Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/XvJ4FGMY7G0qMy6STtJguiJc-hg.roa
File: XvJ4FGMY7G0qMy6STtJguiJc-hg.roa (raw, json)
Hash identifier: cr1zHX49wDasXv4hLv1vt6D0qngKtzusUk5z1F7wC7k=
Subject key identifier: 5E:F2:78:14:63:18:EC:6D:2A:33:2E:92:4E:D2:60:BA:22:5C:FA:18
Certificate issuer: /CN=94eab7c619d889f03b63f226c0111524eb0562b7
Certificate serial: 02873B4B
Authority key identifier: 94:EA:B7:C6:19:D8:89:F0:3B:63:F2:26:C0:11:15:24:EB:05:62:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOq3xhnYifA7Y_ImwBEVJOsFYrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/XvJ4FGMY7G0qMy6STtJguiJc-hg.roa
Signing time: Sat 01 Jan 2022 08:54:50 +0000
ROA not before: Sat 01 Jan 2022 08:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198907
IP address blocks: 91.240.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42416971 (0x2873b4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94eab7c619d889f03b63f226c0111524eb0562b7
Validity
Not Before: Jan 1 08:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ef278146318ec6d2a332e924ed260ba225cfa18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cf:ab:8c:70:1e:97:42:8c:ed:01:86:fd:ee:
69:14:fa:2e:06:df:1f:3c:82:f5:5d:8d:57:6e:36:
5c:22:f5:f1:0e:32:62:f8:04:f2:96:3c:ba:96:cb:
ee:2d:c2:1c:84:4d:ed:a2:d5:18:13:7f:64:cd:51:
5c:c7:ed:79:2c:57:79:0b:d2:d2:28:8f:3d:53:b0:
8b:4d:08:c8:99:55:c4:3a:4d:9e:81:22:37:85:4a:
8b:16:a3:93:89:19:ce:fa:c3:d3:49:14:fa:a9:a7:
e8:2e:77:ce:87:87:8c:9d:fa:94:b5:84:00:c2:b8:
d0:9d:91:b9:97:3a:fc:64:52:af:44:d7:d1:8d:fd:
dc:28:03:dc:02:a7:2a:e4:9e:74:4d:8a:55:bb:12:
8d:ef:73:a8:52:d1:55:5d:ab:e5:2f:c8:e4:d3:d5:
30:80:22:27:c6:18:35:a2:0c:42:dc:c9:6a:33:99:
a3:2a:b7:ab:60:cd:12:55:b7:53:95:00:f9:34:0d:
ae:e8:34:32:93:4d:e0:2c:b3:ca:1e:c5:c2:c8:59:
19:8a:f8:30:36:0e:44:bf:5d:67:25:60:6e:59:3e:
70:15:1b:a7:6d:a1:1b:ee:d0:c8:a3:34:69:89:2f:
c7:32:69:db:dc:a6:ed:99:2a:37:f3:3e:aa:4b:fe:
20:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F2:78:14:63:18:EC:6D:2A:33:2E:92:4E:D2:60:BA:22:5C:FA:18
X509v3 Authority Key Identifier:
keyid:94:EA:B7:C6:19:D8:89:F0:3B:63:F2:26:C0:11:15:24:EB:05:62:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOq3xhnYifA7Y_ImwBEVJOsFYrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/XvJ4FGMY7G0qMy6STtJguiJc-hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/lOq3xhnYifA7Y_ImwBEVJOsFYrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.95.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c5:09:02:57:57:f6:9f:5b:98:e8:4c:34:08:18:b2:19:a6:
98:ba:26:cc:68:f7:83:d4:5c:2b:d5:f3:b1:a4:55:b3:92:ad:
53:99:29:32:c5:22:88:44:d1:2d:9e:50:ec:3f:ce:72:dd:a0:
5d:11:2f:7d:eb:74:03:46:57:e1:e0:af:cc:1a:03:52:28:86:
be:60:42:09:ac:50:39:83:ce:97:f0:45:e6:30:76:65:35:99:
f7:09:fc:d1:56:32:42:d6:5a:6d:ca:78:90:4a:2c:d7:93:9c:
78:1d:55:43:ab:4f:03:0c:f1:53:b6:f5:51:fb:f2:0e:66:90:
22:2f:94:a0:4d:a9:b2:fd:64:ac:a2:49:bc:08:62:0f:2d:f6:
df:4b:60:3b:22:1a:29:c2:21:dc:55:bd:b0:15:ab:21:87:76:
9c:e6:bc:79:07:89:a1:6f:6a:10:70:3b:11:cb:80:5a:e7:7f:
bc:aa:d4:db:ef:85:b6:bc:65:1c:a0:9d:ef:da:f0:bb:c2:28:
ab:2f:72:92:37:d8:dc:51:6b:50:30:c2:c4:c9:6f:d8:81:04:
d2:4c:62:91:c9:78:f4:94:67:14:86:22:62:b4:c9:69:08:ad:
ff:e2:ce:54:24:39:06:60:36:c2:8f:89:51:2f:eb:54:6c:68:
59:7f:70:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:50 2024 by rpki-client on console-ams.rpki-client.org