Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/5c079d-a070-4a9d-995d-ab2c9f1aa192/1/KRrt8_ibZ0qbceaWosxw_xkO_H4.roa
File: KRrt8_ibZ0qbceaWosxw_xkO_H4.roa (raw, json)
Hash identifier: 3tYxt0C5oSz14wl+6+VMA5izwICHflX6Q/5QVfXPhpY=
Subject key identifier: 29:1A:ED:F3:F8:9B:67:4A:9B:71:E6:96:A2:CC:70:FF:19:0E:FC:7E
Certificate issuer: /CN=a4798236269e1f300ddccf8f2b2a6ab0afbd7072
Certificate serial: F7E61F
Authority key identifier: A4:79:82:36:26:9E:1F:30:0D:DC:CF:8F:2B:2A:6A:B0:AF:BD:70:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHmCNiaeHzAN3M-PKypqsK-9cHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/5c079d-a070-4a9d-995d-ab2c9f1aa192/1/KRrt8_ibZ0qbceaWosxw_xkO_H4.roa
Signing time: Sat 01 Jan 2022 08:06:13 +0000
ROA not before: Sat 01 Jan 2022 08:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5518
IP address blocks: 91.231.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16246303 (0xf7e61f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4798236269e1f300ddccf8f2b2a6ab0afbd7072
Validity
Not Before: Jan 1 08:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=291aedf3f89b674a9b71e696a2cc70ff190efc7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:65:1d:53:d1:9d:8f:1e:4f:d2:eb:c4:ff:7c:
da:75:13:25:a5:f6:68:45:82:8e:ba:d4:89:d6:c3:
bd:87:ac:31:af:ff:c7:00:bf:df:f8:67:4b:4b:63:
58:f7:2b:10:30:11:a3:ab:16:c2:1b:cf:8d:b0:70:
e5:06:41:fd:55:f1:a8:61:18:5b:1b:b8:d2:c7:be:
3b:0d:f1:fd:46:0f:19:2c:a8:5b:1f:26:ac:94:e7:
3c:db:8b:84:ed:ea:60:73:41:28:c5:89:a3:c7:71:
20:9c:d8:9a:95:6a:50:6c:60:c2:f3:c9:dc:6f:a5:
ab:73:2d:7e:ae:70:57:ce:04:30:02:eb:a1:61:de:
ce:06:b5:1b:76:3c:b9:ef:f8:3f:a3:40:8f:d2:a2:
fe:8d:d0:25:38:f0:ce:b5:7c:90:09:ab:36:46:f2:
88:94:30:c1:fd:77:f0:67:a9:d0:66:4c:08:fc:b5:
ee:9d:90:39:0c:65:3e:c9:bb:d2:6a:c4:75:7a:ca:
1d:e3:ee:e3:4e:f1:fd:41:cf:ab:40:f3:e8:ad:14:
d8:57:38:e6:6e:41:ec:2b:0e:3d:61:eb:9c:a7:52:
b0:2a:9a:64:7a:34:fc:06:c4:64:f9:dd:8c:0a:0b:
41:f9:b1:c3:0b:ea:e3:98:b1:1f:05:b1:a9:93:3a:
53:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1A:ED:F3:F8:9B:67:4A:9B:71:E6:96:A2:CC:70:FF:19:0E:FC:7E
X509v3 Authority Key Identifier:
keyid:A4:79:82:36:26:9E:1F:30:0D:DC:CF:8F:2B:2A:6A:B0:AF:BD:70:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHmCNiaeHzAN3M-PKypqsK-9cHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5c079d-a070-4a9d-995d-ab2c9f1aa192/1/KRrt8_ibZ0qbceaWosxw_xkO_H4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5c079d-a070-4a9d-995d-ab2c9f1aa192/1/pHmCNiaeHzAN3M-PKypqsK-9cHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.68.0/24
Signature Algorithm: sha256WithRSAEncryption
56:29:bb:19:ac:7a:0a:34:be:e8:ad:0a:44:f4:6e:2e:25:ef:
0d:42:96:0d:14:39:28:2d:c5:59:e5:c8:ae:68:3d:7f:f5:8a:
ee:27:a0:2b:15:a8:c7:4c:9c:19:dc:c3:0a:ec:bb:fe:07:5a:
d7:84:e6:6b:04:e5:19:1b:13:5c:86:c9:1a:63:0d:e9:c3:2c:
73:af:07:13:7c:93:5f:80:b4:fd:77:04:7c:9b:44:e6:34:c8:
ca:3a:a6:60:46:71:3a:76:4e:20:3f:88:69:43:55:ba:1f:20:
2b:71:1f:ba:60:43:9b:2c:f5:34:73:69:03:df:dc:bd:06:53:
f0:c5:d1:d3:9c:81:e3:fb:a0:f9:5b:9b:9b:97:fd:4e:47:fd:
c9:30:63:58:5e:08:42:66:7b:81:7e:08:07:b6:06:d5:d6:85:
2d:fb:4d:23:c0:45:95:2b:52:92:a5:72:ec:c9:bf:3e:51:08:
96:be:6b:3e:0d:2a:e8:32:1f:dd:d9:05:56:0b:4c:4f:5d:c6:
99:be:a5:1c:75:60:cb:34:63:84:a5:e2:1b:3a:08:3a:ca:ed:
69:4d:52:fa:f1:1f:50:ab:03:8d:ca:89:6c:06:9d:7a:01:41:
2d:9b:1d:c3:67:5c:1e:aa:78:88:8f:d1:2e:7c:6a:d8:0a:04:
81:41:6c:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:59 2024 by rpki-client on console-ams.rpki-client.org