Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/kc9Pr490mf072MeA_-c8iAIL_Y4.roa
File: kc9Pr490mf072MeA_-c8iAIL_Y4.roa (raw, json)
Hash identifier: rUL+8zuAD14lmj0szo33AryXvTzkhdNUbDSTc3DOFf4=
Subject key identifier: 91:CF:4F:AF:8F:74:99:FD:3B:D8:C7:80:FF:E7:3C:88:02:0B:FD:8E
Certificate issuer: /CN=3f0e49eb450708cf64740baa8ce2d1987d22c915
Certificate serial: B174E1
Authority key identifier: 3F:0E:49:EB:45:07:08:CF:64:74:0B:AA:8C:E2:D1:98:7D:22:C9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pw5J60UHCM9kdAuqjOLRmH0iyRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/kc9Pr490mf072MeA_-c8iAIL_Y4.roa
Signing time: Sat 01 Jan 2022 00:55:27 +0000
ROA not before: Sat 01 Jan 2022 00:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 213.217.29.0/24 maxlen: 24
185.53.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11629793 (0xb174e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f0e49eb450708cf64740baa8ce2d1987d22c915
Validity
Not Before: Jan 1 00:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91cf4faf8f7499fd3bd8c780ffe73c88020bfd8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:77:ff:64:53:8a:7b:de:40:df:59:a3:a6:42:
4e:bd:ad:5b:02:cc:cc:a1:d1:5c:dc:b0:2a:f8:05:
7c:75:63:e5:2a:19:47:86:14:43:64:b7:0f:3f:b3:
0b:98:0b:ba:6e:6d:d7:0e:c0:80:71:98:17:ce:02:
2b:22:56:d6:75:51:a7:4a:09:06:fc:08:07:26:97:
cc:be:7d:2f:62:35:31:67:1d:c7:0e:92:e5:52:2a:
de:e2:d1:be:58:ec:48:8b:80:be:ec:61:c6:bb:ab:
93:39:10:0c:fe:4e:01:9d:30:0c:38:36:9c:75:bc:
8d:69:8d:f9:4a:ab:0d:92:4b:2d:de:72:ed:03:d3:
f3:ac:3b:2b:3e:d8:98:d7:86:28:21:d8:79:1e:16:
8a:fe:aa:0b:f8:df:22:74:34:e3:9e:9f:f4:a4:29:
f5:49:f7:ce:d3:bd:b4:23:09:da:ed:e9:e0:d7:8a:
ff:f0:da:1b:41:d5:93:98:48:a7:da:c7:17:b7:dc:
a0:82:a5:83:7c:1d:9c:80:26:e9:2f:d3:2c:99:05:
1a:3e:19:db:ce:d7:99:9c:69:20:3f:6d:52:ce:c4:
bb:6d:b1:3f:17:06:d4:02:c2:4c:d9:c0:30:5c:12:
81:9b:cf:fd:c6:1b:82:6f:3b:b4:e1:73:7e:4e:09:
5c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:CF:4F:AF:8F:74:99:FD:3B:D8:C7:80:FF:E7:3C:88:02:0B:FD:8E
X509v3 Authority Key Identifier:
keyid:3F:0E:49:EB:45:07:08:CF:64:74:0B:AA:8C:E2:D1:98:7D:22:C9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pw5J60UHCM9kdAuqjOLRmH0iyRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/kc9Pr490mf072MeA_-c8iAIL_Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/Pw5J60UHCM9kdAuqjOLRmH0iyRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.33.0/24
213.217.29.0/24
Signature Algorithm: sha256WithRSAEncryption
36:60:a4:f9:ce:57:2c:de:c6:49:e2:bd:39:a1:4b:c9:7a:3d:
e5:c7:97:eb:63:f8:4d:49:90:09:c7:4e:32:a2:08:37:a3:d4:
6c:46:e1:71:3f:04:51:9d:89:08:7c:aa:ff:b2:5d:da:6b:5f:
fe:16:06:61:00:15:fc:b2:93:31:7e:c0:b5:9a:6c:be:1f:be:
ef:e9:5f:22:ec:0d:82:fa:bf:83:d7:f6:ba:67:fc:0b:eb:70:
40:85:ad:30:56:d0:83:51:c1:bf:e8:a0:59:f5:88:7b:1a:3b:
d3:a2:5a:12:49:49:48:6c:d1:22:4e:18:75:27:a5:98:7c:10:
01:05:8d:d7:45:e1:f3:5a:d4:6b:1e:0b:0c:59:f9:12:1f:d2:
b3:0b:7b:5b:fd:2a:42:14:3d:1f:24:82:d2:aa:6f:67:70:b8:
a4:55:bd:73:71:02:5b:4c:83:af:f3:09:40:81:0f:9b:83:4f:
bb:0d:eb:d7:03:00:82:c0:35:1b:b7:d9:e9:75:ac:f1:55:c9:
e2:2f:97:f2:9a:3f:a0:17:9f:a1:ff:f4:ea:45:38:99:c7:5f:
d2:89:5c:f1:ea:5e:1e:bb:58:fb:75:53:ff:0c:a2:42:2c:c0:
7f:e8:57:79:2b:56:75:5b:52:f2:17:5a:d7:14:ee:88:cd:66:
bb:93:51:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:09 2024 by rpki-client on console-fra.rpki-client.org