Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/fNbFv_MVOLXXC9uTQL0USs6hHeI.roa
File: fNbFv_MVOLXXC9uTQL0USs6hHeI.roa (raw, json)
Hash identifier: 3WeUljlUaXVjaZxd2d4PU3KCFSJI8prt3n8rY2Qn44s=
Subject key identifier: 7C:D6:C5:BF:F3:15:38:B5:D7:0B:DB:93:40:BD:14:4A:CE:A1:1D:E2
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 0185710C2713304659D9EE236C1189B27E71
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/fNbFv_MVOLXXC9uTQL0USs6hHeI.roa
Signing time: Mon 02 Jan 2023 05:54:59 +0000
ROA not before: Mon 02 Jan 2023 05:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399641
IP address blocks: 91.188.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:27:13:30:46:59:d9:ee:23:6c:11:89:b2:7e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Jan 2 05:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cd6c5bff31538b5d70bdb9340bd144acea11de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:95:38:8f:d6:ae:4b:75:a9:22:d1:d3:5c:52:
df:54:30:d2:06:01:60:96:ad:9d:fe:51:8f:f8:32:
39:f8:7f:af:09:06:83:76:e9:91:00:63:0e:a9:39:
0b:1d:68:ab:28:ca:cb:de:a2:bc:e8:ba:2f:b3:9d:
d5:33:16:00:58:56:aa:13:b1:bc:5c:87:20:4e:84:
3c:96:db:46:f9:ea:24:d6:cd:e6:86:e1:26:ff:eb:
f6:56:63:74:5a:bd:31:36:3a:df:43:e8:1a:83:2b:
b3:32:53:9b:21:f4:e9:10:50:0e:78:bc:55:b6:89:
5a:e5:bf:b3:d2:78:eb:18:72:16:fb:c2:9f:af:0d:
74:41:3f:2d:07:48:36:c4:fa:84:cb:72:8f:ce:b5:
45:12:a1:3a:fa:03:c1:fc:fb:df:93:3d:18:a2:26:
33:ab:f5:16:90:51:c7:09:2e:5b:51:94:e7:d0:9a:
bd:0b:ed:a4:06:29:7f:a7:7a:9d:4c:d9:ad:47:e4:
ca:f9:2e:a6:65:a8:be:f1:6b:ae:d9:e4:21:8a:aa:
28:bc:6d:81:38:fc:a6:f2:f5:34:12:54:1b:b6:36:
cc:84:3f:7e:52:7c:3b:c0:14:2d:45:72:ea:a7:4a:
da:88:ce:8e:28:00:47:25:5f:4c:53:e1:7a:d8:82:
59:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D6:C5:BF:F3:15:38:B5:D7:0B:DB:93:40:BD:14:4A:CE:A1:1D:E2
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/fNbFv_MVOLXXC9uTQL0USs6hHeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.253.0/24
Signature Algorithm: sha256WithRSAEncryption
45:e7:73:9d:6e:ff:4e:51:dd:6d:b4:6a:61:8a:26:74:51:9b:
ce:94:69:1a:3a:68:e8:be:64:5e:f0:ba:26:d9:7e:6a:36:31:
4d:b8:aa:38:c2:e5:aa:63:b0:85:a8:73:6d:f4:72:3e:56:1e:
5a:40:3b:15:64:3f:9a:4e:dd:76:e4:4a:a9:ec:be:4d:9e:cf:
38:1e:49:e7:37:36:9a:4b:35:d5:ff:01:d7:b2:5e:fa:85:5e:
d6:98:e1:27:dd:11:bb:95:dd:53:07:e2:43:cf:d8:c9:86:bb:
f9:81:73:33:25:e1:82:62:7b:56:30:a4:ff:82:25:17:0d:b7:
d9:b0:0b:fb:e3:b3:ee:aa:7f:cd:2f:7c:ef:62:4b:10:c1:a5:
0b:d9:60:51:d4:d2:c2:4a:ac:bd:35:f6:7e:7a:31:78:ea:87:
09:b3:8d:41:a5:77:24:44:ff:6d:16:59:6e:5b:a5:7f:dd:38:
38:8d:d4:e9:fe:37:35:bb:11:5c:74:53:eb:02:1e:34:51:e0:
aa:be:d4:1d:84:ee:08:cb:d2:e2:ba:35:55:87:6c:ed:7f:c0:
bb:5e:5f:7f:d8:64:06:a1:69:0d:b1:9d:bc:2e:95:b1:5b:56:
2b:8e:d7:95:71:2f:e8:64:f2:f2:5b:73:98:fe:81:d9:e9:fe:
c6:03:82:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxDCcTMEZZ2e4jbBGJsn5xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmMzZlZDMzNzVhNmE4OTVjYWRkNDllMGVjZDQyOTk0NTRi
M2I4OWMwHhcNMjMwMTAyMDU1NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Y2Q2YzViZmYzMTUzOGI1ZDcwYmRiOTM0MGJkMTQ0YWNlYTExZGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspU4j9auS3WpItHTXFLfVDDSBgFg
lq2d/lGP+DI5+H+vCQaDdumRAGMOqTkLHWirKMrL3qK86Lovs53VMxYAWFaqE7G8
XIcgToQ8lttG+eok1s3mhuEm/+v2VmN0Wr0xNjrfQ+gagyuzMlObIfTpEFAOeLxV
tola5b+z0njrGHIW+8Kfrw10QT8tB0g2xPqEy3KPzrVFEqE6+gPB/Pvfkz0YoiYz
q/UWkFHHCS5bUZTn0Jq9C+2kBil/p3qdTNmtR+TK+S6mZai+8Wuu2eQhiqoovG2B
OPym8vU0ElQbtjbMhD9+Unw7wBQtRXLqp0raiM6OKABHJV9MU+F62IJZmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHzWxb/zFTi11wvbk0C9FErOoR3iMB8GA1UdIwQY
MBaAFP827TN1pqiVyt1J4OzUKZRUs7icMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3pidE0zV21xSlhLM1VuZzdOUXBsRlN6dUp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zYmM4NDAtODMyOS00Mzg5LWEzNGIt
ZWMxOTBiMWNlYWNhLzEvZk5iRnZfTVZPTFhYQzl1VFFMMFVTczZoSGVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8zYmM4NDAtODMyOS00Mzg5LWEzNGItZWMxOTBiMWNlYWNh
LzEvX3pidE0zV21xSlhLM1VuZzdOUXBsRlN6dUp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW7z9MA0G
CSqGSIb3DQEBCwUAA4IBAQBF53Odbv9OUd1ttGphiiZ0UZvOlGkaOmjovmRe8Lom
2X5qNjFNuKo4wuWqY7CFqHNt9HI+Vh5aQDsVZD+aTt125Eqp7L5Nns84HknnNzaa
SzXV/wHXsl76hV7WmOEn3RG7ld1TB+JDz9jJhrv5gXMzJeGCYntWMKT/giUXDbfZ
sAv747Puqn/NL3zvYksQwaUL2WBR1NLCSqy9NfZ+ejF46ocJs41BpXckRP9tFllu
W6V/3Tg4jdTp/jc1uxFcdFPrAh40UeCqvtQdhO4Iy9LiujVVh2ztf8C7Xl9/2GQG
oWkNsZ28LpWxW1YrjteVcS/oZPLyW3OY/oHZ6f7GA4JN
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org