Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0a9b77-b05f-4eff-b934-530b12c437b6/1/dUBKwu7JJlp4VUki1q-_iyYIpjM.roa
File: dUBKwu7JJlp4VUki1q-_iyYIpjM.roa (raw, json)
Hash identifier: Or1cA0Lrof1Rw34e2o92SgJLgrRGAK9XpYH/NXuEvFk=
Subject key identifier: 75:40:4A:C2:EE:C9:26:5A:78:55:49:22:D6:AF:BF:8B:26:08:A6:33
Certificate issuer: /CN=70343dff00b2ae85a1de4cdb655d591cad70f5c6
Certificate serial: 01856C6EF493B4DFE48C078B8F597ABBCE2F
Authority key identifier: 70:34:3D:FF:00:B2:AE:85:A1:DE:4C:DB:65:5D:59:1C:AD:70:F5:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDQ9_wCyroWh3kzbZV1ZHK1w9cY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0a9b77-b05f-4eff-b934-530b12c437b6/1/dUBKwu7JJlp4VUki1q-_iyYIpjM.roa
Signing time: Sun 01 Jan 2023 08:24:48 +0000
ROA not before: Sun 01 Jan 2023 08:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13075
IP address blocks: 91.213.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:f4:93:b4:df:e4:8c:07:8b:8f:59:7a:bb:ce:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70343dff00b2ae85a1de4cdb655d591cad70f5c6
Validity
Not Before: Jan 1 08:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75404ac2eec9265a78554922d6afbf8b2608a633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5e:11:68:b1:c3:29:bf:98:b5:59:87:c7:78:
83:93:2f:20:a6:eb:7f:22:5a:aa:21:7d:77:84:89:
e1:84:dd:60:b5:34:87:a4:c6:4c:3b:49:16:bc:b4:
15:54:cd:d4:0b:49:30:a8:85:5b:5f:3a:92:67:e3:
6d:b6:f8:9f:f4:4c:53:3e:88:61:e9:14:96:33:c5:
d5:76:ce:7c:5b:9e:91:3a:0d:b8:5c:17:e8:6a:a9:
87:7f:89:ff:f3:96:8b:e5:82:de:90:a5:1f:0f:b3:
6e:36:7b:21:2e:9d:2d:5c:f7:ca:e1:ec:e0:df:03:
6f:3e:8c:65:e6:63:0d:e6:82:1e:8a:8d:8e:c7:98:
98:57:fa:fe:db:74:c1:a5:7e:a4:86:b7:e2:28:34:
fc:7f:97:5a:01:2f:ff:7b:60:a0:1d:27:3f:09:c7:
48:bd:46:1f:6c:85:b1:6b:44:18:26:0d:0b:45:32:
23:9e:d7:d8:f8:ca:49:a0:fd:c8:e8:f7:47:9f:5b:
91:78:13:ea:99:d4:bf:cc:1b:a9:7d:06:de:ae:ef:
60:7e:53:ab:22:be:c1:04:a9:a9:04:57:7e:a1:0a:
fe:3b:b9:e6:1b:df:b5:09:85:41:37:7d:a4:9a:f6:
93:6f:7a:4e:95:87:e1:d3:15:7a:1a:79:7f:cc:60:
16:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:40:4A:C2:EE:C9:26:5A:78:55:49:22:D6:AF:BF:8B:26:08:A6:33
X509v3 Authority Key Identifier:
keyid:70:34:3D:FF:00:B2:AE:85:A1:DE:4C:DB:65:5D:59:1C:AD:70:F5:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDQ9_wCyroWh3kzbZV1ZHK1w9cY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0a9b77-b05f-4eff-b934-530b12c437b6/1/dUBKwu7JJlp4VUki1q-_iyYIpjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0a9b77-b05f-4eff-b934-530b12c437b6/1/cDQ9_wCyroWh3kzbZV1ZHK1w9cY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.104.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:25:70:f6:bc:e5:35:fa:17:f2:77:00:1f:64:f2:86:a7:f6:
6f:6f:4f:25:c0:97:8f:f3:6c:68:27:38:ab:56:64:05:15:7d:
80:37:f8:fa:25:62:e5:b8:d2:4e:48:9a:88:3b:2f:f8:42:e6:
a6:57:5d:91:06:31:f2:9a:66:a3:99:e9:cc:8f:ca:9a:37:6b:
42:e8:60:41:6d:76:45:b5:5d:e6:09:10:b1:d0:ee:d1:7e:24:
02:16:58:21:18:32:26:a4:7f:f4:84:e2:12:da:02:80:62:70:
37:69:bc:9a:57:67:cf:b0:27:32:77:ea:f4:77:08:e8:f3:57:
c9:7e:f1:70:9a:07:fc:2a:d0:b0:bf:a7:af:0c:e9:eb:8b:57:
f3:46:52:69:26:10:aa:0d:b6:d2:17:8c:f9:cf:a0:f1:89:44:
02:48:f4:39:c8:9b:f6:1d:f1:36:5b:63:12:41:56:9f:a4:54:
45:cf:fe:0e:b6:a2:3b:27:78:88:08:39:c9:a3:d9:76:c4:83:
30:b3:eb:e0:8c:41:c8:fc:2f:65:ba:71:a8:5a:2b:0f:78:a5:
d6:b0:75:9a:57:ef:b2:94:4f:30:8d:34:01:36:ef:78:63:16:
3e:22:79:f3:97:d2:a5:e1:a4:c9:f0:52:7a:eb:22:f1:20:af:
63:ea:78:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsbvSTtN/kjAeLj1l6u84vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMzQzZGZmMDBiMmFlODVhMWRlNGNkYjY1NWQ1OTFjYWQ3
MGY1YzYwHhcNMjMwMTAxMDgyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTQwNGFjMmVlYzkyNjVhNzg1NTQ5MjJkNmFmYmY4YjI2MDhhNjMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml4RaLHDKb+YtVmHx3iDky8gput/
IlqqIX13hInhhN1gtTSHpMZMO0kWvLQVVM3UC0kwqIVbXzqSZ+Nttvif9ExTPohh
6RSWM8XVds58W56ROg24XBfoaqmHf4n/85aL5YLekKUfD7NuNnshLp0tXPfK4ezg
3wNvPoxl5mMN5oIeio2Ox5iYV/r+23TBpX6khrfiKDT8f5daAS//e2CgHSc/CcdI
vUYfbIWxa0QYJg0LRTIjntfY+MpJoP3I6PdHn1uReBPqmdS/zBupfQberu9gflOr
Ir7BBKmpBFd+oQr+O7nmG9+1CYVBN32kmvaTb3pOlYfh0xV6Gnl/zGAWnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHVASsLuySZaeFVJItavv4smCKYzMB8GA1UdIwQY
MBaAFHA0Pf8Asq6Fod5M22VdWRytcPXGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0RROV93Q3lyb1doM2t6YlpWMVpISzF3OWNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8wYTliNzctYjA1Zi00ZWZmLWI5MzQt
NTMwYjEyYzQzN2I2LzEvZFVCS3d1N0pKbHA0VlVraTFxLV9peVlJcGpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC8wYTliNzctYjA1Zi00ZWZmLWI5MzQtNTMwYjEyYzQzN2I2
LzEvY0RROV93Q3lyb1doM2t6YlpWMVpISzF3OWNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9VoMA0G
CSqGSIb3DQEBCwUAA4IBAQAuJXD2vOU1+hfydwAfZPKGp/Zvb08lwJeP82xoJzir
VmQFFX2AN/j6JWLluNJOSJqIOy/4QuamV12RBjHymmajmenMj8qaN2tC6GBBbXZF
tV3mCRCx0O7RfiQCFlghGDImpH/0hOIS2gKAYnA3abyaV2fPsCcyd+r0dwjo81fJ
fvFwmgf8KtCwv6evDOnri1fzRlJpJhCqDbbSF4z5z6DxiUQCSPQ5yJv2HfE2W2MS
QVafpFRFz/4OtqI7J3iICDnJo9l2xIMws+vgjEHI/C9lunGoWisPeKXWsHWaV++y
lE8wjTQBNu94YxY+Innzl9Kl4aTJ8FJ66yLxIK9j6ngy
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:10 2024 by rpki-client on console-fra.rpki-client.org