Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/9f1909-2190-4c1e-b74d-f0aa454f204a/1/bOfNYLdatl63L81Q1TJicwJJBlo.roa
File: bOfNYLdatl63L81Q1TJicwJJBlo.roa (raw, json)
Hash identifier: O6eCo/tYMqi0WJHqjpnRZQtvZ87BzaNUxG8nuHKKxzw=
Subject key identifier: 6C:E7:CD:60:B7:5A:B6:5E:B7:2F:CD:50:D5:32:62:73:02:49:06:5A
Certificate issuer: /CN=542c9e90e8ed1919c941fd6a2538e9f12021f372
Certificate serial: A18B32
Authority key identifier: 54:2C:9E:90:E8:ED:19:19:C9:41:FD:6A:25:38:E9:F1:20:21:F3:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VCyekOjtGRnJQf1qJTjp8SAh83I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/9f1909-2190-4c1e-b74d-f0aa454f204a/1/bOfNYLdatl63L81Q1TJicwJJBlo.roa
Signing time: Sat 01 Jan 2022 01:57:56 +0000
ROA not before: Sat 01 Jan 2022 01:57:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 91.242.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10586930 (0xa18b32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=542c9e90e8ed1919c941fd6a2538e9f12021f372
Validity
Not Before: Jan 1 01:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ce7cd60b75ab65eb72fcd50d53262730249065a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e3:39:57:f1:d5:ad:1c:42:a9:ef:df:0b:d8:
27:a7:89:71:15:de:51:62:21:0a:f4:a4:62:a6:61:
d9:0c:78:5a:8c:0c:52:28:74:7f:bc:19:32:04:b9:
58:9c:2f:30:7e:d2:6d:43:53:9c:91:4c:bf:22:01:
10:48:0c:62:d0:6e:d7:89:1c:7f:25:fb:44:99:6e:
cf:22:a7:f2:b8:48:76:9e:d0:4e:24:5a:fb:59:be:
f5:a7:57:ac:05:48:27:b6:b5:36:08:a9:0e:8e:ec:
ba:cb:9c:b0:55:bd:7a:db:01:ad:da:1d:e7:c8:80:
a3:20:08:c1:ac:c7:fd:24:16:ca:9c:48:28:14:e5:
4f:66:be:dc:1c:d2:4c:61:2e:c8:24:06:a9:ca:0c:
4b:4d:7a:7b:6d:d9:4d:a3:a0:04:50:4f:ec:71:22:
ed:ba:14:af:cc:ff:db:dc:a9:6b:68:c7:3c:28:77:
ff:69:cc:5f:98:23:4f:04:8f:fb:4c:c5:e1:56:3a:
21:21:67:32:f7:c9:30:1f:e7:e7:60:13:7d:29:b7:
20:03:d3:48:ef:cf:90:91:95:eb:c7:73:58:95:f1:
22:74:1b:75:88:a6:8b:61:35:a4:af:df:4d:61:45:
fb:0e:f6:10:3a:dd:b2:99:f5:b4:ce:2e:90:0b:e5:
58:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E7:CD:60:B7:5A:B6:5E:B7:2F:CD:50:D5:32:62:73:02:49:06:5A
X509v3 Authority Key Identifier:
keyid:54:2C:9E:90:E8:ED:19:19:C9:41:FD:6A:25:38:E9:F1:20:21:F3:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VCyekOjtGRnJQf1qJTjp8SAh83I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/9f1909-2190-4c1e-b74d-f0aa454f204a/1/bOfNYLdatl63L81Q1TJicwJJBlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/9f1909-2190-4c1e-b74d-f0aa454f204a/1/VCyekOjtGRnJQf1qJTjp8SAh83I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.238.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ee:61:08:3a:3b:af:67:f4:92:8f:bf:f3:83:64:a4:2f:dd:
b0:a3:6e:3d:de:07:1b:7d:b5:80:3f:ca:83:ae:11:c9:79:0e:
23:75:ff:86:c7:5d:a9:e5:a0:c1:bd:d1:4c:fb:c5:b2:ef:08:
c1:32:c2:4e:08:64:c2:cb:bf:4f:ec:2a:f8:e4:23:d5:8e:7e:
59:25:33:d3:ca:a1:b4:ab:1f:33:ea:a4:03:62:0f:cf:45:f8:
c3:1f:8f:29:c8:4a:66:c0:59:56:9f:ca:3b:c3:fa:af:bf:50:
63:2a:2e:7f:cc:bc:8e:f6:7d:87:59:61:e8:b2:2f:08:3a:91:
2c:ea:ca:2d:1e:b8:d3:ae:9d:88:04:ca:2d:dc:4c:04:00:f8:
16:a7:df:88:f2:61:7a:3d:1b:08:a6:a7:dc:9e:e4:c2:5f:38:
e7:e8:97:b2:48:1e:8c:3b:79:c1:dc:8a:30:81:20:aa:ba:91:
5d:fe:cb:d0:61:9f:93:4a:f1:7f:e5:a1:f0:d5:6e:2c:e4:ef:
68:c6:46:52:da:d8:b5:2c:34:84:17:e2:12:2f:ee:a1:b8:50:
ba:3d:b6:92:82:2d:ed:a4:b8:a7:cb:34:2c:2b:c2:76:ef:b9:
33:5c:ac:47:79:f7:59:b4:59:a1:58:cf:a0:6e:83:51:d9:d4:
61:38:8a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:26 2024 by rpki-client on console-fra.rpki-client.org