Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/Ekmwxgs_va68ekn-ef0HNKomn_o.roa
File: Ekmwxgs_va68ekn-ef0HNKomn_o.roa (raw, json)
Hash identifier: wVOxPXGtLiAhCNpHj0E8W5xLfxM+dXVweJKBLkMjLvQ=
Subject key identifier: 12:49:B0:C6:0B:3F:BD:AE:BC:7A:49:FE:79:FD:07:34:AA:26:9F:FA
Certificate issuer: /CN=e45060149aff5c4f908feea9b4123fcfddf0513c
Certificate serial: 018CC9BC2FC0DDF9C7758A3BC7D81B098C0D
Authority key identifier: E4:50:60:14:9A:FF:5C:4F:90:8F:EE:A9:B4:12:3F:CF:DD:F0:51:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5FBgFJr_XE-Qj-6ptBI_z93wUTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/Ekmwxgs_va68ekn-ef0HNKomn_o.roa
Signing time: Tue 02 Jan 2024 10:33:22 +0000
ROA not before: Tue 02 Jan 2024 10:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 37.16.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:2f:c0:dd:f9:c7:75:8a:3b:c7:d8:1b:09:8c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e45060149aff5c4f908feea9b4123fcfddf0513c
Validity
Not Before: Jan 2 10:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1249b0c60b3fbdaebc7a49fe79fd0734aa269ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:84:e4:c5:c5:a8:df:1a:f4:49:35:5f:7d:d3:
7f:d3:02:a8:ce:b2:36:fc:b3:49:23:76:ab:79:7d:
a0:3e:65:b8:7e:de:53:7d:2d:82:9a:9d:54:97:cc:
2a:ab:44:96:38:e9:29:df:96:16:86:49:3b:83:3a:
f8:e3:bf:83:96:99:da:be:43:60:6c:cb:23:0a:32:
c7:f2:7b:cd:49:72:aa:c4:56:93:68:ab:03:a5:e6:
5f:73:13:4d:9f:ef:93:0d:55:df:42:4b:da:a2:22:
c2:a6:31:01:c0:d0:11:bf:84:9e:43:8d:54:a0:12:
74:13:64:7b:4e:ad:90:68:e0:56:4d:c9:70:81:26:
00:d5:e2:18:6b:22:f7:e5:d9:a0:df:af:83:fa:70:
f1:ef:5f:43:63:fa:de:dd:3a:e1:fb:ba:86:f6:ad:
4a:f4:8e:ff:c7:68:c0:c3:27:02:72:9b:74:74:30:
8b:b1:a5:13:4d:07:7e:96:13:4a:54:77:ef:97:eb:
ae:9b:80:5b:61:a3:1d:24:fd:16:4d:04:fe:12:10:
cc:4b:cb:f3:55:7d:b9:34:76:da:bb:e3:9e:18:22:
2a:83:8b:2c:97:7e:f1:75:86:97:99:40:16:86:04:
82:c9:20:7d:30:f4:06:a7:a4:12:54:de:e4:26:fc:
f3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:49:B0:C6:0B:3F:BD:AE:BC:7A:49:FE:79:FD:07:34:AA:26:9F:FA
X509v3 Authority Key Identifier:
keyid:E4:50:60:14:9A:FF:5C:4F:90:8F:EE:A9:B4:12:3F:CF:DD:F0:51:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5FBgFJr_XE-Qj-6ptBI_z93wUTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/Ekmwxgs_va68ekn-ef0HNKomn_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb872a-1207-471c-b633-c34bdcb14d75/1/5FBgFJr_XE-Qj-6ptBI_z93wUTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.91.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c3:a5:55:36:53:54:bd:fa:51:72:6b:5f:a5:aa:4a:d4:99:
1b:9c:22:26:b6:49:a9:a3:31:47:24:20:71:29:ff:37:75:f9:
50:39:0e:d0:8f:ed:3d:56:fe:d0:18:29:dd:ed:43:04:e8:83:
1d:8f:bc:8e:68:b2:e7:fe:a2:04:c5:a1:d0:23:e3:65:39:88:
7e:a2:9e:91:f9:4c:02:05:f0:9c:d2:04:13:e4:2e:9c:b3:65:
74:02:b6:23:4f:0d:28:8b:a9:23:4c:ae:46:34:39:66:9c:24:
a4:1b:2a:be:2d:67:83:74:70:77:c8:dc:18:fe:ae:dd:9a:e2:
49:d4:ef:7d:91:00:2f:30:ed:57:09:0c:71:30:b1:c7:59:d3:
9f:ef:2b:5b:4e:da:07:af:00:b1:f0:0f:7c:2f:4e:b3:dc:bc:
d5:f0:2a:f3:e3:62:f1:ca:eb:79:51:4b:c9:5e:9c:dc:20:de:
7e:df:87:56:79:20:73:dd:48:2b:3d:af:b3:fc:49:81:9f:19:
2a:9e:18:91:30:28:91:1c:2b:ab:ec:2d:b3:d2:b0:41:d6:c6:
12:5f:52:d1:aa:e3:2f:49:ee:0e:91:6a:10:09:27:16:9b:70:
bc:d8:95:0a:e1:bb:13:ee:b8:bf:eb:45:9f:62:1e:0b:95:bd:
cf:63:1c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 30 17:11:03 2024 by rpki-client on console-ams.rpki-client.org