Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/999789-2631-4eb9-a5dc-c7d29b294170/1/wBRdapmUMuzdeNrFuSskbL0dgWM.roa
File: wBRdapmUMuzdeNrFuSskbL0dgWM.roa (raw, json)
Hash identifier: 10O51ntCLQH/e4Js6Pnf+KaQ+Umc62Q5hKl3fmFtYp8=
Subject key identifier: C0:14:5D:6A:99:94:32:EC:DD:78:DA:C5:B9:2B:24:6C:BD:1D:81:63
Certificate issuer: /CN=35dbcef8b0c18dfd3d4aa2d6588e971dc9bdd39c
Certificate serial: 0185720C7C7E3F534762AC85D47D09316754
Authority key identifier: 35:DB:CE:F8:B0:C1:8D:FD:3D:4A:A2:D6:58:8E:97:1D:C9:BD:D3:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdvO-LDBjf09SqLWWI6XHcm905w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/999789-2631-4eb9-a5dc-c7d29b294170/1/wBRdapmUMuzdeNrFuSskbL0dgWM.roa
Signing time: Mon 02 Jan 2023 10:34:58 +0000
ROA not before: Mon 02 Jan 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57554
IP address blocks: 91.223.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:7c:7e:3f:53:47:62:ac:85:d4:7d:09:31:67:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35dbcef8b0c18dfd3d4aa2d6588e971dc9bdd39c
Validity
Not Before: Jan 2 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0145d6a999432ecdd78dac5b92b246cbd1d8163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:17:fe:4a:91:b9:38:b5:f6:59:22:54:d6:31:
90:7f:50:e1:0b:0f:b9:4f:e7:c6:c3:41:07:a8:58:
07:f8:ba:27:6b:31:40:db:ed:1e:7e:17:30:e0:ee:
44:29:cd:3e:82:78:18:df:c3:16:d2:20:be:6a:bb:
a9:95:b7:ef:dc:49:5e:5b:2c:74:9a:1b:0f:9d:ed:
89:70:ed:3a:8d:aa:f2:ed:ff:41:45:2b:bb:5b:8c:
50:0c:05:98:43:ff:b8:10:64:36:e1:1a:ef:63:87:
f3:aa:4f:5b:d1:43:e6:c6:4a:8e:06:c4:aa:0b:81:
6f:54:0f:d4:50:2b:90:e8:89:4a:65:b9:d5:40:f0:
f5:7e:70:3f:0c:97:b1:9c:28:eb:1b:52:98:65:04:
ab:fa:9f:b9:f3:56:72:7a:05:63:98:3c:19:bd:c7:
92:90:d7:28:9d:69:14:de:56:9b:2f:69:3b:b2:0a:
e7:aa:42:e8:f0:56:21:95:29:bf:e0:f9:21:37:4d:
96:94:e4:f2:0d:b9:08:45:08:11:fa:25:e8:dc:7b:
f5:1b:82:ea:04:29:97:c0:16:5b:ac:1c:df:65:b3:
75:b3:35:9c:e8:f5:b0:bf:f8:50:2c:a8:d3:59:fa:
90:37:1a:b2:21:11:d0:21:bc:3a:28:69:ad:b4:e5:
40:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:14:5D:6A:99:94:32:EC:DD:78:DA:C5:B9:2B:24:6C:BD:1D:81:63
X509v3 Authority Key Identifier:
keyid:35:DB:CE:F8:B0:C1:8D:FD:3D:4A:A2:D6:58:8E:97:1D:C9:BD:D3:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdvO-LDBjf09SqLWWI6XHcm905w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/999789-2631-4eb9-a5dc-c7d29b294170/1/wBRdapmUMuzdeNrFuSskbL0dgWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/999789-2631-4eb9-a5dc-c7d29b294170/1/NdvO-LDBjf09SqLWWI6XHcm905w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.189.0/24
Signature Algorithm: sha256WithRSAEncryption
31:44:6f:f6:d0:a6:3d:4b:85:c7:a7:da:bf:70:f7:c0:f6:bd:
06:b6:e8:77:63:b2:8d:03:41:ea:bb:cf:ac:28:3e:42:27:a0:
2e:90:37:b5:f6:2b:02:b7:b0:7a:af:db:e8:68:8f:99:44:7a:
55:12:13:e6:75:dc:f1:9b:45:12:55:de:86:32:26:c8:11:38:
60:66:45:52:78:b4:34:1b:88:8b:4c:f0:ca:90:21:c5:3a:4b:
b2:46:0d:15:4e:97:ff:b3:33:4d:63:8e:96:cf:51:5a:62:59:
c5:41:38:8b:30:17:1a:51:4b:d2:cf:ea:a5:b5:4f:07:3a:2a:
f0:16:08:40:cf:b5:2a:8e:b5:fa:d2:d2:cd:b4:e1:29:92:c1:
8b:e6:75:19:1b:ba:a5:68:af:78:c0:8e:60:82:97:bf:9f:5f:
62:9d:6c:4e:76:c9:15:03:1a:4f:00:dc:e5:69:3d:fc:2e:2b:
95:c2:94:b9:08:fb:d6:44:f3:5e:9d:8b:d0:75:b5:22:76:aa:
ca:53:ac:cc:fe:34:51:ec:b2:cf:f1:ea:a0:0e:1d:07:3a:de:
b9:b3:8a:71:7b:b6:ce:4e:34:5f:43:53:4e:5f:04:db:54:f6:
69:70:29:31:f3:d6:0d:e9:c8:25:2c:1f:a9:f7:b3:b5:5f:2d:
f4:b5:8f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org