Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/c98273-d3b4-4e0c-b498-525154ccc0ee/1/STz2NrzuL9pxa14M-XrX9WRX9qY.roa
File: STz2NrzuL9pxa14M-XrX9WRX9qY.roa (raw, json)
Hash identifier: MyLey2gzDOVFjuhW4cx6paryRC5SuBc8zcmltgQ7qyI=
Subject key identifier: 49:3C:F6:36:BC:EE:2F:DA:71:6B:5E:0C:F9:7A:D7:F5:64:57:F6:A6
Certificate issuer: /CN=7000f91b88e3d69a064df12d6ebaf295d12e4c6a
Certificate serial: 0893FF19
Authority key identifier: 70:00:F9:1B:88:E3:D6:9A:06:4D:F1:2D:6E:BA:F2:95:D1:2E:4C:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAD5G4jj1poGTfEtbrryldEuTGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/c98273-d3b4-4e0c-b498-525154ccc0ee/1/STz2NrzuL9pxa14M-XrX9WRX9qY.roa
Signing time: Sat 01 Jan 2022 09:55:29 +0000
ROA not before: Sat 01 Jan 2022 09:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 91.223.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143916825 (0x893ff19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7000f91b88e3d69a064df12d6ebaf295d12e4c6a
Validity
Not Before: Jan 1 09:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=493cf636bcee2fda716b5e0cf97ad7f56457f6a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:20:3f:c7:e1:ba:5e:3e:0f:ba:80:b9:45:8a:
cd:02:2e:be:c6:59:b8:3e:97:5e:c9:83:9e:34:98:
3c:17:d7:09:12:f2:6c:1c:f1:30:b5:62:72:8c:57:
7e:83:d1:d0:14:dc:a1:c8:d4:f0:b2:74:6c:e9:c5:
b0:96:9d:09:6d:97:86:4f:05:8d:3f:ce:ac:ae:22:
6f:15:c4:92:8b:99:bd:52:d3:f2:38:f9:90:7b:c8:
67:fe:61:52:ae:69:a5:d6:d6:40:cb:29:cb:42:a9:
70:dd:6c:db:44:7d:de:10:57:f1:52:20:e4:90:b1:
dc:fd:2b:00:53:e5:f5:52:eb:4b:78:05:6d:d2:24:
24:3d:4c:89:cd:c9:58:67:01:0d:96:65:f0:c0:8a:
76:84:63:76:5b:b3:2f:b7:83:26:73:f9:71:b9:dc:
73:13:e7:bb:60:29:64:65:3f:37:b2:6f:7f:f5:62:
29:95:44:61:51:c3:02:b9:1d:e2:64:97:a8:e2:82:
27:c2:2b:f7:b5:d6:c6:d4:f8:83:62:e6:60:6a:ab:
98:ed:25:8f:3f:13:d2:34:d8:3a:2f:46:d7:2a:2f:
10:5e:e9:20:15:98:c2:e9:6d:9b:1e:89:60:e5:65:
f6:89:77:3c:3a:0f:9a:f1:b3:02:ab:88:5c:57:89:
05:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3C:F6:36:BC:EE:2F:DA:71:6B:5E:0C:F9:7A:D7:F5:64:57:F6:A6
X509v3 Authority Key Identifier:
keyid:70:00:F9:1B:88:E3:D6:9A:06:4D:F1:2D:6E:BA:F2:95:D1:2E:4C:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAD5G4jj1poGTfEtbrryldEuTGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c98273-d3b4-4e0c-b498-525154ccc0ee/1/STz2NrzuL9pxa14M-XrX9WRX9qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c98273-d3b4-4e0c-b498-525154ccc0ee/1/cAD5G4jj1poGTfEtbrryldEuTGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.61.0/24
Signature Algorithm: sha256WithRSAEncryption
67:22:b9:1d:23:4f:e9:46:3d:fc:df:6f:40:e2:f3:da:54:e1:
95:ac:de:95:9c:94:0b:3c:79:29:2d:57:af:61:89:76:2e:7e:
85:b3:48:5b:49:3c:47:18:f4:fe:5b:87:6e:2a:b9:d8:6f:30:
39:45:c0:e3:4e:4d:72:87:f6:86:34:fb:cf:d7:84:76:3f:11:
30:65:ad:a6:6c:7a:f4:b4:69:8b:6e:50:9b:b3:99:9f:2a:12:
0e:8b:54:4f:ec:b0:13:ca:a7:b0:0b:93:e6:56:67:70:8a:97:
98:c8:1e:ba:ac:ce:fa:5f:df:3c:e1:fb:bc:5e:b6:57:2a:c3:
b2:f3:5c:68:1b:9f:32:98:62:dd:db:fd:3d:2b:11:91:7f:01:
2f:2d:52:81:67:e3:92:05:eb:4d:c6:67:d2:2f:1b:44:df:17:
26:24:36:ea:33:e0:46:b3:8f:40:d3:9e:36:82:8e:71:2b:34:
9f:af:d5:8c:cc:70:8b:a9:8f:3d:8a:1a:0c:c0:e9:9e:06:63:
5e:4b:14:23:d9:e5:6b:db:27:61:c4:64:37:98:53:80:61:c3:
33:d6:f6:eb:bf:21:68:50:64:91:a6:4b:27:f3:73:f1:36:39:
a8:06:7f:3e:bf:28:ed:dd:66:2a:05:3f:db:ff:b2:8d:f0:c6:
4f:94:ef:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:59 2025 by rpki-client