Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/ba3771-409f-4070-b941-a700c89efba3/1/aX3DCQjvQEwQ3u_FYiA6_kx47Ok.roa
File: aX3DCQjvQEwQ3u_FYiA6_kx47Ok.roa (raw, json)
Hash identifier: wNCVJGyhPEYXiirZ8RIJ/62p/oWH56m1yj7eqJiYMJc=
Subject key identifier: 69:7D:C3:09:08:EF:40:4C:10:DE:EF:C5:62:20:3A:FE:4C:78:EC:E9
Certificate issuer: /CN=4ba79b1ced6ee60d8617d28ec7ce639289df4fd7
Certificate serial: 09683FEF
Authority key identifier: 4B:A7:9B:1C:ED:6E:E6:0D:86:17:D2:8E:C7:CE:63:92:89:DF:4F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S6ebHO1u5g2GF9KOx85jkonfT9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/ba3771-409f-4070-b941-a700c89efba3/1/aX3DCQjvQEwQ3u_FYiA6_kx47Ok.roa
Signing time: Sat 01 Jan 2022 02:53:21 +0000
ROA not before: Sat 01 Jan 2022 02:53:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 91.199.76.0/24 maxlen: 24
2001:67c:470::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157827055 (0x9683fef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ba79b1ced6ee60d8617d28ec7ce639289df4fd7
Validity
Not Before: Jan 1 02:53:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=697dc30908ef404c10deefc562203afe4c78ece9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fe:e4:2f:0e:35:6a:09:5c:72:e7:3f:30:8a:
f6:dc:90:b6:4c:44:da:35:23:6a:f7:ab:9e:8d:90:
f3:45:8e:a6:3f:cd:e4:fe:e4:75:c8:fc:b1:ef:04:
41:20:a0:1a:8d:bf:2b:35:61:b0:ba:0b:28:c7:0c:
e2:a9:42:76:5c:7f:26:a0:f4:87:43:85:99:87:02:
80:5e:97:7f:f1:e2:8d:bb:7f:79:af:98:d2:7c:d0:
42:a2:4b:7b:3b:18:20:97:68:2a:bc:a3:39:82:a3:
d9:bb:11:89:05:d5:12:b1:b1:8b:9c:ca:ce:e3:a7:
af:70:2e:cb:29:d9:5a:4c:c4:36:f2:65:4d:b8:74:
1b:3b:f4:64:87:21:19:0c:4e:31:5d:cd:5f:f0:c2:
b8:41:ff:68:f2:53:35:c6:0a:e9:39:5b:c6:4e:b0:
8c:6b:15:dc:14:4f:2e:37:76:7f:84:50:69:c4:7c:
bd:77:b5:d5:66:bb:6d:b8:49:79:53:57:39:80:7a:
f8:71:30:8d:d5:73:f0:46:33:a4:a6:67:1f:01:c0:
72:55:a0:61:5b:f8:ac:6f:e6:2d:87:41:89:39:0c:
70:07:f3:e0:ec:6e:25:68:94:cb:06:a1:13:14:4f:
f1:95:0f:25:e5:ca:e4:9f:71:ab:93:b6:ec:2c:08:
4c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7D:C3:09:08:EF:40:4C:10:DE:EF:C5:62:20:3A:FE:4C:78:EC:E9
X509v3 Authority Key Identifier:
keyid:4B:A7:9B:1C:ED:6E:E6:0D:86:17:D2:8E:C7:CE:63:92:89:DF:4F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S6ebHO1u5g2GF9KOx85jkonfT9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ba3771-409f-4070-b941-a700c89efba3/1/aX3DCQjvQEwQ3u_FYiA6_kx47Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ba3771-409f-4070-b941-a700c89efba3/1/S6ebHO1u5g2GF9KOx85jkonfT9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.76.0/24
IPv6:
2001:67c:470::/48
Signature Algorithm: sha256WithRSAEncryption
57:77:88:0b:65:3a:e6:50:c2:d3:0b:5a:13:26:97:82:f6:c0:
cd:2f:10:0f:9e:4a:2b:06:45:ac:77:6a:c2:01:38:f1:1c:f6:
c3:c7:72:5d:bf:3b:97:4b:06:2f:ee:a6:59:a5:c1:df:5e:73:
37:41:86:af:a3:82:bb:2b:81:8d:be:c1:73:35:1f:fb:b4:b3:
62:a2:46:2a:54:2a:2e:8c:81:7b:db:2b:0a:31:d4:a4:cf:94:
b8:da:23:05:fb:6f:a1:00:73:df:db:cd:2d:8a:5b:a7:82:e4:
39:b3:bb:e2:a5:0f:1d:39:6f:df:94:bd:a8:51:5f:79:b3:c9:
50:08:62:41:83:4e:bc:75:d9:f0:2f:c4:ac:d8:c3:8c:37:3d:
c1:cb:74:1d:e0:5a:78:63:8d:35:73:d0:0e:27:be:60:e2:c9:
6c:e9:8e:32:0f:cf:5f:a5:44:17:1c:26:4a:bd:15:de:4b:95:
67:02:fd:2e:10:ca:f0:fa:74:72:48:69:6e:0d:78:6c:bb:c4:
7e:ba:15:76:a5:51:80:f1:0c:b8:eb:57:f8:48:19:de:ce:c2:
a3:1d:f7:92:9d:fa:0e:cc:c1:63:e3:26:b2:6d:34:17:46:c4:
86:07:ce:ce:4b:a0:23:b6:6f:e7:f1:4c:e0:62:d9:f2:75:8a:
17:44:c8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:10 2024 by rpki-client on console-fra.rpki-client.org