Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d505e8-02b3-4d87-94c6-1da4b92799f6/1/K7aLBiVj3aH7S19gkdQBxTw5Kgg.roa
File: K7aLBiVj3aH7S19gkdQBxTw5Kgg.roa (raw, json)
Hash identifier: bauAUQNQZR9gDqUB1cQwlzhE6HIzTFXHw78zQQdutDk=
Subject key identifier: 2B:B6:8B:06:25:63:DD:A1:FB:4B:5F:60:91:D4:01:C5:3C:39:2A:08
Certificate issuer: /CN=982b5693b8261fb539fea3b13c817115f00c18df
Certificate serial: 018DC8802EAC692A8979DCA5EE6E6F4A8BF8
Authority key identifier: 98:2B:56:93:B8:26:1F:B5:39:FE:A3:B1:3C:81:71:15:F0:0C:18:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCtWk7gmH7U5_qOxPIFxFfAMGN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d505e8-02b3-4d87-94c6-1da4b92799f6/1/K7aLBiVj3aH7S19gkdQBxTw5Kgg.roa
Signing time: Tue 20 Feb 2024 21:51:00 +0000
ROA not before: Tue 20 Feb 2024 21:51:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6428
IP address blocks: 91.90.162.1/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c8:80:2e:ac:69:2a:89:79:dc:a5:ee:6e:6f:4a:8b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982b5693b8261fb539fea3b13c817115f00c18df
Validity
Not Before: Feb 20 21:51:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bb68b062563dda1fb4b5f6091d401c53c392a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d6:20:f0:a8:41:65:e3:34:12:28:8a:b8:b2:
67:2d:09:9c:90:50:5a:84:90:00:63:a0:84:52:3c:
77:f7:84:49:e8:39:3c:ce:11:bb:79:31:1a:fe:36:
50:9f:62:75:ff:22:72:a2:b3:64:23:5f:b9:a3:c8:
15:f8:97:74:fd:5c:48:5d:84:8f:20:51:35:1a:45:
af:1b:8f:97:8c:d0:4e:45:18:84:e4:e7:a3:49:9d:
56:4a:d4:60:c8:e4:10:53:e7:54:fb:40:c6:15:91:
85:5d:8c:18:0e:7d:67:57:2c:19:95:7e:60:0f:38:
81:9e:69:e9:3a:49:b9:15:6c:82:21:56:fb:66:5b:
8b:32:f2:4d:d8:2d:d4:1e:76:13:e3:ec:85:cc:68:
14:35:de:bf:28:be:9e:6f:cd:1b:c9:7d:e4:1a:b6:
2c:91:be:fb:aa:2a:08:57:aa:a9:e1:73:41:38:ad:
7c:99:97:38:ab:70:02:ab:55:5d:fb:09:3f:dd:24:
f3:2f:4c:b6:6c:62:e3:54:c4:45:e3:d9:82:b4:27:
52:a3:1a:ae:c5:9a:fc:04:ef:85:eb:ca:6d:29:0d:
30:d9:4d:f5:9f:5b:0c:bb:33:55:2c:06:ae:d7:15:
2a:c9:75:86:f0:0a:3e:22:4d:02:1b:97:90:f6:c1:
b5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B6:8B:06:25:63:DD:A1:FB:4B:5F:60:91:D4:01:C5:3C:39:2A:08
X509v3 Authority Key Identifier:
keyid:98:2B:56:93:B8:26:1F:B5:39:FE:A3:B1:3C:81:71:15:F0:0C:18:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCtWk7gmH7U5_qOxPIFxFfAMGN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d505e8-02b3-4d87-94c6-1da4b92799f6/1/K7aLBiVj3aH7S19gkdQBxTw5Kgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d505e8-02b3-4d87-94c6-1da4b92799f6/1/mCtWk7gmH7U5_qOxPIFxFfAMGN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.90.162.1/32
Signature Algorithm: sha256WithRSAEncryption
2d:dd:08:6d:15:80:4f:4f:4a:3f:5e:99:af:4f:dd:2c:05:48:
73:c7:f9:52:4d:9d:a0:bf:52:e9:a6:3c:e6:17:84:31:65:d0:
f8:48:40:6b:3c:5c:8b:8d:bd:1c:d7:e9:a3:14:e1:e6:8d:d9:
89:7c:e9:84:f7:5e:70:cd:15:35:62:56:11:9a:9f:cd:74:77:
2a:ba:98:e8:a7:fe:26:b3:0f:a3:f6:e6:4a:50:54:94:cc:ce:
9e:d8:e0:17:c9:2a:c3:ec:ba:d1:84:5f:8a:bc:1f:01:50:4b:
35:ed:38:21:c4:be:2b:3d:35:3a:8e:a9:55:48:82:f1:75:1b:
03:37:72:18:80:e0:54:c8:ef:c1:c5:16:10:ff:8c:6e:ab:ec:
e8:5b:09:05:8b:ff:db:ec:8f:c1:05:00:9d:67:50:0e:6d:55:
fe:dc:ef:96:1d:5f:44:49:fb:ac:14:14:9a:04:78:12:61:f2:
dc:7a:94:b8:98:8d:d5:ab:2e:56:13:51:dc:e5:6a:3c:b7:98:
c4:59:7e:5f:dc:5b:73:ea:1a:18:e3:50:94:80:22:69:d3:be:
e3:41:5f:7b:bd:e3:e0:b2:f7:80:82:71:3e:12:70:ec:59:2d:
15:5e:51:a4:d2:0c:61:51:84:ef:f5:c5:1b:6e:0b:28:a9:f9:
75:35:57:2d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY3IgC6saSqJedyl7m5vSov4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmI1NjkzYjgyNjFmYjUzOWZlYTNiMTNjODE3MTE1ZjAw
YzE4ZGYwHhcNMjQwMjIwMjE1MTAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYmI2OGIwNjI1NjNkZGExZmI0YjVmNjA5MWQ0MDFjNTNjMzkyYTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkNYg8KhBZeM0EiiKuLJnLQmckFBa
hJAAY6CEUjx394RJ6Dk8zhG7eTEa/jZQn2J1/yJyorNkI1+5o8gV+Jd0/VxIXYSP
IFE1GkWvG4+XjNBORRiE5OejSZ1WStRgyOQQU+dU+0DGFZGFXYwYDn1nVywZlX5g
DziBnmnpOkm5FWyCIVb7ZluLMvJN2C3UHnYT4+yFzGgUNd6/KL6eb80byX3kGrYs
kb77qioIV6qp4XNBOK18mZc4q3ACq1Vd+wk/3STzL0y2bGLjVMRF49mCtCdSoxqu
xZr8BO+F68ptKQ0w2U31n1sMuzNVLAau1xUqyXWG8Ao+Ik0CG5eQ9sG1YwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFCu2iwYlY92h+0tfYJHUAcU8OSoIMB8GA1UdIwQY
MBaAFJgrVpO4Jh+1Of6jsTyBcRXwDBjfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN0V2s3Z21IN1U1X3FPeFBJRnhGZkFNR044LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9kNTA1ZTgtMDJiMy00ZDg3LTk0YzYt
MWRhNGI5Mjc5OWY2LzEvSzdhTEJpVmozYUg3UzE5Z2tkUUJ4VHc1S2dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS9kNTA1ZTgtMDJiMy00ZDg3LTk0YzYtMWRhNGI5Mjc5OWY2
LzEvbUN0V2s3Z21IN1U1X3FPeFBJRnhGZkFNR044LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUAW1qiATAN
BgkqhkiG9w0BAQsFAAOCAQEALd0IbRWAT09KP16Zr0/dLAVIc8f5Uk2doL9S6aY8
5heEMWXQ+EhAazxci429HNfpoxTh5o3ZiXzphPdecM0VNWJWEZqfzXR3KrqY6Kf+
JrMPo/bmSlBUlMzOntjgF8kqw+y60YRfirwfAVBLNe04IcS+Kz01Oo6pVUiC8XUb
AzdyGIDgVMjvwcUWEP+Mbqvs6FsJBYv/2+yPwQUAnWdQDm1V/tzvlh1fREn7rBQU
mgR4EmHy3HqUuJiN1asuVhNR3OVqPLeYxFl+X9xbc+oaGONQlIAiadO+40Ffe73j
4LL3gIJxPhJw7FktFV5RpNIMYVGE7/XFG24LKKn5dTVXLQ==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:36 2024 by rpki-client on console.sobornost.net