Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/aEFf02CkjM5CralvrZqk-Fu_JQo.roa
File: aEFf02CkjM5CralvrZqk-Fu_JQo.roa (raw, json)
Hash identifier: COsGPoK4Zp950GSIHEmUbezmrawvVp62Wk6s/cJ2wOc=
Subject key identifier: 68:41:5F:D3:60:A4:8C:CE:42:AD:A9:6F:AD:9A:A4:F8:5B:BF:25:0A
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01830E5686EDE62A50A204161727D5DAF719
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/aEFf02CkjM5CralvrZqk-Fu_JQo.roa
Signing time: Mon 05 Sep 2022 15:48:15 +0000
ROA not before: Mon 05 Sep 2022 15:48:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 91.198.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0e:56:86:ed:e6:2a:50:a2:04:16:17:27:d5:da:f7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Sep 5 15:48:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68415fd360a48cce42ada96fad9aa4f85bbf250a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:27:77:5c:a3:bf:2f:ca:c1:bd:bc:a2:be:7c:
e1:6c:64:31:b2:4b:8d:56:f5:a7:fc:a6:97:6f:fa:
6b:c9:80:50:4f:f0:1e:a5:38:13:85:97:47:7b:4b:
e2:6c:24:45:4a:55:08:61:28:2e:79:82:4e:f6:b4:
a2:27:1f:68:3b:b4:2f:8e:57:4f:3c:94:de:44:5c:
9d:71:1a:aa:40:2e:d7:b8:b6:bd:85:90:00:0c:72:
dd:1b:f1:d1:7c:04:da:ae:75:38:33:c4:3c:51:7e:
eb:57:6a:56:3a:ee:36:ea:f7:d9:f0:1f:9e:64:b1:
3c:b5:5e:4b:21:ae:ab:98:6e:c6:f5:58:2d:4b:40:
d0:40:f8:3a:60:b3:8d:3d:3f:7b:73:cc:f7:64:62:
02:ea:4c:19:df:96:03:47:39:56:85:6a:22:d8:6e:
f1:52:94:af:cb:70:5c:e5:43:3b:9f:93:0a:1d:24:
b5:c6:ec:be:b5:68:5a:77:18:00:be:c3:2c:e0:9c:
2d:1b:b4:f4:67:cd:82:f4:19:fb:45:a7:35:37:f4:
f2:52:cb:8a:8e:96:5a:44:af:15:fc:6b:f9:a3:c4:
f9:01:9a:b1:7c:da:9f:70:f9:a0:a7:b2:fc:f9:78:
48:c5:be:4b:c3:a9:d0:be:29:33:ad:2a:13:1e:b2:
57:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:41:5F:D3:60:A4:8C:CE:42:AD:A9:6F:AD:9A:A4:F8:5B:BF:25:0A
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/aEFf02CkjM5CralvrZqk-Fu_JQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.123.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:95:56:6e:ca:eb:e7:1d:1b:2d:4d:53:d2:ad:c0:4e:c0:21:
44:b8:b5:3e:61:f5:bd:2f:8b:92:6a:ea:96:4a:a9:a8:eb:7a:
45:96:05:17:16:6a:6f:1f:47:d4:1e:80:8b:39:bf:33:c4:99:
28:3f:c5:f4:01:1d:4c:e4:9e:0c:97:ad:7a:e3:10:c9:ae:d0:
68:a2:2b:eb:39:a3:39:9e:35:83:76:7c:57:45:91:20:92:4b:
18:f6:60:a0:b4:6c:90:ba:18:db:65:e4:ea:ab:44:82:e7:76:
aa:19:6e:cb:bb:60:c4:a4:ba:66:b5:bb:aa:fe:f0:f8:59:c5:
61:0f:be:a1:18:36:d7:ba:30:ef:ea:32:06:bc:ca:13:c8:3a:
80:43:5f:ae:34:48:af:ed:16:2e:1c:fd:5e:56:b4:41:31:6d:
10:11:86:7a:f5:2c:f8:35:98:fa:78:f6:96:33:cb:20:05:e7:
f8:1c:69:0f:d4:d5:8f:33:d1:83:02:e7:aa:64:eb:71:01:35:
fa:9b:b4:b8:19:e7:86:6c:73:6e:c5:e8:f1:fc:5e:59:41:5e:
af:d3:b1:ad:e6:76:58:f8:30:a6:2b:77:c0:39:dd:22:8e:14:
c1:e9:76:93:c2:a7:b1:cf:53:da:89:44:05:d7:0b:29:c3:42:
54:43:45:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org