Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/DYK5ujGxP_s7HoLdkDRPIa4-TV4.roa
File: DYK5ujGxP_s7HoLdkDRPIa4-TV4.roa (raw, json)
Hash identifier: FJmEPMNcetF8fNPSluzkQ4LJS07a24o7rOKT6LiK/bU=
Subject key identifier: 0D:82:B9:BA:31:B1:3F:FB:3B:1E:82:DD:90:34:4F:21:AE:3E:4D:5E
Certificate issuer: /CN=3f1843dcd0a6b36fcad6aa0e26f707c741bd1755
Certificate serial: 01856D540AA89370E215FB86DAA420D1E411
Authority key identifier: 3F:18:43:DC:D0:A6:B3:6F:CA:D6:AA:0E:26:F7:07:C7:41:BD:17:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxhD3NCms2_K1qoOJvcHx0G9F1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/DYK5ujGxP_s7HoLdkDRPIa4-TV4.roa
Signing time: Sun 01 Jan 2023 12:35:02 +0000
ROA not before: Sun 01 Jan 2023 12:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57773
IP address blocks: 91.198.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:0a:a8:93:70:e2:15:fb:86:da:a4:20:d1:e4:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f1843dcd0a6b36fcad6aa0e26f707c741bd1755
Validity
Not Before: Jan 1 12:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d82b9ba31b13ffb3b1e82dd90344f21ae3e4d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:94:9c:df:aa:0d:f5:59:7e:52:95:2d:2e:8f:
88:b9:c6:f9:f6:50:06:b4:ce:d9:38:65:8b:2d:51:
7d:4d:f5:c7:59:7c:0c:d7:04:7c:fb:cc:84:aa:5f:
23:e3:1e:63:4a:3b:ec:47:72:e6:22:46:70:ff:14:
4b:b7:01:db:b3:41:06:3d:ca:3c:11:d7:6e:66:ce:
3f:a7:4c:0a:b9:79:d0:7a:2e:00:49:90:c0:6c:91:
e0:64:48:df:db:61:40:85:c1:b0:ef:25:d3:64:c7:
d5:6a:67:5f:bd:6f:9f:29:5e:7e:8b:f6:9f:2e:92:
01:c5:e9:35:b7:a5:4f:c1:ce:8c:bd:8b:4b:37:a9:
b8:47:04:8c:62:a5:67:12:e8:51:90:ee:f6:cc:ea:
e7:1b:24:b0:a8:0f:da:c0:1c:3d:67:bc:cd:4b:fc:
b1:a1:ad:32:e6:26:35:3c:a2:16:2e:fd:e3:92:c4:
a6:c3:c9:e6:7d:dd:7f:d0:5a:33:56:12:3c:6e:16:
d3:6f:2b:d1:13:05:83:ba:a9:5a:2d:7d:37:a1:0e:
3c:86:63:86:c3:ca:1b:ef:97:93:b3:e3:cc:f0:bc:
8f:76:c2:9c:9e:2d:83:08:1b:36:8c:f3:0c:28:be:
81:e0:ae:51:ff:6c:ba:c0:d0:51:02:ba:d1:1e:c0:
ce:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:82:B9:BA:31:B1:3F:FB:3B:1E:82:DD:90:34:4F:21:AE:3E:4D:5E
X509v3 Authority Key Identifier:
keyid:3F:18:43:DC:D0:A6:B3:6F:CA:D6:AA:0E:26:F7:07:C7:41:BD:17:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxhD3NCms2_K1qoOJvcHx0G9F1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/DYK5ujGxP_s7HoLdkDRPIa4-TV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f2ed3d-97f6-4a10-9010-6aff06d368e9/1/PxhD3NCms2_K1qoOJvcHx0G9F1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.135.0/24
Signature Algorithm: sha256WithRSAEncryption
22:1e:91:a4:98:69:a7:6a:73:8d:4d:00:72:7d:8a:db:0c:33:
13:bc:2a:ea:b6:f9:59:e2:da:90:31:fa:9f:4a:d5:ae:ab:7f:
3a:2e:df:8c:3a:42:99:f0:fb:7c:ce:32:3e:de:8a:00:b4:ec:
2b:59:b8:d9:c5:00:b0:cd:e0:69:23:4c:af:7f:54:db:bc:e1:
7d:d0:47:d6:a6:c3:15:44:6d:62:ae:5f:bc:42:d7:9f:a4:1f:
c8:26:fc:a3:93:14:31:9c:e0:70:d8:82:cc:3c:48:af:61:af:
c5:94:c6:9f:2f:80:6c:eb:ac:51:2b:74:08:47:20:c8:72:58:
fb:92:62:ca:b2:b7:18:f0:7e:35:fd:87:0e:41:59:3e:e9:ca:
75:7f:39:7d:41:5a:75:d1:3b:22:9d:4d:aa:79:91:b1:e9:26:
4a:4b:84:7f:18:1f:e5:68:db:e8:f8:17:3c:ba:f7:b8:2a:57:
54:33:45:05:35:cf:c4:c1:0e:90:a8:97:c9:88:7f:78:3a:bf:
38:fb:21:e6:7d:15:79:12:94:7c:08:c6:f0:59:8a:f1:6d:5b:
22:ee:16:44:b6:8d:c5:f8:83:74:6c:c0:83:bb:cd:2a:c6:ba:
41:88:17:b2:94:5c:4a:17:ff:03:a9:b9:14:2a:b0:91:2f:a0:
19:77:ce:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:50 2024 by rpki-client on console-ams.rpki-client.org