Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/34ADXVR8i0BRZvIhY-qjKnjkmH8.roa
File: 34ADXVR8i0BRZvIhY-qjKnjkmH8.roa (raw, json)
Hash identifier: uA6Bh7WvA/VgmzVsjovtmKnqbwOS6uFde2gEr7EZ3ZQ=
Subject key identifier: DF:80:03:5D:54:7C:8B:40:51:66:F2:21:63:EA:A3:2A:78:E4:98:7F
Certificate issuer: /CN=ebd6fc5158ee3ec21a421d718234c8d8a3361fa6
Certificate serial: 07AB83A9
Authority key identifier: EB:D6:FC:51:58:EE:3E:C2:1A:42:1D:71:82:34:C8:D8:A3:36:1F:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/69b8UVjuPsIaQh1xgjTI2KM2H6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/34ADXVR8i0BRZvIhY-qjKnjkmH8.roa
Signing time: Sat 01 Jan 2022 07:03:08 +0000
ROA not before: Sat 01 Jan 2022 07:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59613
IP address blocks: 91.223.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128680873 (0x7ab83a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebd6fc5158ee3ec21a421d718234c8d8a3361fa6
Validity
Not Before: Jan 1 07:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df80035d547c8b405166f22163eaa32a78e4987f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a9:0a:5f:b2:2c:b1:7c:da:4c:0c:aa:0e:76:
99:1e:95:b9:64:3d:f3:34:a0:48:ff:e0:dc:79:90:
78:3b:c5:c0:16:89:be:96:b1:1a:7d:62:75:51:ae:
66:2c:a3:e8:b8:36:58:c4:fc:e6:3e:53:59:4a:24:
e4:b6:31:5b:12:28:68:6a:13:42:0f:54:bf:e7:fa:
2b:fc:73:e6:7c:59:0a:f7:f9:b2:ff:54:4a:cd:77:
8c:98:13:2a:62:10:d3:bd:2e:48:b1:08:19:7b:ae:
fd:f9:25:62:e5:4a:46:52:52:9c:9f:83:56:aa:fe:
19:d6:95:3d:1f:70:a3:f5:d4:51:a7:72:ca:4e:a7:
7b:81:1a:84:24:6a:15:5c:0f:5c:bc:b4:81:29:38:
a1:d1:9f:70:d7:60:97:89:2c:22:e4:cb:c0:c3:4e:
de:6e:f2:a7:2c:a2:46:bd:e3:fb:af:5a:26:66:4c:
1c:3d:8c:65:cb:ea:83:98:ba:7d:90:55:ec:63:5f:
ab:3a:84:2b:f2:99:5c:62:1b:e9:84:9f:e8:10:63:
24:c1:06:e1:39:13:82:bd:9e:6b:04:79:36:ff:8a:
17:66:fb:2e:98:0e:fa:8b:eb:9b:5f:70:40:86:02:
0e:b2:fc:d8:78:d6:fc:cd:00:42:f0:d9:55:66:05:
f1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:80:03:5D:54:7C:8B:40:51:66:F2:21:63:EA:A3:2A:78:E4:98:7F
X509v3 Authority Key Identifier:
keyid:EB:D6:FC:51:58:EE:3E:C2:1A:42:1D:71:82:34:C8:D8:A3:36:1F:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/69b8UVjuPsIaQh1xgjTI2KM2H6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/34ADXVR8i0BRZvIhY-qjKnjkmH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/69b8UVjuPsIaQh1xgjTI2KM2H6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.19.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:fe:c2:ae:64:b0:41:96:a5:f2:af:ce:c0:e7:70:fa:c2:60:
ec:06:5b:b5:70:e1:a1:43:a2:6e:90:e3:fc:39:17:5b:4d:da:
5b:b5:e8:8a:0e:88:10:f4:bd:de:62:46:8f:34:e0:0b:d4:9c:
7e:94:32:f1:a5:9f:5a:3d:3a:1d:0d:d0:2e:f9:3f:89:a5:05:
af:20:5a:a8:f1:a4:b3:d7:00:a7:03:79:22:48:66:9c:cb:6d:
70:8c:2b:0e:78:e7:98:0a:8a:0d:c1:33:c9:76:b8:45:95:52:
12:c4:8a:39:46:f3:71:b2:5a:b7:66:96:d9:d8:e0:24:ee:b0:
37:34:b8:93:6d:ed:6d:fd:08:ae:59:45:85:6b:d3:12:e6:26:
d0:93:05:f7:66:ad:cd:fb:fc:e6:36:c4:ec:df:a4:a7:ec:bd:
66:8e:2b:53:9b:df:22:1d:e6:40:a7:d6:c1:c6:b8:78:50:10:
56:de:c8:2b:0d:c4:8d:76:f4:9b:63:8a:b8:ec:90:74:e9:e4:
55:73:20:d4:3e:eb:5a:4a:61:f0:cc:e0:52:97:c2:a1:20:b8:
7a:a4:f4:24:96:33:56:69:3b:75:c3:97:7c:2c:18:3b:5a:a5:
42:0a:1d:97:3c:24:b9:71:b9:62:17:9e:26:51:69:c1:62:ef:
ad:a8:f6:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:50 2023 by rpki-client on console-ams.rpki-client.org