Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/gjGQEKn90Nl0TcySeP9BL8x1AQU.roa
File: gjGQEKn90Nl0TcySeP9BL8x1AQU.roa (raw, json)
Hash identifier: WcNcYBqGPDpiMXXcFEm9qNrShkcORGUtjo3iZOkGyN8=
Subject key identifier: 82:31:90:10:A9:FD:D0:D9:74:4D:CC:92:78:FF:41:2F:CC:75:01:05
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 0ABC201C
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/gjGQEKn90Nl0TcySeP9BL8x1AQU.roa
Signing time: Wed 15 Jun 2022 13:41:44 +0000
ROA not before: Wed 15 Jun 2022 13:41:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206336
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180101148 (0xabc201c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Jun 15 13:41:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82319010a9fdd0d9744dcc9278ff412fcc750105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:da:9d:13:8a:f7:9e:a7:9f:b8:fd:09:30:77:
e0:f3:d6:c4:f1:7f:7f:aa:45:2a:68:99:e8:13:cf:
4a:e2:0b:ec:f7:63:be:4b:8c:38:a4:19:7a:07:6c:
96:ce:2e:4b:93:33:a4:15:6c:69:7d:d3:7c:92:cc:
f1:b3:f5:74:4d:75:80:cd:e7:d6:57:1a:56:cb:a9:
78:26:0f:2f:1b:51:65:12:47:ca:92:d2:34:24:be:
90:42:ed:54:d0:9a:2b:10:c2:fb:96:ee:11:00:30:
01:0a:20:65:8c:d6:a5:12:93:7c:a2:79:2c:fc:b8:
84:13:2e:88:0a:60:13:93:99:37:06:a6:d5:5a:1a:
52:c0:d9:6c:1c:cf:0d:48:75:3f:e0:a1:9a:7c:97:
35:c3:f8:39:5c:da:90:44:50:e5:e1:c2:8e:83:9c:
14:8f:f6:5c:cc:42:fb:31:2d:c5:ea:b7:8c:04:0a:
f0:c8:08:f0:c4:26:2e:b5:f1:12:ce:b3:02:19:dc:
1a:d6:47:68:18:e0:37:0d:2e:e8:1c:aa:5d:c3:22:
60:0e:a7:56:b1:3a:7d:3b:e2:9e:b7:51:56:a6:12:
fa:27:e5:5f:54:04:07:6a:f9:2a:5d:20:a6:0a:7c:
bc:02:29:66:2d:aa:5e:d2:88:51:a5:e0:8d:98:f8:
14:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:31:90:10:A9:FD:D0:D9:74:4D:CC:92:78:FF:41:2F:CC:75:01:05
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/gjGQEKn90Nl0TcySeP9BL8x1AQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:b7:d5:f3:80:2a:f8:96:73:53:55:29:a1:e6:39:8d:3f:3f:
4d:71:c9:8b:98:5a:99:55:e7:bb:bb:b6:0f:d5:9d:bf:bb:4d:
0e:71:c7:5e:ec:9e:bc:87:7b:1e:24:73:9e:3b:81:68:01:66:
bc:88:7e:c8:c4:62:87:71:17:9d:80:6c:ca:2b:ff:00:90:4a:
a9:ed:27:c1:07:d4:7c:16:ac:58:6c:88:d8:e2:cf:fd:21:a9:
3a:7e:e0:82:a8:9a:a4:28:2a:b2:5d:ef:ce:7f:ef:68:09:f3:
11:6f:5f:0a:e0:3d:62:4c:ca:a8:df:84:43:36:a5:54:0d:4e:
ed:59:67:28:b7:6b:11:27:1b:bd:2e:15:51:f9:76:72:86:91:
f1:08:3c:09:c6:7a:55:bb:7c:95:53:e1:ef:ad:86:46:22:25:
a7:d8:39:1a:27:84:a5:f1:ec:31:f3:95:d7:54:26:ea:4f:b8:
a3:fb:61:84:6a:48:b3:54:60:17:1f:18:be:42:3e:45:ed:18:
d1:3f:c7:d0:98:d3:7b:05:c1:52:e9:88:26:73:68:b4:19:af:
71:af:97:c6:43:a6:6e:72:09:89:40:1f:42:a5:b4:cc:ad:9c:
41:7b:22:2a:2b:8d:50:a0:06:d9:4f:ce:fc:94:84:76:d7:fb:
ae:3f:3d:d6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECrwgHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZjM2ZWQzMzc1YTZhODk1Y2FkZDQ5ZTBlY2Q0Mjk5NDU0YjNiODljMB4XDTIyMDYx
NTEzNDE0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODIzMTkwMTBhOWZk
ZDBkOTc0NGRjYzkyNzhmZjQxMmZjYzc1MDEwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMjanROK956nn7j9CTB34PPWxPF/f6pFKmiZ6BPPSuIL7Pdj
vkuMOKQZegdsls4uS5MzpBVsaX3TfJLM8bP1dE11gM3n1lcaVsupeCYPLxtRZRJH
ypLSNCS+kELtVNCaKxDC+5buEQAwAQogZYzWpRKTfKJ5LPy4hBMuiApgE5OZNwam
1VoaUsDZbBzPDUh1P+ChmnyXNcP4OVzakERQ5eHCjoOcFI/2XMxC+zEtxeq3jAQK
8MgI8MQmLrXxEs6zAhncGtZHaBjgNw0u6ByqXcMiYA6nVrE6fTvinrdRVqYS+ifl
X1QEB2r5Kl0gpgp8vAIpZi2qXtKIUaXgjZj4FAsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCMZAQqf3Q2XRNzJJ4/0EvzHUBBTAfBgNVHSMEGDAWgBT/Nu0zdaaolcrd
SeDs1CmUVLO4nDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L196YnRNM1dtcUpYSzNVbmc3TlFwbEZTenVKdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvM2JjODQwLTgzMjktNDM4OS1hMzRiLWVjMTkwYjFjZWFjYS8x
L2dqR1FFS245ME5sMFRjeVNlUDlCTDh4MUFRVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
M2JjODQwLTgzMjktNDM4OS1hMzRiLWVjMTkwYjFjZWFjYS8xL196YnRNM1dtcUpY
SzNVbmc3TlFwbEZTenVKdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFu8/DANBgkqhkiG9w0BAQsFAAOC
AQEAT7fV84Aq+JZzU1UpoeY5jT8/TXHJi5hamVXnu7u2D9Wdv7tNDnHHXuyevId7
HiRznjuBaAFmvIh+yMRih3EXnYBsyiv/AJBKqe0nwQfUfBasWGyI2OLP/SGpOn7g
gqiapCgqsl3vzn/vaAnzEW9fCuA9YkzKqN+EQzalVA1O7VlnKLdrEScbvS4VUfl2
coaR8Qg8CcZ6Vbt8lVPh762GRiIlp9g5GieEpfHsMfOV11Qm6k+4o/thhGpIs1Rg
Fx8YvkI+Re0Y0T/H0JjTewXBUumIJnNotBmvca+XxkOmbnIJiUAfQqW0zK2cQXsi
KiuNUKAG2U/O/JSEdtf7rj891g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org