Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e1548a-01fb-44d9-a4c3-010eaa33318c/1/eXhgiVb_TF2FzNsxteINhedfUHc.roa
File: eXhgiVb_TF2FzNsxteINhedfUHc.roa (raw, json)
Hash identifier: F4lU5+6NejVt2l3SqNOJkHrLlztT61CU2llV2YJbnu0=
Subject key identifier: 79:78:60:89:56:FF:4C:5D:85:CC:DB:31:B5:E2:0D:85:E7:5F:50:77
Certificate issuer: /CN=32ee75ea499da25cddb717cd8b8ea6f030e943c8
Certificate serial: 0AF598A1
Authority key identifier: 32:EE:75:EA:49:9D:A2:5C:DD:B7:17:CD:8B:8E:A6:F0:30:E9:43:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mu516kmdolzdtxfNi46m8DDpQ8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e1548a-01fb-44d9-a4c3-010eaa33318c/1/eXhgiVb_TF2FzNsxteINhedfUHc.roa
Signing time: Sat 01 Jan 2022 14:58:20 +0000
ROA not before: Sat 01 Jan 2022 14:58:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39122
IP address blocks: 185.209.164.0/22 maxlen: 22
91.197.234.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183867553 (0xaf598a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32ee75ea499da25cddb717cd8b8ea6f030e943c8
Validity
Not Before: Jan 1 14:58:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7978608956ff4c5d85ccdb31b5e20d85e75f5077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:05:e8:21:9f:27:eb:ce:f8:26:3a:0c:85:7c:
bf:58:2d:94:a6:6a:eb:54:67:59:b5:ad:bb:17:19:
b8:bf:83:ef:f8:da:e3:b3:9f:bd:8c:c3:b2:8b:fc:
5f:9a:bf:06:3e:5b:2e:5f:85:1e:37:51:16:6c:52:
3e:ab:6c:b9:23:26:b3:e8:ce:03:02:02:43:a1:d3:
c9:19:69:48:a8:28:59:2b:18:9b:9f:65:95:42:7c:
a9:30:28:77:e2:2b:10:93:38:f7:bd:2d:89:9d:57:
9b:9b:c6:31:b2:f7:bc:ae:cb:25:6f:99:85:f8:de:
c2:4b:44:35:df:18:a4:b9:e5:02:9c:b0:5a:c9:4a:
f3:51:bb:ac:57:43:19:08:6b:4d:bb:db:6f:6b:0e:
84:77:59:e7:a2:01:b2:03:8e:91:e4:ad:4f:e7:53:
a7:0c:2b:aa:e9:71:a0:91:2a:86:8a:93:b4:40:5e:
61:da:3b:ee:b5:dc:bb:27:e5:db:55:8e:6d:b9:b8:
9e:41:7e:cd:d1:fc:a5:aa:0e:6f:b4:b8:a5:a6:4d:
39:95:ec:59:73:77:92:a0:57:60:29:d7:51:4e:fa:
49:63:f6:d0:6e:9f:2d:e9:36:d9:dc:b5:9e:e2:39:
f4:49:8e:79:49:20:05:b0:28:9e:21:6d:85:a0:4f:
ad:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:78:60:89:56:FF:4C:5D:85:CC:DB:31:B5:E2:0D:85:E7:5F:50:77
X509v3 Authority Key Identifier:
keyid:32:EE:75:EA:49:9D:A2:5C:DD:B7:17:CD:8B:8E:A6:F0:30:E9:43:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mu516kmdolzdtxfNi46m8DDpQ8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e1548a-01fb-44d9-a4c3-010eaa33318c/1/eXhgiVb_TF2FzNsxteINhedfUHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e1548a-01fb-44d9-a4c3-010eaa33318c/1/Mu516kmdolzdtxfNi46m8DDpQ8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.234.0/23
185.209.164.0/22
Signature Algorithm: sha256WithRSAEncryption
36:68:04:00:fd:c3:5c:47:98:f5:3f:ad:f5:d9:ef:fd:de:f8:
57:84:13:e7:8c:a6:04:3c:f6:fa:ae:22:a0:4c:07:a3:6a:f4:
34:09:45:bb:af:82:45:7c:ab:04:c0:cc:9b:aa:c2:0b:45:10:
72:3b:51:f2:72:06:d0:a8:73:77:64:d6:7e:ad:0f:03:60:27:
50:e2:3e:25:7e:4e:9f:bb:ac:5e:d7:29:ff:d7:44:89:ab:0e:
40:34:6e:dd:ef:48:f5:23:e6:a8:05:19:d4:b9:b8:07:60:1c:
89:c0:67:10:c2:50:7e:2e:eb:e5:2b:1a:a5:59:de:1d:ab:90:
bc:cf:71:05:ab:0e:fa:3e:02:9d:a4:bb:09:04:29:63:d6:69:
e6:a2:c3:92:72:52:48:f7:06:3a:1d:34:bb:6b:13:90:bb:88:
a3:da:f5:75:66:44:94:8c:7e:f6:c8:53:e8:83:db:30:ee:a7:
13:b3:a0:db:3e:79:33:f9:c2:c2:57:ce:8b:5c:27:f0:4b:df:
8d:4a:f8:19:58:93:f6:c3:12:84:2b:1a:84:fb:1a:a5:8c:a7:
77:36:74:f5:77:9e:d3:28:d2:02:0a:16:14:14:41:7b:e6:62:
26:41:ab:52:1c:21:7d:99:31:21:71:b0:e6:5f:d3:38:86:5e:
19:1e:1c:1e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECvWYoTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MmVlNzVlYTQ5OWRhMjVjZGRiNzE3Y2Q4YjhlYTZmMDMwZTk0M2M4MB4XDTIyMDEw
MTE0NTgyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzk3ODYwODk1NmZm
NGM1ZDg1Y2NkYjMxYjVlMjBkODVlNzVmNTA3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgF6CGfJ+vO+CY6DIV8v1gtlKZq61RnWbWtuxcZuL+D7/ja
47OfvYzDsov8X5q/Bj5bLl+FHjdRFmxSPqtsuSMms+jOAwICQ6HTyRlpSKgoWSsY
m59llUJ8qTAod+IrEJM4970tiZ1Xm5vGMbL3vK7LJW+ZhfjewktENd8YpLnlApyw
WslK81G7rFdDGQhrTbvbb2sOhHdZ56IBsgOOkeStT+dTpwwrqulxoJEqhoqTtEBe
Ydo77rXcuyfl21WObbm4nkF+zdH8paoOb7S4paZNOZXsWXN3kqBXYCnXUU76SWP2
0G6fLek22dy1nuI59EmOeUkgBbAoniFthaBPrfUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR5eGCJVv9MXYXM2zG14g2F519QdzAfBgNVHSMEGDAWgBQy7nXqSZ2iXN23
F82LjqbwMOlDyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L011NTE2a21kb2x6ZHR4Zk5pNDZtOEREcFE4Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGMvZTE1NDhhLTAxZmItNDRkOS1hNGMzLTAxMGVhYTMzMzE4Yy8x
L2VYaGdpVmJfVEYyRnpOc3h0ZUlOaGVkZlVIYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGMv
ZTE1NDhhLTAxZmItNDRkOS1hNGMzLTAxMGVhYTMzMzE4Yy8xL011NTE2a21kb2x6
ZHR4Zk5pNDZtOEREcFE4Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAVvF6gMEArnRpDANBgkqhkiG9w0B
AQsFAAOCAQEANmgEAP3DXEeY9T+t9dnv/d74V4QT54ymBDz2+q4ioEwHo2r0NAlF
u6+CRXyrBMDMm6rCC0UQcjtR8nIG0Khzd2TWfq0PA2AnUOI+JX5On7usXtcp/9dE
iasOQDRu3e9I9SPmqAUZ1Lm4B2AcicBnEMJQfi7r5SsapVneHauQvM9xBasO+j4C
naS7CQQpY9Zp5qLDknJSSPcGOh00u2sTkLuIo9r1dWZElIx+9shT6IPbMO6nE7Og
2z55M/nCwlfOi1wn8EvfjUr4GViT9sMShCsahPsapYyndzZ09Xee0yjSAgoWFBRB
e+ZiJkGrUhwhfZkxIXGw5l/TOIZeGR4cHg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:50 2023 by rpki-client on console.sobornost.net