Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3b2ae9-668f-4a0f-ab1e-dcb915d1d50a/1/IhUFYPSCw5XleWK7wmLZ1QR42zM.roa
File: IhUFYPSCw5XleWK7wmLZ1QR42zM.roa (raw, json)
Hash identifier: zK6DGK5wTxfbB9rE474le4/Y/1usjGV35sogv+qjOMU=
Subject key identifier: 22:15:05:60:F4:82:C3:95:E5:79:62:BB:C2:62:D9:D5:04:78:DB:33
Certificate issuer: /CN=9959ce4eae5fb6592b9e42e1433818b6a8664caa
Certificate serial: 018CC8715523CF4BBF6ACD994B370C8EFADF
Authority key identifier: 99:59:CE:4E:AE:5F:B6:59:2B:9E:42:E1:43:38:18:B6:A8:66:4C:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mVnOTq5ftlkrnkLhQzgYtqhmTKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3b2ae9-668f-4a0f-ab1e-dcb915d1d50a/1/IhUFYPSCw5XleWK7wmLZ1QR42zM.roa
Signing time: Tue 02 Jan 2024 04:31:59 +0000
ROA not before: Tue 02 Jan 2024 04:31:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 91.239.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:55:23:cf:4b:bf:6a:cd:99:4b:37:0c:8e:fa:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9959ce4eae5fb6592b9e42e1433818b6a8664caa
Validity
Not Before: Jan 2 04:31:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22150560f482c395e57962bbc262d9d50478db33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5f:81:5e:ec:7b:19:a9:ea:d9:a8:50:a6:4f:
1b:88:6a:f6:ab:3c:64:65:76:b3:3b:9d:ad:92:9d:
67:46:06:81:0c:c0:52:e6:0f:6f:bd:69:90:98:47:
11:76:28:3c:41:e5:58:75:7c:d6:bc:9a:fa:97:9f:
7c:ff:23:96:07:9d:a2:17:d6:0b:34:28:14:4d:59:
44:60:2a:76:78:3a:85:b2:b6:18:8d:46:5d:be:67:
00:0a:9f:25:9f:3b:ac:14:5d:89:b1:52:08:ce:f8:
d6:9c:d4:5e:95:fb:4c:d9:c2:0a:c7:a7:98:4a:e3:
68:76:ce:52:c4:b8:f6:d6:29:71:e6:c1:cd:7b:81:
20:13:a9:ec:21:46:fd:53:90:99:eb:c0:67:6b:11:
79:b9:a0:ef:30:48:c7:0e:ce:d3:24:f4:ad:3e:e1:
28:c6:d9:f4:11:ed:c0:32:f0:71:d3:0c:47:c7:27:
e7:6d:b8:7b:52:9c:31:e1:2a:96:d6:78:1a:ad:ac:
59:43:86:2e:e5:44:0d:6a:36:47:3f:58:f3:45:45:
a5:cb:62:42:f3:bc:f7:91:e9:bf:78:c5:7a:3c:b6:
65:b3:6a:46:14:e0:ad:cb:19:fa:1e:bf:85:bf:bb:
2b:fd:2b:a1:fe:ea:e4:3f:6d:68:2b:1c:e3:67:e1:
4a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:15:05:60:F4:82:C3:95:E5:79:62:BB:C2:62:D9:D5:04:78:DB:33
X509v3 Authority Key Identifier:
keyid:99:59:CE:4E:AE:5F:B6:59:2B:9E:42:E1:43:38:18:B6:A8:66:4C:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mVnOTq5ftlkrnkLhQzgYtqhmTKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3b2ae9-668f-4a0f-ab1e-dcb915d1d50a/1/IhUFYPSCw5XleWK7wmLZ1QR42zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3b2ae9-668f-4a0f-ab1e-dcb915d1d50a/1/mVnOTq5ftlkrnkLhQzgYtqhmTKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.213.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c1:4d:db:d1:78:0f:74:22:98:54:70:1f:8c:9f:13:aa:87:
45:4d:a0:5f:79:e8:0a:9c:eb:8b:bc:a8:32:21:77:27:19:3f:
d5:0f:c4:2e:a2:d0:15:14:c0:c1:a2:ed:f4:7b:28:cb:52:8c:
fa:5f:71:db:d9:4c:84:61:59:2b:c6:93:01:7e:1a:17:5c:f6:
29:84:8e:06:9e:b0:6b:6d:d0:ca:78:42:7f:e0:b7:5e:7f:a7:
41:c4:82:4c:c7:27:05:5c:89:f7:57:a9:64:66:ff:99:d1:a0:
a9:93:ff:d1:3e:0c:11:08:50:39:d5:40:6b:d0:f6:71:93:2e:
58:30:57:9a:d0:96:a3:d1:d2:d0:38:84:71:00:48:b9:12:c5:
8a:00:e9:c3:99:ec:97:82:8e:03:7e:b0:74:91:1e:36:04:98:
41:4d:99:1f:19:3d:49:e7:63:89:6b:24:23:e1:dc:73:c1:f6:
5b:66:b7:9c:16:5d:20:b6:ac:13:25:41:83:c3:d0:11:d7:f0:
15:95:0b:bc:21:bf:2d:35:65:ed:c7:7e:f7:17:ba:1c:6d:12:
81:81:43:5b:fe:2a:72:a4:28:ca:9c:88:a1:1c:d5:f8:5c:84:
f1:b1:84:c7:58:6c:db:cc:fd:7c:cf:d9:bc:24:16:a8:ec:a1:
d8:41:10:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org