Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/qM8DpMULF2BCwqwYLMd2-8d2ag0.roa
File: qM8DpMULF2BCwqwYLMd2-8d2ag0.roa (raw, json)
Hash identifier: TObOY2D7GERe3+9UKiSsrUm/NemO5q6kiWqQsVDa4+4=
Subject key identifier: A8:CF:03:A4:C5:0B:17:60:42:C2:AC:18:2C:C7:76:FB:C7:76:6A:0D
Certificate issuer: /CN=715fc32ac75b8bf5c6142fa5f3fb56cb0fa853eb
Certificate serial: 018B586A7E521E56637F03DAB94C6ACA43E1
Authority key identifier: 71:5F:C3:2A:C7:5B:8B:F5:C6:14:2F:A5:F3:FB:56:CB:0F:A8:53:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cV_DKsdbi_XGFC-l8_tWyw-oU-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/qM8DpMULF2BCwqwYLMd2-8d2ag0.roa
Signing time: Sun 22 Oct 2023 17:24:15 +0000
ROA not before: Sun 22 Oct 2023 17:24:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19762
IP address blocks: 91.229.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:58:6a:7e:52:1e:56:63:7f:03:da:b9:4c:6a:ca:43:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715fc32ac75b8bf5c6142fa5f3fb56cb0fa853eb
Validity
Not Before: Oct 22 17:24:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8cf03a4c50b176042c2ac182cc776fbc7766a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:69:fc:d3:e5:9d:bc:5a:ba:76:bf:7f:97:71:
55:5b:0d:36:c9:8d:4b:3f:dd:76:a2:e8:e0:d3:3e:
7f:55:ce:97:23:5d:ff:76:fd:6d:a9:1c:66:aa:ff:
83:1a:f6:dc:18:3a:eb:89:a8:f4:8f:fe:e5:6f:7c:
4e:f6:01:d0:b7:66:7b:70:af:f3:e2:d8:5a:4d:30:
dd:b8:e8:bf:dd:11:d1:2e:aa:2a:b1:2e:7e:d3:90:
a7:83:61:63:0f:16:2a:6b:8f:8f:c6:d3:20:ae:37:
df:22:76:47:cc:6e:c3:c7:25:09:cb:70:89:07:e6:
22:a2:91:8f:07:2d:e6:d2:03:7e:78:62:cb:73:c7:
11:3f:05:1e:3f:8e:cd:39:11:5b:ef:7c:a2:bf:31:
60:00:65:7c:48:da:f3:06:4d:68:46:76:82:94:7d:
91:05:cb:a4:23:eb:9e:15:c6:d5:30:7a:ba:e7:33:
a3:c3:13:e6:eb:92:d0:45:e6:08:b1:17:dd:65:b7:
80:a1:32:d8:4a:59:c5:30:39:7d:5b:80:4d:9c:66:
92:c4:1a:c6:97:4e:12:db:20:79:77:c7:1a:23:65:
06:01:6e:6b:19:36:5d:40:14:a2:a4:11:ca:7e:13:
22:54:ca:50:ba:8b:c2:58:68:e0:61:97:6d:77:fe:
6e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CF:03:A4:C5:0B:17:60:42:C2:AC:18:2C:C7:76:FB:C7:76:6A:0D
X509v3 Authority Key Identifier:
keyid:71:5F:C3:2A:C7:5B:8B:F5:C6:14:2F:A5:F3:FB:56:CB:0F:A8:53:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cV_DKsdbi_XGFC-l8_tWyw-oU-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/qM8DpMULF2BCwqwYLMd2-8d2ag0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/cV_DKsdbi_XGFC-l8_tWyw-oU-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.114.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:53:5a:c5:cf:83:47:49:7f:31:6c:72:88:39:40:59:4a:26:
2a:49:79:66:40:2c:55:62:a4:38:fa:18:4b:d4:c1:06:5d:32:
cf:b2:61:57:8b:84:55:c1:19:48:fe:bd:4d:e9:f6:6a:ba:88:
f6:5b:5e:ac:79:99:65:cd:74:9b:8e:e2:7b:0b:03:5c:e9:9b:
97:6c:8f:2c:52:34:38:08:bc:a1:7f:82:f3:0a:59:2c:25:71:
48:f7:99:f0:7e:0b:08:5a:48:c7:c8:4c:d2:a2:7f:89:ec:fa:
a0:27:fd:bf:39:69:99:98:cd:14:da:f6:bb:e9:a5:a9:4a:2a:
ee:e6:59:80:c3:fd:13:1b:d0:21:df:ec:65:64:55:aa:d5:b1:
42:1c:d1:d6:38:3c:4b:71:9d:fa:da:85:f7:10:e8:aa:17:77:
19:17:cd:57:a6:e2:31:31:6b:fc:f2:2d:5d:0d:9b:d5:8f:92:
42:dc:ba:13:0d:94:28:05:3b:55:b4:6d:8f:1b:0e:66:a3:1f:
62:08:7f:4c:47:66:0f:aa:fd:b6:24:76:fa:bb:9f:5f:ed:69:
97:55:d7:cc:c4:89:da:a3:9c:0a:f3:48:8f:69:c9:a4:16:a5:
86:41:b9:2d:e1:e8:1b:e2:a7:a2:a3:59:90:06:8d:35:27:a0:
60:32:df:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 12:31:58 2023 by rpki-client on console-ams.rpki-client.org