Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/TGwlxVMIf6MqYA5lU87BDdg6qcE.roa
File: TGwlxVMIf6MqYA5lU87BDdg6qcE.roa (raw, json)
Hash identifier: MbPSubJ6JJhZsIlHsL7F35djFyePCKGbqW4oCwVhkWY=
Subject key identifier: 4C:6C:25:C5:53:08:7F:A3:2A:60:0E:65:53:CE:C1:0D:D8:3A:A9:C1
Certificate issuer: /CN=b498c97b14c374a52833db6a4007b54b4662c5a9
Certificate serial: 01929EDD0391555689EEF0DC429D421D80F6
Authority key identifier: B4:98:C9:7B:14:C3:74:A5:28:33:DB:6A:40:07:B5:4B:46:62:C5:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJjJexTDdKUoM9tqQAe1S0Zixak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/TGwlxVMIf6MqYA5lU87BDdg6qcE.roa
Signing time: Fri 18 Oct 2024 09:02:17 +0000
ROA not before: Fri 18 Oct 2024 09:02:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 91.196.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9e:dd:03:91:55:56:89:ee:f0:dc:42:9d:42:1d:80:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b498c97b14c374a52833db6a4007b54b4662c5a9
Validity
Not Before: Oct 18 09:02:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c6c25c553087fa32a600e6553cec10dd83aa9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:62:c0:95:34:87:95:48:9b:04:9b:34:3c:43:
cd:de:0b:d1:e3:ca:98:5c:ae:6e:16:e4:51:f9:ce:
93:f6:6a:8b:d2:e7:5e:b3:4d:56:0c:1b:21:6c:7f:
a3:77:bc:1f:83:29:46:13:42:e3:2c:a9:78:20:9d:
1d:03:12:be:ed:85:72:44:52:f0:a9:a7:49:a8:d3:
68:e1:b9:1c:73:f2:fc:bd:92:24:41:03:62:27:02:
38:f7:69:5a:fa:14:bb:91:49:82:e2:2d:59:5b:9c:
18:83:44:e5:d4:89:7c:5f:5a:4c:c4:1c:a9:98:c3:
47:22:25:a2:2f:30:20:dc:f1:84:a9:64:0e:12:21:
41:71:bb:92:52:88:dd:4a:b9:e9:5c:26:dd:8a:ef:
48:c3:8f:bd:83:59:f8:d2:13:22:98:47:f7:48:66:
a2:35:3f:6e:f8:89:68:ea:53:49:ba:00:b5:3f:5f:
99:e3:db:f1:bc:cc:13:09:fa:81:0a:24:e5:d8:64:
9f:e9:6a:53:c3:63:3f:a5:0a:13:97:a5:32:4b:66:
db:16:03:8a:ee:15:78:6f:70:d0:84:75:88:3d:42:
50:fb:87:e4:bb:5f:b8:27:3b:83:11:19:5e:93:8f:
9a:44:8e:2f:e4:0a:8a:68:86:4a:e1:ca:d7:80:85:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6C:25:C5:53:08:7F:A3:2A:60:0E:65:53:CE:C1:0D:D8:3A:A9:C1
X509v3 Authority Key Identifier:
keyid:B4:98:C9:7B:14:C3:74:A5:28:33:DB:6A:40:07:B5:4B:46:62:C5:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJjJexTDdKUoM9tqQAe1S0Zixak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/TGwlxVMIf6MqYA5lU87BDdg6qcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/tJjJexTDdKUoM9tqQAe1S0Zixak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.160.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:52:d3:21:64:07:6c:00:6c:f3:e7:97:89:31:1a:6c:96:ab:
86:1c:3b:b9:6c:d5:dd:11:bd:72:93:9d:e8:a3:55:61:41:a4:
b1:50:0c:24:6c:fb:01:23:3f:f5:91:39:28:f1:4d:a8:49:62:
a5:65:7f:c1:29:76:48:04:4a:90:3f:86:a8:da:86:84:72:21:
fc:ea:02:04:7a:d3:16:a2:27:3a:0f:fc:70:a3:0c:8b:54:ee:
0f:19:14:af:65:b3:da:ee:20:4f:47:b9:89:27:ad:40:e9:ed:
bf:f2:70:7b:f4:26:43:01:29:d9:f1:87:54:74:38:9c:00:4a:
e5:d1:14:ff:e7:08:38:68:ca:1d:98:fe:29:fb:d3:0a:cf:e9:
21:46:7c:c7:15:bf:85:0d:c3:a9:8c:f7:c6:d3:9d:08:d3:56:
b5:18:41:83:b6:17:a0:61:88:e7:96:8e:53:cf:6b:49:a7:22:
5d:f3:db:92:51:96:43:db:a4:54:e1:62:83:c8:fb:2b:85:bb:
09:c4:a2:4b:dd:7a:2e:22:63:c4:6c:c2:03:52:ff:cc:e8:f9:
fd:c1:ce:7e:24:db:b5:91:a1:b4:c9:3f:14:ca:74:13:15:ee:
be:f4:8f:ce:f1:78:df:33:71:ab:a8:19:8d:90:99:42:65:ac:
9d:73:e7:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZKe3QORVVaJ7vDcQp1CHYD2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0OThjOTdiMTRjMzc0YTUyODMzZGI2YTQwMDdiNTRiNDY2
MmM1YTkwHhcNMjQxMDE4MDkwMjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzZjMjVjNTUzMDg3ZmEzMmE2MDBlNjU1M2NlYzEwZGQ4M2FhOWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32LAlTSHlUibBJs0PEPN3gvR48qY
XK5uFuRR+c6T9mqL0udes01WDBshbH+jd7wfgylGE0LjLKl4IJ0dAxK+7YVyRFLw
qadJqNNo4bkcc/L8vZIkQQNiJwI492la+hS7kUmC4i1ZW5wYg0Tl1Il8X1pMxByp
mMNHIiWiLzAg3PGEqWQOEiFBcbuSUojdSrnpXCbdiu9Iw4+9g1n40hMimEf3SGai
NT9u+Ilo6lNJugC1P1+Z49vxvMwTCfqBCiTl2GSf6WpTw2M/pQoTl6UyS2bbFgOK
7hV4b3DQhHWIPUJQ+4fku1+4JzuDERlek4+aRI4v5AqKaIZK4crXgIUUtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFExsJcVTCH+jKmAOZVPOwQ3YOqnBMB8GA1UdIwQY
MBaAFLSYyXsUw3SlKDPbakAHtUtGYsWpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEpqSmV4VERkS1VvTTl0cVFBZTFTMFppeGFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC8xNDcwZjUtYzMxNi00ZmZmLTljMzct
ODY1NDI2NjQ1N2M2LzEvVEd3bHhWTUlmNk1xWUE1bFU4N0JEZGc2cWNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC8xNDcwZjUtYzMxNi00ZmZmLTljMzctODY1NDI2NjQ1N2M2
LzEvdEpqSmV4VERkS1VvTTl0cVFBZTFTMFppeGFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8SgMA0G
CSqGSIb3DQEBCwUAA4IBAQC9UtMhZAdsAGzz55eJMRpslquGHDu5bNXdEb1yk53o
o1VhQaSxUAwkbPsBIz/1kTko8U2oSWKlZX/BKXZIBEqQP4ao2oaEciH86gIEetMW
oic6D/xwowyLVO4PGRSvZbPa7iBPR7mJJ61A6e2/8nB79CZDASnZ8YdUdDicAErl
0RT/5wg4aModmP4p+9MKz+khRnzHFb+FDcOpjPfG050I01a1GEGDthegYYjnlo5T
z2tJpyJd89uSUZZD26RU4WKDyPsrhbsJxKJL3XouImPEbMIDUv/M6Pn9wc5+JNu1
kaG0yT8UynQTFe6+9I/O8XjfM3GrqBmNkJlCZaydc+cm
-----END CERTIFICATE-----
Generated at Tue Dec 24 21:28:28 2024 by rpki-client on console.sobornost.net