Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/K7CK9Mrrxk-RhYi0z4TNCQVthD4.roa
File: K7CK9Mrrxk-RhYi0z4TNCQVthD4.roa (raw, json)
Hash identifier: mUFz3m1IhSRncObtuYLsi9PXYa+NRad1jVlChdoX9qo=
Subject key identifier: 2B:B0:8A:F4:CA:EB:C6:4F:91:85:88:B4:CF:84:CD:09:05:6D:84:3E
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 33B1D461
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/K7CK9Mrrxk-RhYi0z4TNCQVthD4.roa
Signing time: Sat 01 Jan 2022 14:55:14 +0000
ROA not before: Sat 01 Jan 2022 14:55:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201596
IP address blocks: 91.108.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 867292257 (0x33b1d461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 1 14:55:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bb08af4caebc64f918588b4cf84cd09056d843e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4e:37:43:3a:ee:1e:1f:7c:9b:b3:95:6e:a9:
e3:bc:73:50:21:be:3f:1b:98:76:17:e3:9f:ab:54:
9f:32:fa:9f:42:30:1b:0d:b7:41:cc:10:64:47:cc:
14:3a:53:63:6f:d7:df:63:d6:b5:f7:f6:00:d3:da:
d8:98:a8:80:3f:f7:5b:a4:a2:b1:54:9e:20:8a:9e:
58:12:a0:ef:b1:cd:7c:d8:84:88:68:e6:9a:9f:c4:
d9:5c:84:1c:31:e8:b7:b7:c1:14:3d:13:a7:12:9d:
d6:3e:a0:c8:ef:10:53:b3:18:49:89:fb:ac:77:33:
d2:fb:63:e9:7d:65:09:6d:25:68:62:20:0c:9b:2f:
10:2e:e1:fc:56:86:68:c1:b7:5c:38:76:f8:db:2b:
4f:3e:67:8c:b5:af:ee:83:f1:53:15:58:c7:c0:85:
ac:92:dc:92:8e:4d:93:25:c9:f7:6c:a2:57:e9:c0:
97:88:6c:e6:b4:31:51:3d:62:20:bf:64:78:e7:c8:
25:1b:11:3d:1f:7f:7d:93:cc:c0:1d:35:37:99:10:
04:46:5e:41:75:19:c4:ca:38:4e:75:52:6b:17:f3:
08:ee:22:bd:f7:27:f5:7c:1e:c2:a2:44:7d:9d:c3:
0a:ac:7b:75:6b:f5:b7:cc:95:3d:d0:b9:27:41:c9:
9f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B0:8A:F4:CA:EB:C6:4F:91:85:88:B4:CF:84:CD:09:05:6D:84:3E
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/K7CK9Mrrxk-RhYi0z4TNCQVthD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.96.0/20
Signature Algorithm: sha256WithRSAEncryption
93:e8:4e:73:88:57:a7:6d:95:df:7c:34:d9:e5:57:2f:e4:38:
ae:27:3f:e7:9d:b0:81:90:da:84:eb:9e:c4:e2:93:05:2f:4b:
21:ab:28:0e:db:d5:6b:e5:33:a3:3b:fa:d1:28:b3:74:9c:e7:
4a:69:9e:b8:54:63:7a:01:30:4e:35:dd:29:67:96:55:56:d9:
a3:c3:d6:04:70:4d:76:83:5e:a1:c1:be:93:63:69:5e:54:66:
04:ff:1f:8c:8f:d0:b7:13:1c:7f:e3:bd:1e:42:3e:9d:f8:81:
7f:95:9d:02:06:29:63:56:cc:c0:fe:b5:65:13:8a:a0:dc:6a:
c0:bf:2d:76:90:be:d3:36:15:f6:95:0d:38:34:f4:0f:44:38:
c5:e3:72:82:f5:0a:a6:6a:88:95:b6:10:3a:99:01:38:25:28:
2d:e6:71:94:93:66:bb:60:d1:34:1b:01:f2:8d:cc:ba:11:4f:
df:5c:c3:a1:ea:6e:67:6b:88:de:2d:e1:ec:dc:16:66:e6:e6:
25:41:a7:3b:cb:73:90:0b:f0:af:3c:1a:53:48:bd:63:41:95:
f8:48:73:44:d5:59:83:5b:d7:09:68:e6:47:b2:80:e2:51:73:
36:70:3f:41:f5:89:26:c2:80:a8:26:a4:e2:c2:9e:25:dc:46:
d6:ff:a0:a0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEM7HUYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MDhkNzM1ZjM0NmM0ZmM0MmE0NzkyY2UzMzgwOGEyMjEwYTgyYmI1MB4XDTIyMDEw
MTE0NTUxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmJiMDhhZjRjYWVi
YzY0ZjkxODU4OGI0Y2Y4NGNkMDkwNTZkODQzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANZON0M67h4ffJuzlW6p47xzUCG+PxuYdhfjn6tUnzL6n0Iw
Gw23QcwQZEfMFDpTY2/X32PWtff2ANPa2JiogD/3W6SisVSeIIqeWBKg77HNfNiE
iGjmmp/E2VyEHDHot7fBFD0TpxKd1j6gyO8QU7MYSYn7rHcz0vtj6X1lCW0laGIg
DJsvEC7h/FaGaMG3XDh2+NsrTz5njLWv7oPxUxVYx8CFrJLcko5NkyXJ92yiV+nA
l4hs5rQxUT1iIL9keOfIJRsRPR9/fZPMwB01N5kQBEZeQXUZxMo4TnVSaxfzCO4i
vfcn9XwewqJEfZ3DCqx7dWv1t8yVPdC5J0HJnxECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQrsIr0yuvGT5GFiLTPhM0JBW2EPjAfBgNVHSMEGDAWgBTAjXNfNGxPxCpH
ks4zgIoiEKgrtTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dJMXpYelJzVDhRcVI1TE9NNENLSWhDb0s3VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvZDk3Mjg3LWZkMDEtNGExMC05MDllLWMzZjI1N2ViMjBjYy8x
L0s3Q0s5TXJyeGstUmhZaTB6NFROQ1FWdGhENC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
ZDk3Mjg3LWZkMDEtNGExMC05MDllLWMzZjI1N2ViMjBjYy8xL3dJMXpYelJzVDhR
cVI1TE9NNENLSWhDb0s3VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBFtsYDANBgkqhkiG9w0BAQsFAAOC
AQEAk+hOc4hXp22V33w02eVXL+Q4ric/552wgZDahOuexOKTBS9LIasoDtvVa+Uz
ozv60SizdJznSmmeuFRjegEwTjXdKWeWVVbZo8PWBHBNdoNeocG+k2NpXlRmBP8f
jI/QtxMcf+O9HkI+nfiBf5WdAgYpY1bMwP61ZROKoNxqwL8tdpC+0zYV9pUNODT0
D0Q4xeNygvUKpmqIlbYQOpkBOCUoLeZxlJNmu2DRNBsB8o3MuhFP31zDoepuZ2uI
3i3h7NwWZubmJUGnO8tzkAvwrzwaU0i9Y0GV+EhzRNVZg1vXCWjmR7KA4lFzNnA/
QfWJJsKAqCak4sKeJdxG1v+goA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net