Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gYhLhkNef3LNVnrdtbiet-a9W7o.roa
File: gYhLhkNef3LNVnrdtbiet-a9W7o.roa (raw, json)
Hash identifier: JSCi41L2q1PRE1qPRS3xoN7knW9mw1wn7Mk0aMmijNI=
Subject key identifier: 81:88:4B:86:43:5E:7F:72:CD:56:7A:DD:B5:B8:9E:B7:E6:BD:5B:BA
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 040D042D
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gYhLhkNef3LNVnrdtbiet-a9W7o.roa
Signing time: Tue 29 Mar 2022 08:16:22 +0000
ROA not before: Tue 29 Mar 2022 08:16:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 91.206.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67961901 (0x40d042d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Mar 29 08:16:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81884b86435e7f72cd567addb5b89eb7e6bd5bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a1:92:bf:d4:1a:cc:c9:0c:18:f8:14:57:04:
73:ad:a9:38:5a:71:7c:04:56:37:4d:e0:70:6b:e0:
4c:4b:74:fd:7b:4b:bb:0a:0e:6d:e1:68:42:8a:95:
41:b9:f2:b9:bb:68:a7:f3:ff:3c:4f:2c:7c:34:7e:
c2:17:6e:1c:c8:0a:07:71:95:9f:49:29:b4:ec:0c:
4b:17:58:d2:3b:df:11:69:be:d8:85:47:16:96:e9:
b0:d1:fc:6d:bb:94:1a:ac:11:05:5c:08:ed:e6:7c:
ba:16:d1:bf:18:5d:01:28:dd:f4:a7:58:80:4d:c9:
04:bd:8d:a0:e6:86:bf:81:78:8f:eb:c3:a7:44:2b:
e9:70:c1:f8:79:bc:8c:8b:89:45:6e:24:86:df:4e:
12:65:13:7c:21:48:aa:c3:78:f5:20:6e:5e:25:a0:
cd:9c:a1:80:5d:dd:9c:5b:db:17:c4:40:39:99:da:
c4:17:a2:53:19:a7:84:7e:13:63:61:61:8c:78:83:
2b:7a:bd:60:ec:92:b7:9d:90:ee:77:f4:72:5d:bc:
02:a3:08:c0:e0:4c:a3:cc:7e:7b:da:0f:79:7f:15:
0c:24:50:e6:7d:21:44:10:1a:c9:28:07:42:4f:3c:
52:22:62:fe:fe:44:f3:e2:e9:ec:38:47:82:c5:72:
c7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:88:4B:86:43:5E:7F:72:CD:56:7A:DD:B5:B8:9E:B7:E6:BD:5B:BA
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gYhLhkNef3LNVnrdtbiet-a9W7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.2.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:36:70:3d:3a:c6:b0:58:e2:f7:f1:ca:d7:2f:ff:e9:1e:69:
44:5f:1b:60:be:94:ed:36:cd:2c:80:a7:eb:c2:81:77:8d:bd:
19:1f:2f:03:09:a1:bf:23:d7:e2:11:47:d4:89:b9:c6:f5:e1:
63:e9:d0:b5:5b:c5:ae:24:21:03:b8:42:83:c5:9b:73:cb:e1:
bb:81:81:18:c5:c6:52:e7:b2:86:27:fa:4f:f4:2f:7e:80:9c:
28:41:db:75:17:ec:01:0f:f2:77:13:bf:2f:23:ba:41:7b:0c:
51:ab:c9:a2:76:b3:49:b5:4a:a7:68:47:0d:64:1b:8c:ac:b4:
1d:e1:d8:a4:14:5e:f1:fa:31:f2:6a:c6:2d:14:6e:3f:1f:1a:
9f:fc:0a:50:07:28:91:29:69:28:32:3b:91:62:12:54:27:91:
21:c3:8b:57:6e:13:bf:45:62:8b:08:f0:f6:41:2a:58:74:a1:
0d:fe:22:98:4e:a0:d4:a9:21:d9:d3:64:b6:29:62:0a:b9:d3:
36:f8:25:8a:0c:da:2c:26:99:0b:cd:06:33:39:a9:a5:8b:60:
11:fb:99:11:30:5e:0e:bb:c6:1f:14:42:cd:ad:c5:f7:43:9b:
a5:c8:dc:6f:a1:32:37:db:8f:e1:dc:54:c6:a8:99:05:5f:a3:
34:58:14:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org