Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/F-72g5ABfa7gSHDCR_mXqGGOIu8.roa
File: F-72g5ABfa7gSHDCR_mXqGGOIu8.roa (raw, json)
Hash identifier: +3FsA17sRuvFZnkAIVQaw/cnbci3J5zdqmli8la6q9k=
Subject key identifier: 17:EE:F6:83:90:01:7D:AE:E0:48:70:C2:47:F9:97:A8:61:8E:22:EF
Certificate issuer: /CN=28fb591ec304faed9c22da142d52442cdd642e26
Certificate serial: 0185710C149B16AF86346A07D6EC4A016830
Authority key identifier: 28:FB:59:1E:C3:04:FA:ED:9C:22:DA:14:2D:52:44:2C:DD:64:2E:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPtZHsME-u2cItoULVJELN1kLiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/F-72g5ABfa7gSHDCR_mXqGGOIu8.roa
Signing time: Mon 02 Jan 2023 05:54:55 +0000
ROA not before: Mon 02 Jan 2023 05:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49446
IP address blocks: 91.213.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:14:9b:16:af:86:34:6a:07:d6:ec:4a:01:68:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fb591ec304faed9c22da142d52442cdd642e26
Validity
Not Before: Jan 2 05:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17eef68390017daee04870c247f997a8618e22ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:11:22:5f:54:f5:32:d3:ee:53:4c:20:91:82:
65:5a:19:93:4b:3f:a7:18:9f:4c:d9:02:f0:9e:24:
b5:1d:c0:e5:ae:a9:c5:bf:61:99:85:0c:51:f0:2c:
3e:5a:a8:aa:56:da:2c:6e:f0:dd:d2:e4:f5:e2:65:
6f:6d:14:43:0e:af:11:0a:2e:2a:79:f7:1b:c3:39:
8c:67:16:b1:8f:fa:b0:c6:a1:0d:43:80:32:33:24:
46:a3:db:47:54:91:d2:5f:a4:1d:79:e9:11:79:3c:
15:d9:c5:63:13:c1:f7:71:bb:a3:d1:cb:5a:03:06:
bf:ed:6f:4b:dc:ba:6b:c2:e1:59:c9:1c:1f:ab:47:
75:5c:11:74:01:25:44:e9:16:55:35:39:a7:f2:68:
43:1a:36:05:d5:bf:e2:ea:ec:3a:c1:27:8c:81:61:
d9:fc:c4:62:77:eb:ba:0e:79:1b:f9:d1:40:27:9d:
2d:8e:44:14:9c:89:02:7c:a8:08:1f:45:dd:d2:50:
fd:13:cc:e4:87:dd:06:25:00:c4:a3:c4:47:20:35:
21:a0:78:ad:5c:2b:c8:5e:70:92:90:78:b7:9a:88:
37:c5:3e:22:b0:a8:e9:a6:02:46:09:2e:c9:61:d1:
ec:58:d3:1b:24:0d:bb:da:1d:4c:c1:d9:8e:38:be:
eb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:EE:F6:83:90:01:7D:AE:E0:48:70:C2:47:F9:97:A8:61:8E:22:EF
X509v3 Authority Key Identifier:
keyid:28:FB:59:1E:C3:04:FA:ED:9C:22:DA:14:2D:52:44:2C:DD:64:2E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPtZHsME-u2cItoULVJELN1kLiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/F-72g5ABfa7gSHDCR_mXqGGOIu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/KPtZHsME-u2cItoULVJELN1kLiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.2.0/24
Signature Algorithm: sha256WithRSAEncryption
31:a4:5e:bd:40:ed:46:ce:3c:ef:52:69:4b:46:2a:b2:4a:0b:
26:84:a1:cc:c1:7e:3d:f0:5e:f5:51:6c:13:ce:41:c8:da:d8:
03:60:de:d3:cf:d8:ac:49:fb:40:31:c4:51:14:45:18:8d:5c:
07:24:c9:41:cd:ec:39:8a:16:c3:fd:46:21:ec:93:4d:68:4d:
11:8e:a0:f2:aa:95:01:cf:50:81:be:ff:d0:83:67:08:dd:5b:
33:44:c0:69:cb:86:fe:fb:cd:bb:f4:5a:97:b2:7a:08:ec:35:
77:6f:f6:be:5c:95:ac:e2:2d:85:70:e8:ec:e6:fc:b4:b7:7a:
0b:2f:f1:69:17:15:91:16:3e:de:cf:57:f6:d2:e3:0f:0d:c5:
78:1e:8a:9e:c3:1d:b8:30:d6:bb:69:49:aa:cf:e5:cc:4e:01:
cb:1f:1e:e8:a4:83:37:75:03:39:82:2f:72:6a:5e:4c:5a:08:
1d:ca:e1:80:d9:20:3f:ad:aa:9f:22:13:56:09:0a:a2:05:31:
f3:1e:e1:d0:a2:b0:4a:7d:f5:10:87:0d:10:bf:f0:2d:f4:43:
50:51:f7:4a:e7:92:4a:19:3d:0f:f2:c7:7f:99:8a:8e:dc:06:
3a:f5:a3:bb:ed:a1:2c:df:09:94:d2:23:66:f7:d4:78:70:98:
36:d6:d3:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org