Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/Gv7rsX9405ywAKTTJ9nWYkQ3xFk.roa
File: Gv7rsX9405ywAKTTJ9nWYkQ3xFk.roa (raw, json)
Hash identifier: Shg3vcN31r1FQyvQdx6V+Iw2xKhCPAWnvJZELs43bBg=
Subject key identifier: 1A:FE:EB:B1:7F:78:D3:9C:B0:00:A4:D3:27:D9:D6:62:44:37:C4:59
Certificate issuer: /CN=b811f8ce6dd0cc480f097540563920aea3d66396
Certificate serial: 018570151F0A4EBC4792C76BCDA50CB43767
Authority key identifier: B8:11:F8:CE:6D:D0:CC:48:0F:09:75:40:56:39:20:AE:A3:D6:63:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBH4zm3QzEgPCXVAVjkgrqPWY5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/Gv7rsX9405ywAKTTJ9nWYkQ3xFk.roa
Signing time: Mon 02 Jan 2023 01:25:10 +0000
ROA not before: Mon 02 Jan 2023 01:25:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 91.205.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:1f:0a:4e:bc:47:92:c7:6b:cd:a5:0c:b4:37:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b811f8ce6dd0cc480f097540563920aea3d66396
Validity
Not Before: Jan 2 01:25:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1afeebb17f78d39cb000a4d327d9d6624437c459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:60:ca:fb:32:0b:ea:6b:fa:85:63:31:4f:
4b:47:b8:d5:10:2f:89:f9:d4:15:19:c5:8d:b5:51:
91:17:19:92:d7:5a:32:17:3e:f1:b6:da:99:75:74:
c6:a4:68:04:84:73:a9:18:95:c7:52:76:a7:d0:67:
30:db:4f:19:10:92:54:37:88:d0:27:a2:c8:94:4b:
53:05:74:3d:e3:aa:22:74:01:22:0e:b2:de:ce:16:
97:7d:81:5f:67:42:be:71:4b:9c:60:d6:b6:77:0e:
87:25:3f:64:65:d8:d6:64:57:31:1f:82:12:60:56:
2d:0e:c2:d9:28:a3:bc:7a:ba:50:16:0b:26:32:e1:
8c:9f:b2:7a:bd:b5:61:0e:d3:83:60:b0:95:66:27:
de:44:98:68:bb:bd:8f:03:d2:05:3b:3f:11:56:b7:
d7:85:c8:8a:60:2d:f6:93:42:5e:a6:90:6a:16:a6:
6d:99:46:0a:13:84:e0:f4:49:20:91:57:e0:27:b6:
7f:39:da:63:96:ca:1b:ce:46:77:0b:92:5c:5c:f5:
90:3f:1c:ae:77:09:56:3f:19:c1:0c:1f:52:13:2a:
0b:9f:ff:c0:81:b9:06:b3:99:b2:8b:8b:95:0a:12:
c5:53:6e:10:94:e9:74:54:9b:92:57:8a:a3:8e:51:
e7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FE:EB:B1:7F:78:D3:9C:B0:00:A4:D3:27:D9:D6:62:44:37:C4:59
X509v3 Authority Key Identifier:
keyid:B8:11:F8:CE:6D:D0:CC:48:0F:09:75:40:56:39:20:AE:A3:D6:63:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBH4zm3QzEgPCXVAVjkgrqPWY5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/Gv7rsX9405ywAKTTJ9nWYkQ3xFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/uBH4zm3QzEgPCXVAVjkgrqPWY5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.223.0/24
Signature Algorithm: sha256WithRSAEncryption
08:30:b5:a3:a9:69:d2:a0:a3:46:17:60:6d:96:19:8b:6e:ea:
79:05:d5:04:43:a9:a2:a1:38:59:a0:99:e0:b8:33:7a:49:f0:
4b:89:25:40:00:08:ee:71:4c:45:ec:b2:d0:5b:d6:b8:21:17:
49:8a:51:5e:47:64:6e:b9:80:26:bc:75:44:3f:4d:0e:ca:38:
15:2f:11:a1:db:32:a4:1e:69:ba:86:a3:90:88:f9:22:5c:85:
f7:38:a7:d9:5c:84:b4:cc:fb:4d:03:c3:8e:76:4f:cc:4a:36:
55:b0:0e:bc:3b:43:8e:a3:bb:66:a7:52:e4:10:86:d6:4b:b7:
37:76:ef:e1:b9:fc:d7:81:c6:f6:a3:11:97:37:7f:1b:db:33:
0c:32:ad:61:7f:b6:85:20:e0:23:75:61:e4:86:f8:8a:2c:44:
f2:c5:60:47:3a:ad:a8:15:53:a8:9f:11:50:78:4b:90:0e:26:
f1:df:37:f7:33:43:db:64:4b:59:08:4c:bd:c7:71:1b:c9:54:
0c:09:64:20:50:cc:50:91:15:b8:a9:ac:c8:03:16:13:1b:91:
fd:96:8a:f1:78:6a:fe:7a:67:a4:53:42:c9:54:78:0b:5b:91:
63:fc:74:65:99:04:65:72:c9:49:e6:51:40:fe:18:31:fd:55:
36:bb:31:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:42 2024 by rpki-client on console-fra.rpki-client.org