Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/v043tboXGOJPskuvEuc8miaStjo.roa
File: v043tboXGOJPskuvEuc8miaStjo.roa (raw, json)
Hash identifier: 6WmhbcDX87MG2464bfI9k7w5nx64zNacsVM6vEFBE9o=
Subject key identifier: BF:4E:37:B5:BA:17:18:E2:4F:B2:4B:AF:12:E7:3C:9A:26:92:B6:3A
Certificate issuer: /CN=b811f8ce6dd0cc480f097540563920aea3d66396
Certificate serial: 018658DEA9C085370B5809EAD7028B5FEDB6
Authority key identifier: B8:11:F8:CE:6D:D0:CC:48:0F:09:75:40:56:39:20:AE:A3:D6:63:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBH4zm3QzEgPCXVAVjkgrqPWY5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/v043tboXGOJPskuvEuc8miaStjo.roa
Signing time: Thu 16 Feb 2023 06:17:12 +0000
ROA not before: Thu 16 Feb 2023 06:17:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 91.205.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:58:de:a9:c0:85:37:0b:58:09:ea:d7:02:8b:5f:ed:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b811f8ce6dd0cc480f097540563920aea3d66396
Validity
Not Before: Feb 16 06:17:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf4e37b5ba1718e24fb24baf12e73c9a2692b63a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:69:d6:91:4c:81:e4:88:60:b0:75:33:50:ed:
f8:df:f3:17:9b:7a:48:a5:b3:34:8f:32:df:d0:30:
3a:be:90:ec:3f:e9:b6:0c:c0:0b:05:31:3c:2e:d9:
1e:e1:d0:70:d5:ff:21:c9:a2:ab:f2:32:c3:8e:7b:
65:2a:c7:1a:d5:a1:38:e8:8a:42:5f:06:ae:bb:3a:
e3:96:dd:67:a0:3e:b3:f0:df:76:a0:ad:17:6d:0e:
e6:d8:04:cf:71:ef:f5:b8:ba:6a:87:85:5a:a1:34:
3b:7a:2a:bc:62:e4:1d:e1:34:35:fc:d3:3d:f2:65:
80:f7:93:18:69:37:b1:00:2a:1c:ae:65:21:67:40:
98:7a:bd:06:af:77:fa:8c:20:87:8e:5b:dd:5d:55:
24:98:09:9c:d7:de:42:56:88:2d:b1:3a:cc:bc:64:
c5:63:72:1c:a4:37:c1:38:9a:16:3c:43:9e:33:16:
2e:0d:65:e9:e8:8e:15:39:45:eb:1a:8b:b1:14:90:
df:52:26:ad:1c:e1:14:25:32:e1:f4:e2:7d:be:96:
0f:e0:60:7a:9e:9f:d1:3a:db:ba:39:eb:d4:1e:2a:
f8:37:8e:0c:3c:f7:3f:d0:83:bb:f0:09:85:10:4d:
42:b2:28:b9:30:5d:60:b9:97:bb:df:d4:09:b8:34:
78:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4E:37:B5:BA:17:18:E2:4F:B2:4B:AF:12:E7:3C:9A:26:92:B6:3A
X509v3 Authority Key Identifier:
keyid:B8:11:F8:CE:6D:D0:CC:48:0F:09:75:40:56:39:20:AE:A3:D6:63:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBH4zm3QzEgPCXVAVjkgrqPWY5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/v043tboXGOJPskuvEuc8miaStjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a37da2-7575-4cb8-84a5-f9cc27832f5a/1/uBH4zm3QzEgPCXVAVjkgrqPWY5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.223.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:79:52:1c:f1:67:60:e5:f0:28:23:e3:62:44:6c:77:c3:84:
ae:06:84:39:38:21:5b:9e:1f:1e:1c:2c:c0:5d:e3:fb:d4:75:
6c:52:8c:12:c6:ee:75:77:db:66:90:00:72:7a:1d:0d:83:93:
77:20:d0:a4:57:18:48:6e:44:1e:0d:b0:34:f6:c8:41:62:02:
32:32:f6:0e:6e:cd:89:c5:35:c1:25:a1:22:b6:e7:6d:10:f6:
7c:90:28:ee:f4:4a:ee:42:b3:b8:3c:b8:55:e2:94:82:77:f7:
2a:ff:b4:68:3a:be:9d:21:af:a9:34:16:70:aa:bb:9b:4b:1d:
a0:bc:2b:e9:bf:70:62:90:23:4d:2d:1e:42:40:0c:b8:da:6e:
1f:21:27:b2:bd:30:c4:69:3b:ff:29:32:5e:3c:52:53:cd:8c:
cf:d5:f5:f5:1a:b6:a9:22:8b:d2:70:e7:57:4c:86:c0:c7:68:
1d:b4:73:3f:3e:7b:9b:b7:67:9b:cf:ad:1b:39:c4:a9:a3:a8:
c8:f1:14:66:20:ee:b3:db:72:3f:fa:05:03:96:e5:4c:70:24:
95:f3:e0:a7:95:d0:6d:26:59:2c:ec:3f:c0:83:09:89:12:8d:
92:e7:f0:9c:c0:4c:55:6f:30:0c:dd:1e:b5:55:35:e5:8e:27:
c1:a3:93:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:15 2024 by rpki-client on console-ams.rpki-client.org