Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/bvPM5XBEn_TA8EV52vQZ0ATcEJk.roa
File: bvPM5XBEn_TA8EV52vQZ0ATcEJk.roa (raw, json)
Hash identifier: h3YqSzOA9QE48dA27Fm8fCBvGYdBsiQcxdbhqhhMb4w=
Subject key identifier: 6E:F3:CC:E5:70:44:9F:F4:C0:F0:45:79:DA:F4:19:D0:04:DC:10:99
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 03FBA95C
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/bvPM5XBEn_TA8EV52vQZ0ATcEJk.roa
Signing time: Wed 23 Mar 2022 14:23:31 +0000
ROA not before: Wed 23 Mar 2022 14:23:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44103
IP address blocks: 91.198.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66824540 (0x3fba95c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Mar 23 14:23:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ef3cce570449ff4c0f04579daf419d004dc1099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:db:b4:db:c5:a0:fe:bf:cf:bd:4d:0e:5e:ec:
cf:57:ba:7d:5a:8a:38:02:52:a4:3d:04:e6:92:f8:
7d:0b:31:4b:a8:e1:5c:4a:ff:72:57:03:13:69:d3:
c3:82:9d:4c:68:be:bc:de:b7:d8:49:e2:89:63:e2:
af:92:a5:85:f4:cf:de:0a:b4:df:fe:28:db:fe:d7:
82:c0:70:5f:a2:d0:e4:57:4f:35:94:8e:64:46:22:
81:9d:85:eb:29:03:f1:c0:1a:9a:9d:8a:e5:fb:a1:
b2:5e:62:46:50:c7:39:f7:93:fb:e1:38:c0:cf:0c:
e5:a1:5c:ca:96:17:e6:e6:83:88:fa:04:d0:20:95:
55:f0:b8:47:2f:8d:44:34:7d:3b:53:84:15:f3:a3:
ad:db:83:22:0b:d2:29:be:26:0a:8d:4a:1e:d3:f8:
f3:c8:17:4a:34:89:4f:39:d8:cc:f9:a1:c9:d3:7b:
06:48:ac:bc:92:ff:44:57:4d:77:99:03:bf:ba:9e:
fa:12:c8:05:b4:bd:29:dd:be:74:2f:aa:84:42:f2:
a0:d4:30:9b:c5:fa:c6:ab:d3:e9:64:4d:d4:0b:52:
6f:8c:86:27:d8:bb:8f:30:3a:7b:44:f2:a4:29:ec:
4e:43:28:c6:60:d4:96:40:4f:d4:8e:09:d0:02:6c:
ea:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F3:CC:E5:70:44:9F:F4:C0:F0:45:79:DA:F4:19:D0:04:DC:10:99
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/bvPM5XBEn_TA8EV52vQZ0ATcEJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.66.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:99:c4:2b:1c:26:ed:34:5f:3c:db:8c:ad:83:79:86:7a:13:
ca:53:c9:0e:4b:cb:24:1c:1c:b5:12:84:7b:41:55:e1:96:1f:
9c:79:c5:dc:f8:a2:4b:2d:72:97:71:d0:4c:25:8d:47:d2:1e:
98:33:b4:3c:c7:20:65:8b:df:ca:58:a1:7b:f9:a3:d5:19:89:
eb:d3:3c:53:68:25:24:dd:46:bc:f8:31:7d:ed:6f:95:ef:4c:
1e:4d:f6:5f:5c:91:11:15:d5:47:1b:fb:a9:5e:5f:04:a4:26:
95:a6:b4:99:59:9b:13:63:26:da:29:ac:7e:22:74:7f:2e:88:
d7:74:a7:1e:d9:e3:15:7e:9b:1e:8e:f7:7c:48:75:88:16:fa:
0b:bc:3c:2d:8d:94:f7:73:4f:7a:d4:29:e9:c4:25:cb:e1:76:
46:c5:97:0d:18:40:0b:fc:40:57:a5:68:b5:78:3f:cf:27:04:
1f:3f:e3:f4:bf:3d:48:ad:d0:57:0a:49:3b:fb:fe:e9:8d:f2:
55:a3:e7:45:7c:a5:43:20:fb:17:d6:d3:12:96:7b:37:b4:70:
12:f1:5a:ac:6d:b3:c8:46:3f:4d:7e:e4:10:13:3b:97:d8:53:
ac:1d:77:8f:0d:6a:e1:d4:29:31:c0:cd:35:ee:b3:d6:59:cb:
1e:9a:79:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org