Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/6b17f2-aed0-4a81-b13d-013849ff555f/1/07uOEcZwgbW2pC91uvx4CCL2VVc.roa
File: 07uOEcZwgbW2pC91uvx4CCL2VVc.roa (raw, json)
Hash identifier: IHge+nWDk4kjD7BIbzfTLGAfe8KFBBisTFUTnYm8K8Q=
Subject key identifier: D3:BB:8E:11:C6:70:81:B5:B6:A4:2F:75:BA:FC:78:08:22:F6:55:57
Certificate issuer: /CN=e80cd27f8d267dc9ebabc5c52904a24a4e91690c
Certificate serial: 02F54713
Authority key identifier: E8:0C:D2:7F:8D:26:7D:C9:EB:AB:C5:C5:29:04:A2:4A:4E:91:69:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AzSf40mfcnrq8XFKQSiSk6RaQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/6b17f2-aed0-4a81-b13d-013849ff555f/1/07uOEcZwgbW2pC91uvx4CCL2VVc.roa
Signing time: Sat 01 Jan 2022 14:58:30 +0000
ROA not before: Sat 01 Jan 2022 14:58:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45753
IP address blocks: 91.198.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49628947 (0x2f54713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e80cd27f8d267dc9ebabc5c52904a24a4e91690c
Validity
Not Before: Jan 1 14:58:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3bb8e11c67081b5b6a42f75bafc780822f65557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:64:f7:3b:6c:3d:69:4a:3e:59:86:da:a8:c3:
ed:07:24:8d:8e:c4:d7:28:0f:d8:22:9c:a9:25:10:
fe:ca:90:63:9c:9e:49:82:0f:38:d5:bd:05:a3:15:
34:9a:18:54:ae:70:72:f2:cb:4c:e8:03:1c:e3:ae:
60:c3:bb:49:07:8f:a8:ae:9f:82:fb:f6:20:5f:cc:
eb:0b:7c:e4:a6:4a:b0:ac:6a:d2:a6:8c:29:23:2f:
02:5f:0e:81:b8:69:64:f7:a5:b9:01:4f:24:22:5e:
f2:49:9e:4f:90:7f:c9:92:a7:c9:d2:6c:4b:b6:10:
bc:96:cc:53:c9:ac:37:43:4c:36:56:39:1d:0d:d9:
13:ff:9e:79:df:6c:5a:b9:0c:82:8c:e4:c8:fa:71:
9d:ef:fc:14:ad:4d:7d:5b:cf:d6:2f:70:67:3a:fe:
5e:40:c4:23:aa:f5:70:af:6d:e8:f9:b0:cd:75:9a:
d6:50:2d:84:f3:6e:85:d5:61:cd:e4:97:e6:df:2a:
49:17:a7:55:0a:1d:db:ef:f1:07:ce:09:64:45:36:
23:5e:4f:99:a7:4f:f7:66:3f:a4:7b:25:4b:37:5e:
eb:07:dd:82:bd:22:55:c0:e0:39:84:7b:e6:ca:06:
d5:3b:7a:21:39:72:82:fc:6a:3c:43:40:74:35:3b:
8e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BB:8E:11:C6:70:81:B5:B6:A4:2F:75:BA:FC:78:08:22:F6:55:57
X509v3 Authority Key Identifier:
keyid:E8:0C:D2:7F:8D:26:7D:C9:EB:AB:C5:C5:29:04:A2:4A:4E:91:69:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AzSf40mfcnrq8XFKQSiSk6RaQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/6b17f2-aed0-4a81-b13d-013849ff555f/1/07uOEcZwgbW2pC91uvx4CCL2VVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/6b17f2-aed0-4a81-b13d-013849ff555f/1/6AzSf40mfcnrq8XFKQSiSk6RaQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.254.0/24
Signature Algorithm: sha256WithRSAEncryption
01:5a:aa:53:c0:b7:3e:a0:62:40:91:42:cc:8e:74:fc:09:95:
60:24:81:73:54:ed:94:22:f3:6b:54:24:3e:e9:d4:a7:04:44:
8e:50:72:d5:86:89:76:ad:1c:dd:6d:92:8d:79:06:77:ed:b4:
a6:8a:02:39:d0:1f:a8:ca:99:10:e3:05:a0:48:5e:fd:eb:de:
9a:87:d0:35:85:2f:85:d7:9b:7b:50:6d:b7:ce:77:19:76:a6:
fc:81:7c:fe:b1:5a:22:fd:3a:a1:68:c9:ad:b6:19:3f:50:77:
03:a9:10:15:9a:ed:4b:92:96:02:b7:18:b3:00:89:4b:84:91:
8e:04:52:7d:32:37:3e:65:db:a0:9e:c8:95:57:c9:0d:cd:4d:
b8:bd:2d:24:c6:c6:d5:f9:37:62:e6:fd:9e:b7:da:f3:92:c4:
77:47:c7:55:56:ff:93:6f:7c:87:68:0e:cd:e0:8c:6a:a4:80:
23:d2:04:51:a6:eb:7e:46:1f:f4:b8:c2:9a:0c:a0:51:02:31:
2d:92:7e:5f:7b:62:89:3d:bf:7e:f7:3a:2d:53:ec:90:00:d1:
81:13:b0:fd:db:9f:0a:bf:99:8b:07:ff:f6:16:00:b2:5e:3d:
23:72:1e:1b:ae:81:ba:ef:42:c5:4c:91:ca:77:7e:87:98:c3:
ed:9a:7e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:41 2024 by rpki-client on console-fra.rpki-client.org