Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/zj5gXVB4TgaLGzfNm0ilK3AR7Cc.roa
File: zj5gXVB4TgaLGzfNm0ilK3AR7Cc.roa (raw, json)
Hash identifier: TfYs3sa7DwprgzbgCSYIpYihhhFeX5DmSRJzPJi6fA4=
Subject key identifier: CE:3E:60:5D:50:78:4E:06:8B:1B:37:CD:9B:48:A5:2B:70:11:EC:27
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 018311C1CF87C8DE19E9C2F95F6F8A55E645
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/zj5gXVB4TgaLGzfNm0ilK3AR7Cc.roa
Signing time: Tue 06 Sep 2022 07:44:17 +0000
ROA not before: Tue 06 Sep 2022 07:44:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 91.198.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:11:c1:cf:87:c8:de:19:e9:c2:f9:5f:6f:8a:55:e6:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Sep 6 07:44:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce3e605d50784e068b1b37cd9b48a52b7011ec27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a6:29:d4:57:6c:3b:fb:4d:99:bd:2b:9d:e5:
7c:0a:d0:b8:3a:d5:ef:ea:a7:8f:b3:a7:ee:d1:65:
36:3f:d2:ef:86:2c:bb:28:4b:fc:62:8f:81:d3:73:
b1:14:90:d5:f8:4c:74:13:16:1b:fd:e7:2d:03:fd:
31:85:05:5a:48:13:d1:a1:eb:73:d2:ae:bb:79:45:
ad:24:e1:fb:27:6b:83:36:91:a7:f8:b9:83:bb:71:
34:b5:14:44:fe:02:3c:0f:4c:d7:6b:f8:ad:5d:22:
29:7d:5c:47:9f:05:05:46:31:70:2d:fb:46:af:84:
71:e7:8d:32:56:a0:02:ac:22:35:1c:12:b9:bc:cd:
79:d1:c4:91:fd:54:c7:a1:46:ab:e7:a3:0d:93:af:
fc:7b:74:e2:95:8b:7e:ac:e0:f5:a4:f9:9e:2c:2b:
39:f2:8a:75:1a:f9:08:80:74:99:e7:35:d0:97:23:
62:42:45:ff:db:ed:92:ce:2c:d8:6a:5d:bb:eb:e5:
9d:17:01:0c:4d:b1:3d:14:76:69:37:8f:f0:7f:34:
ad:ea:96:b9:bd:cb:1c:46:95:f5:d7:96:d5:43:73:
92:ac:6f:38:24:8f:85:00:33:c6:1e:28:0d:24:81:
a7:f3:ef:8e:17:56:8d:1d:d5:c8:fb:ab:da:91:26:
f7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3E:60:5D:50:78:4E:06:8B:1B:37:CD:9B:48:A5:2B:70:11:EC:27
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/zj5gXVB4TgaLGzfNm0ilK3AR7Cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.123.0/24
Signature Algorithm: sha256WithRSAEncryption
81:13:d4:69:e9:a4:c0:10:4e:30:d8:cd:ae:62:54:53:2f:d4:
ef:7c:8a:42:1b:28:7e:5f:9f:5d:18:60:6f:72:06:3f:21:db:
d8:dd:bf:03:0e:f2:97:0a:5e:c3:4f:6b:e1:20:b2:0f:c4:97:
3f:f7:63:a3:a0:1f:47:64:c6:14:02:51:1c:f5:9a:f2:97:a8:
6c:d6:e4:67:70:c2:27:30:96:29:52:f6:35:85:a9:e5:25:36:
df:62:4b:0c:5f:f1:9b:cc:c5:02:69:00:ad:ab:1b:44:13:e8:
82:a3:e9:35:30:9b:5f:03:94:df:28:3e:f4:db:e9:6f:3b:d8:
e1:39:98:dc:85:63:7c:9b:65:8b:33:1d:3f:a6:1e:e7:af:e4:
d4:17:54:09:7a:43:f2:21:f6:0b:d6:19:39:43:9e:a3:fd:08:
b0:c2:da:ed:d3:3c:59:08:ec:b1:7e:4f:5e:2a:08:13:a6:82:
4b:e3:29:e1:d0:ec:98:53:aa:37:30:05:51:cb:85:bf:9a:7d:
cb:9d:10:97:e7:93:90:cc:9e:64:76:e1:1e:1c:df:f7:30:ae:
f3:22:01:0c:cf:9a:03:0d:57:47:b2:a1:e9:c5:c0:b3:9a:5f:
3c:ce:5f:68:af:57:5e:13:1b:c9:6e:70:f7:f2:28:c9:e7:25:
47:11:4e:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org