Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/fc9be6-6353-41ea-8032-69ae605aa5a7/1/_ybqQKk_Z1tIXcs6CK7J4ty2xCs.roa
File: _ybqQKk_Z1tIXcs6CK7J4ty2xCs.roa (raw, json)
Hash identifier: cCuSmOWwFIGTNNKEql6JKlta7vYtKTBKG9BwxkIaJ0I=
Subject key identifier: FF:26:EA:40:A9:3F:67:5B:48:5D:CB:3A:08:AE:C9:E2:DC:B6:C4:2B
Certificate issuer: /CN=19e699e256ec3be94726719b60f8ff414efeffe9
Certificate serial: D0A167
Authority key identifier: 19:E6:99:E2:56:EC:3B:E9:47:26:71:9B:60:F8:FF:41:4E:FE:FF:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeaZ4lbsO-lHJnGbYPj_QU7-_-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/fc9be6-6353-41ea-8032-69ae605aa5a7/1/_ybqQKk_Z1tIXcs6CK7J4ty2xCs.roa
Signing time: Sat 01 Jan 2022 05:54:54 +0000
ROA not before: Sat 01 Jan 2022 05:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 91.236.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13672807 (0xd0a167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e699e256ec3be94726719b60f8ff414efeffe9
Validity
Not Before: Jan 1 05:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff26ea40a93f675b485dcb3a08aec9e2dcb6c42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:31:b1:b6:10:07:08:ff:95:fe:dc:c1:b7:7a:
d8:be:7a:ec:77:da:a9:77:bf:82:7c:c5:fc:f1:84:
2d:76:bd:99:fa:98:48:7a:3a:42:56:9f:dd:5c:82:
dd:9d:4c:d8:05:09:24:88:11:56:36:cf:9f:f7:1d:
14:4c:e4:9c:03:49:ab:e0:d0:35:ee:f6:83:51:c6:
ae:01:72:3c:7b:37:4f:ab:7c:d9:df:11:c7:a8:d6:
0a:3f:ba:e3:04:2b:9b:86:91:6e:de:30:eb:6e:59:
14:c1:33:e0:be:e5:fc:5c:fa:da:0b:7c:d0:3e:b2:
2d:f0:91:63:96:e9:46:1a:0f:ff:49:4c:c3:8c:12:
20:60:d5:d6:3f:75:7e:1b:67:d8:30:db:45:e9:4c:
5f:14:27:15:d7:d9:6f:93:06:41:b6:1b:72:84:92:
29:2f:4b:bd:4a:4d:25:fc:50:05:b0:f2:5c:ba:19:
9c:ad:98:fe:99:06:75:99:ae:1e:11:6c:4f:4c:6a:
95:00:a5:d7:e7:83:e9:24:29:56:ed:16:80:89:62:
ff:74:ed:84:8a:59:82:55:78:14:fc:01:58:25:5c:
dc:8e:d3:ec:01:dd:0e:dc:7e:47:df:d7:53:e5:62:
a5:5c:64:e3:3a:9d:07:66:91:c8:0d:a7:ee:15:c4:
62:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:26:EA:40:A9:3F:67:5B:48:5D:CB:3A:08:AE:C9:E2:DC:B6:C4:2B
X509v3 Authority Key Identifier:
keyid:19:E6:99:E2:56:EC:3B:E9:47:26:71:9B:60:F8:FF:41:4E:FE:FF:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeaZ4lbsO-lHJnGbYPj_QU7-_-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fc9be6-6353-41ea-8032-69ae605aa5a7/1/_ybqQKk_Z1tIXcs6CK7J4ty2xCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fc9be6-6353-41ea-8032-69ae605aa5a7/1/GeaZ4lbsO-lHJnGbYPj_QU7-_-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.195.0/24
Signature Algorithm: sha256WithRSAEncryption
52:69:37:61:2c:57:b0:e9:87:86:08:ea:8b:af:fb:3a:79:9a:
a5:13:5b:08:5b:3f:64:9c:12:14:43:b7:d8:b7:42:59:09:97:
af:b4:da:f6:e4:62:ef:d8:e4:ea:d1:e8:a6:9c:d5:eb:1e:b9:
e2:fd:ff:a6:eb:f2:be:a1:24:1d:42:31:b6:33:aa:90:7c:f2:
12:b1:83:dd:9a:e3:8c:c8:73:4b:92:83:e9:cc:7b:59:20:6a:
e6:b4:81:b6:22:55:d3:01:34:52:85:df:e6:fb:d0:db:80:f3:
26:3c:0c:3e:38:cc:e7:cf:9d:9f:bf:2b:48:12:5d:c4:7d:92:
fd:5f:ea:a0:64:c2:09:3d:c8:67:c3:97:b3:39:24:1c:f5:08:
1e:cf:6e:d3:dd:b4:9d:bf:55:d6:1e:e8:be:44:e4:a0:5c:d7:
f6:50:6f:a3:e0:d2:6e:ef:15:ee:7c:86:42:d1:ec:94:a5:e9:
6f:05:05:e1:81:9e:57:ee:e5:8e:17:e9:ee:67:92:e3:43:1c:
ec:0a:a8:c5:1a:68:2e:54:10:52:ba:7c:3d:33:b7:63:f8:a0:
d8:bb:52:89:c3:aa:04:1a:76:3f:d3:c4:32:9f:a0:66:43:84:
e1:90:5a:7b:c7:dc:fd:52:7f:37:d1:69:ea:a2:d7:89:5c:cc:
d5:6e:7b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:17 2023 by rpki-client on console-fra.rpki-client.org