Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/OEINpJaIG-ludLXMFuF2bHShC7E.roa
File: OEINpJaIG-ludLXMFuF2bHShC7E.roa (raw, json)
Hash identifier: maaOP16KWKv1mi3cz1VSjOx06GrU2sLqPk2ZrSbbxLg=
Subject key identifier: 38:42:0D:A4:96:88:1B:E9:6E:74:B5:CC:16:E1:76:6C:74:A1:0B:B1
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 036A824C
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/OEINpJaIG-ludLXMFuF2bHShC7E.roa
Signing time: Wed 02 Feb 2022 08:08:54 +0000
ROA not before: Wed 02 Feb 2022 08:08:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 91.199.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57311820 (0x36a824c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Feb 2 08:08:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38420da496881be96e74b5cc16e1766c74a10bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5f:af:3b:0b:d2:5c:76:e8:86:38:0a:31:5f:
ef:d2:c0:3c:f6:e9:d7:ba:9c:7c:6d:a7:04:25:60:
a5:e2:aa:ca:7c:30:09:0c:4d:2f:5d:2d:fc:72:73:
07:e1:40:69:d4:c8:8a:d7:ff:e5:d3:f5:d1:4a:c7:
d0:78:cc:4c:15:ba:75:5f:e8:5e:96:4c:60:a0:a0:
9b:48:6a:05:1a:7f:05:2f:88:a5:9e:e7:62:ee:92:
0f:23:c4:6c:1f:79:28:5b:81:cd:4e:95:18:14:17:
67:eb:03:95:c6:4c:d0:c5:24:46:67:eb:40:66:3b:
ad:e7:bc:5b:fc:36:5f:28:44:4d:dc:2d:f5:b8:d6:
9e:df:00:2f:51:91:d0:d0:43:9a:22:8e:77:dc:8d:
7c:b6:5d:fa:eb:87:d0:05:28:d4:5a:03:56:e3:f7:
f3:11:8f:12:1a:d2:ac:d7:4a:62:10:5e:5a:4d:67:
49:e5:bb:78:25:c2:2b:0c:2b:86:b0:27:b4:92:d1:
cf:ac:5e:62:d6:4b:7c:6c:7f:c9:bd:f7:c8:36:7a:
0b:b6:3e:67:1a:8e:de:ab:e5:25:81:97:70:2c:64:
6e:83:35:d7:2f:d8:61:37:97:48:6f:79:ad:ab:51:
f0:e7:fb:3b:d3:46:70:e8:58:ff:60:42:a6:d0:28:
68:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:42:0D:A4:96:88:1B:E9:6E:74:B5:CC:16:E1:76:6C:74:A1:0B:B1
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/OEINpJaIG-ludLXMFuF2bHShC7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:8d:f8:07:39:0f:23:65:6a:95:2b:3a:7d:9f:de:3b:8e:54:
93:95:7d:54:6a:cc:05:09:d3:ca:17:af:4d:e8:b1:d8:56:16:
29:8b:15:94:3c:fc:c0:f7:99:3a:6b:48:a0:9a:5e:bb:eb:65:
ca:44:1d:68:93:08:29:12:7e:5c:d6:e1:40:b1:ed:21:a7:ac:
da:9c:21:d1:62:ad:c2:98:b0:80:da:d8:cb:48:6c:3a:83:84:
ee:3b:71:8f:8a:40:a8:64:31:d1:b5:eb:2d:53:4a:7a:58:37:
02:66:96:be:bc:ee:fc:93:aa:6f:ef:ce:d3:4c:c2:cd:90:9d:
6d:b1:98:19:cb:32:52:89:4c:71:86:05:58:d3:6a:34:ca:66:
1c:c3:32:ac:18:08:da:3d:6a:94:4f:61:53:99:f2:50:56:50:
1f:bf:b1:3b:7b:41:80:f5:6c:a2:51:f5:23:4d:bd:fa:76:a3:
20:bf:cc:ca:87:5f:e5:ec:fe:6b:5b:a0:ef:96:ba:37:4f:18:
ee:51:73:71:b9:26:b4:b7:18:3b:f9:50:56:79:66:62:1d:38:
ed:83:64:1a:5c:57:7a:37:ad:5c:14:09:e8:0a:02:a4:f4:78:
31:9b:e5:4e:17:18:63:58:14:73:17:7b:1b:cb:ff:65:17:29:
42:65:cb:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org