6:0f:00:47:f3:b5:9e:a4:
60:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E9:43:FF:2D:1E:E6:BF:9F:7A:79:6D:B3:BB:82:1F:6E:06:63:A7
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/Q-lD_y0e5r-fenlts7uCH24GY6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
70:58:2f:86:13:e4:1e:22:81:7f:5a:ae:31:d5:e6:11:9a:3d:
4c:77:2c:90:84:ff:35:b9:c1:2f:e9:b4:b7:80:31:ad:cb:4c:
3d:98:42:ae:09:52:4c:e2:74:64:bb:ac:3f:c1:13:1c:12:16:
9d:f5:9d:d3:06:7b:d0:3b:92:fe:f0:de:62:4e:f6:b3:86:4e:
26:9f:7e:0a:60:fa:1e:fb:e2:c5:3d:ab:24:01:d7:b1:30:ec:
f2:c1:ae:8e:9c:1a:a4:a9:0d:c2:a3:ac:2b:77:25:84:39:04:
ed:47:8b:73:cc:ce:a5:25:b8:38:19:ae:a1:59:f0:55:3a:fb:
85:24:d5:e4:25:0b:ef:c8:61:ca:80:4f:4d:8a:6a:76:2b:d9:
86:bd:2a:93:f2:b2:f3:11:b0:bc:d8:cf:43:d7:dd:45:d0:8a:
c0:96:22:3a:aa:1d:94:50:8e:63:71:4c:33:56:4b:dc:80:47:
81:c4:24:a7:3e:8e:52:78:33:6c:40:c2:6e:a0:44:cc:eb:00:
11:94:f7:e3:9e:97:6c:e4:d0:65:ad:93:b1:db:90:5e:cb:a2:
fd:89:7e:67:18:02:45:68:9b:a8:4b:20:f6:4d:21:8b:79:cf:
29:5d:00:b3:b6:05:69:b1:79:e5:55:de:4f:e2:87:36:5d:b2:
12:ac:b8:0e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECp+ElDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZjM2ZWQzMzc1YTZhODk1Y2FkZDQ5ZTBlY2Q0Mjk5NDU0YjNiODljMB4XDTIyMDYw
MzA3NTgyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDNlOTQzZmYyZDFl
ZTZiZjlmN2E3OTZkYjNiYjgyMWY2ZTA2NjNhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJfr/IYsZnJR9dMLtRKY7Y7q0DKnA/TvexbvYgeqXwF1Ykgd
Bd9vqlZw7IToNJWz3R76Go5DZavxxInEgaNVbzlWR0sAtiyr7avFqYJ9rGpGHZZq
i/iTwf2rKIxzZTuBiZr9/w4mobB7BM6caG9uvtMON08xc8ytsch6buvL0UWwU8oM
pMY9Qmki/RY8Ilch31JjwRl1aMhvPpIM9Hb+48hnYuYkSQJNS/zrZVHioS3yG0Sn
xXQOfvX5fS2GD1WNWofkrnYBqLcPiDKsHIak655YYusKcAJw2lIS0ZfP24ApxPHw
KN3H7LRr+jrDS67T/PbK5oQtjaYPAEfztZ6kYMsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRD6UP/LR7mv596eW2zu4IfbgZjpzAfBgNVHSMEGDAWgBT/Nu0zdaaolcrd
SeDs1CmUVLO4nDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L196YnRNM1dtcUpYSzNVbmc3TlFwbEZTenVKdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvM2JjODQwLTgzMjktNDM4OS1hMzRiLWVjMTkwYjFjZWFjYS8x
L1EtbERfeTBlNXItZmVubHRzN3VDSDI0R1k2Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
M2JjODQwLTgzMjktNDM4OS1hMzRiLWVjMTkwYjFjZWFjYS8xL196YnRNM1dtcUpY
SzNVbmc3TlFwbEZTenVKdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFu8/DANBgkqhkiG9w0BAQsFAAOC
AQEAcFgvhhPkHiKBf1quMdXmEZo9THcskIT/NbnBL+m0t4AxrctMPZhCrglSTOJ0
ZLusP8ETHBIWnfWd0wZ70DuS/vDeYk72s4ZOJp9+CmD6HvvixT2rJAHXsTDs8sGu
jpwapKkNwqOsK3clhDkE7UeLc8zOpSW4OBmuoVnwVTr7hSTV5CUL78hhyoBPTYpq
divZhr0qk/Ky8xGwvNjPQ9fdRdCKwJYiOqodlFCOY3FMM1ZL3IBHgcQkpz6OUngz
bEDCbqBEzOsAEZT3456XbOTQZa2TsduQXsui/Yl+ZxgCRWibqEsg9k0hi3nPKV0A
s7YFabF55VXeT+KHNl2yEqy4Dg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:49 2025 by rpki-client