Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/9qw2_mc2FOC-8Qnusq95ZgOflsM.roa
File: 9qw2_mc2FOC-8Qnusq95ZgOflsM.roa (raw, json)
Hash identifier: pqs5hfvEojw9Ajfw3GS/m64stA8owqKwqlf0+mSeonk=
Subject key identifier: F6:AC:36:FE:67:36:14:E0:BE:F1:09:EE:B2:AF:79:66:03:9F:96:C3
Certificate issuer: /CN=869569a2526687da91a7ecd4f567f5409cdffe79
Certificate serial: 01913B2BB073E4E2EF5C7DC9082188B57B8A
Authority key identifier: 86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/9qw2_mc2FOC-8Qnusq95ZgOflsM.roa
Signing time: Sat 10 Aug 2024 07:23:24 +0000
ROA not before: Sat 10 Aug 2024 07:23:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49360
IP address blocks: 31.7.144.0/20 maxlen: 20
91.214.72.0/22 maxlen: 22
2a0a:d3c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3b:2b:b0:73:e4:e2:ef:5c:7d:c9:08:21:88:b5:7b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869569a2526687da91a7ecd4f567f5409cdffe79
Validity
Not Before: Aug 10 07:23:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6ac36fe673614e0bef109eeb2af7966039f96c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9a:28:90:13:59:94:07:d9:22:5b:49:c8:16:
f2:ed:17:8e:7a:14:d1:5c:f3:a7:4d:2c:fb:5b:c1:
84:a1:b0:88:b2:a0:16:97:f1:88:06:d1:e9:71:5f:
48:69:20:a2:9a:61:21:2b:79:74:e1:4f:f0:d5:42:
4a:9d:fb:81:f2:c6:cd:89:ad:34:07:b3:37:36:7d:
de:e8:85:1f:c9:6d:6c:f8:bd:62:a1:01:8d:c4:c2:
5f:e8:58:e8:53:c9:fa:e3:61:42:76:e1:9e:ed:52:
97:e6:d0:19:9c:1e:c5:02:89:ff:60:f9:6d:f5:86:
41:4c:44:5f:12:cd:c5:82:0a:23:41:bf:1f:2e:ae:
5e:3d:6d:54:e3:92:c8:0f:0d:24:80:6b:43:e3:1d:
ca:e4:7b:d7:50:29:10:e9:06:00:f2:2e:0e:86:47:
22:a0:4c:6f:92:e2:b9:67:c2:e3:7a:1b:e8:d9:67:
59:c0:16:18:39:86:e7:9e:e4:af:81:52:cc:57:ca:
f4:cc:19:20:bc:ea:df:fe:14:53:d5:1e:9c:7e:40:
27:7e:cb:ff:e9:7e:73:f8:6a:99:6a:16:57:5b:65:
cb:bd:cc:d6:d1:04:3d:0b:bf:7a:44:46:74:de:15:
a4:c9:bb:e9:17:07:47:91:e5:d1:96:4d:8c:47:e1:
33:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AC:36:FE:67:36:14:E0:BE:F1:09:EE:B2:AF:79:66:03:9F:96:C3
X509v3 Authority Key Identifier:
keyid:86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/9qw2_mc2FOC-8Qnusq95ZgOflsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/hpVpolJmh9qRp-zU9Wf1QJzf_nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.144.0/20
91.214.72.0/22
IPv6:
2a0a:d3c0::/29
Signature Algorithm: sha256WithRSAEncryption
99:32:e2:3a:a8:3d:5d:ea:f3:53:09:46:08:b3:76:95:0a:bb:
35:86:e9:f6:52:0c:2e:5c:fc:0c:fc:dc:4f:77:11:e1:c6:74:
28:f7:8a:60:97:be:d1:86:97:45:ef:1a:f8:58:b0:3b:35:96:
2a:a2:0b:9a:2f:d2:8f:a1:f2:ab:04:65:c3:a4:50:fb:f1:31:
0c:b2:dc:76:62:b3:b4:d1:f8:54:a4:82:b1:2b:c0:94:61:90:
04:df:2a:00:3d:36:44:ef:56:4f:bf:1d:ab:58:b2:62:44:72:
0e:90:13:c7:b5:82:21:1d:8f:6b:87:ff:5d:0c:6b:8c:0b:c8:
46:b4:3a:d9:d0:aa:e7:44:2d:2e:a5:4a:82:fa:0d:06:a3:44:
4b:d2:3f:88:c9:e9:9e:f5:8a:a3:89:44:21:2b:00:ac:94:0e:
df:b9:3a:af:03:79:3e:ca:77:02:9b:13:01:48:ac:8c:81:0b:
22:63:a2:21:c0:5f:25:7b:e4:72:47:ee:44:71:77:46:77:62:
f0:7a:3b:30:c9:24:a3:f9:ba:dc:ae:dd:f3:d6:5f:3d:3f:63:
ab:44:e4:e5:3c:81:5b:99:6f:da:01:af:d5:32:e8:13:6b:51:
6c:1a:58:b4:78:97:87:6f:e3:98:0a:0a:59:32:da:79:e1:fe:
b3:f4:84:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:13:51 2025 by rpki-client