Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/LFOA3M2bVa1xcLZ5eG90EFhvuug.roa
File: LFOA3M2bVa1xcLZ5eG90EFhvuug.roa (raw, json)
Hash identifier: BhfGMXtM9T8lS4aHFnPjGfbR8iJn2UOJ3A2XC+Of/tg=
Subject key identifier: 2C:53:80:DC:CD:9B:55:AD:71:70:B6:79:78:6F:74:10:58:6F:BA:E8
Certificate issuer: /CN=96a8d72552e5ba942ad9d94bdbf102895ea96ee4
Certificate serial: 37EE7790
Authority key identifier: 96:A8:D7:25:52:E5:BA:94:2A:D9:D9:4B:DB:F1:02:89:5E:A9:6E:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lqjXJVLlupQq2dlL2_ECiV6pbuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/LFOA3M2bVa1xcLZ5eG90EFhvuug.roa
Signing time: Sat 01 Jan 2022 13:07:34 +0000
ROA not before: Sat 01 Jan 2022 13:07:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42323
IP address blocks: 91.202.140.0/22 maxlen: 22
109.197.128.0/21 maxlen: 21
195.238.100.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938375056 (0x37ee7790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96a8d72552e5ba942ad9d94bdbf102895ea96ee4
Validity
Not Before: Jan 1 13:07:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c5380dccd9b55ad7170b679786f7410586fbae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:66:0b:49:7c:17:f2:dc:84:20:62:7c:a7:b8:
e0:6a:82:cf:e0:c9:24:d4:1a:8b:33:93:bd:5f:2f:
46:e4:89:d1:b7:9c:2c:8a:5c:ca:8a:33:40:69:4e:
3c:a8:91:18:31:79:44:50:07:24:ae:03:ba:d3:c2:
4c:1c:4d:9d:53:e3:e8:7e:fa:85:99:35:e5:15:31:
88:22:c4:91:e5:d5:dc:a7:d3:ba:85:1b:6c:e3:88:
b7:e7:52:70:ba:b7:dd:07:73:56:21:c2:cb:37:b3:
b7:44:a8:6a:aa:77:08:fd:b7:95:4c:5b:5d:88:32:
67:a2:b5:9b:b1:09:55:4f:c3:56:67:50:17:ec:3a:
09:c0:93:0f:2e:27:bb:d1:e8:7b:78:92:73:f4:97:
56:75:70:19:48:11:c1:96:5a:38:ee:4e:37:ab:08:
ec:b2:23:20:fd:62:82:66:c0:7f:b8:63:e2:62:05:
8f:63:c3:60:88:70:d7:66:e3:ae:3f:07:d4:2f:0b:
de:dd:de:94:fb:d3:01:f0:a9:80:00:62:8e:59:61:
48:40:8a:84:30:b3:78:a1:f8:ae:49:62:cc:a3:b7:
47:28:3b:10:a5:80:18:7b:57:50:8c:d1:65:79:f0:
50:5c:85:6b:57:da:4e:cd:ff:f5:2b:3d:33:d6:ff:
ce:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:53:80:DC:CD:9B:55:AD:71:70:B6:79:78:6F:74:10:58:6F:BA:E8
X509v3 Authority Key Identifier:
keyid:96:A8:D7:25:52:E5:BA:94:2A:D9:D9:4B:DB:F1:02:89:5E:A9:6E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lqjXJVLlupQq2dlL2_ECiV6pbuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/LFOA3M2bVa1xcLZ5eG90EFhvuug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ce9779-3ada-4b03-a9ea-662b194869c0/1/lqjXJVLlupQq2dlL2_ECiV6pbuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.140.0/22
109.197.128.0/21
195.238.100.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:5a:db:1c:4e:5f:08:9d:46:84:4d:35:2d:fa:4a:c3:af:61:
54:5d:be:07:94:63:46:db:da:27:82:33:c7:5d:a9:67:42:ce:
43:3e:ac:04:b5:8f:7e:43:db:b1:23:0c:4e:74:f5:07:2c:db:
d4:ba:f0:28:90:e0:d1:0f:ad:02:bf:d5:16:c5:9a:41:b6:bd:
c0:31:e2:36:67:20:1b:9c:f8:88:8a:d5:61:89:d4:c1:e5:51:
f3:99:29:e2:24:46:df:b4:8e:3e:fc:cb:d0:4a:cf:f1:ed:ff:
df:76:3c:00:71:ec:9c:2a:d9:fe:d5:b7:b5:17:08:e6:27:fb:
3d:e3:75:26:71:20:99:ef:75:41:0a:71:34:1b:39:e6:84:e2:
c6:2c:bd:7b:8d:73:c5:e5:ca:90:9e:c9:20:29:81:fd:08:d7:
c5:89:01:33:41:5d:06:f6:c9:54:2f:5a:ce:c8:03:5f:cf:85:
36:7a:71:fe:c5:2e:50:da:d2:25:b0:eb:f6:04:58:26:c0:0b:
5e:c8:78:9e:7d:9c:e4:fd:05:ee:22:c9:de:ab:be:42:ec:14:
b4:c6:29:be:e3:6d:60:4c:75:9a:fe:10:ec:22:77:0e:4c:91:
d3:a7:49:dd:c2:2f:e0:0e:4f:d8:4f:0b:37:0f:d4:f8:8f:32:
97:ec:28:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:13 2024 by rpki-client on console-fra.rpki-client.org