Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/3ery4Kh2XkzPTor2JHksp8h16lk.roa
File: 3ery4Kh2XkzPTor2JHksp8h16lk.roa (raw, json)
Hash identifier: IWOuen23wXmfS90if1lwVA2jvPpbLmeHY3tO8bhmZBM=
Subject key identifier: DD:EA:F2:E0:A8:76:5E:4C:CF:4E:8A:F6:24:79:2C:A7:C8:75:EA:59
Certificate issuer: /CN=785e0df3048628ccdb5396355697085e4250a8c7
Certificate serial: 03754147
Authority key identifier: 78:5E:0D:F3:04:86:28:CC:DB:53:96:35:56:97:08:5E:42:50:A8:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eF4N8wSGKMzbU5Y1VpcIXkJQqMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/3ery4Kh2XkzPTor2JHksp8h16lk.roa
Signing time: Sat 01 Jan 2022 11:03:22 +0000
ROA not before: Sat 01 Jan 2022 11:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207313
IP address blocks: 91.205.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58016071 (0x3754147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785e0df3048628ccdb5396355697085e4250a8c7
Validity
Not Before: Jan 1 11:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddeaf2e0a8765e4ccf4e8af624792ca7c875ea59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0d:46:a3:22:9b:1c:02:65:d8:08:d0:1b:13:
e2:59:aa:55:98:c8:33:a4:82:0c:94:10:23:e9:ee:
5e:ac:20:ef:59:ae:eb:15:a2:bd:dc:de:4b:8c:e1:
d3:4e:d7:1d:06:91:59:79:2a:c8:5c:9f:af:c7:fc:
4d:1a:40:6d:f3:a9:38:9d:b3:1e:9f:26:42:34:6f:
c1:24:1f:6d:c2:51:02:f9:37:ac:51:82:49:a9:b0:
05:3e:bc:36:dc:79:d2:44:1f:42:69:21:53:69:7a:
fa:10:13:ba:b3:4c:6c:a8:37:b4:08:24:22:b7:c6:
78:5d:4a:4e:3e:22:aa:b9:c0:99:1b:be:9f:44:f4:
d9:3c:d1:40:03:2b:44:70:55:5f:75:92:63:35:3e:
7d:0f:76:0a:9f:a8:71:ae:f8:e6:0b:92:1f:5e:00:
b2:50:27:5d:a0:12:67:cd:e5:10:12:05:49:93:77:
ec:41:a6:a7:8a:69:c7:60:23:19:bc:aa:16:5d:aa:
2e:61:5e:57:00:96:88:b2:78:0f:11:c4:a2:27:50:
a4:2e:8c:c7:44:d3:21:0a:46:3e:31:8f:c4:dd:90:
6c:33:6a:94:cc:08:3f:b2:be:e6:b7:cf:97:c4:82:
84:42:fe:8b:e4:46:b8:c4:d6:9c:6f:76:dd:9c:1e:
4f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EA:F2:E0:A8:76:5E:4C:CF:4E:8A:F6:24:79:2C:A7:C8:75:EA:59
X509v3 Authority Key Identifier:
keyid:78:5E:0D:F3:04:86:28:CC:DB:53:96:35:56:97:08:5E:42:50:A8:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eF4N8wSGKMzbU5Y1VpcIXkJQqMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/3ery4Kh2XkzPTor2JHksp8h16lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/72e20c-a2a8-4be8-b955-64f67c44bbfa/1/eF4N8wSGKMzbU5Y1VpcIXkJQqMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.158.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b3:b0:61:a5:c5:a2:a8:d3:2c:3c:e5:46:bc:a4:f7:d2:a4:
8b:49:df:93:7f:d2:b7:d2:bc:17:88:71:65:74:76:68:89:d8:
0b:c8:b3:64:05:69:e8:87:f4:f4:e7:99:5d:7b:26:e7:28:2a:
16:59:1f:86:b7:d7:c8:dc:cd:89:d1:35:e8:fe:89:a9:62:35:
ea:58:60:0f:d6:b1:fb:ce:24:9f:46:76:cc:45:c4:4e:33:a4:
10:6e:3b:5c:06:bc:0a:7f:d8:4c:7f:0e:9f:87:3f:b2:ba:9c:
6c:08:f5:de:2b:4b:cc:02:63:5d:4b:8f:7e:87:8f:8c:54:1d:
25:12:2c:8c:64:79:60:a3:6a:69:11:d8:50:94:32:d0:46:e7:
9b:f0:1a:14:e0:6e:43:48:5f:07:de:d1:b6:74:f7:94:a2:4b:
45:5f:9b:5a:0b:37:d8:2a:ee:93:1a:d8:97:0a:ed:ee:0f:56:
8a:fa:f5:07:03:b2:34:91:74:7a:dd:03:f9:10:64:e6:96:24:
85:9d:0a:90:ec:ed:dc:36:21:f4:ca:36:aa:de:08:33:7e:08:
f6:28:1f:89:9a:67:61:b5:fd:46:86:d3:bb:97:c5:6c:d9:db:
40:c3:eb:0a:5c:dd:b3:88:98:91:1d:b6:50:ef:63:57:80:f9:
a4:dc:7d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:35 2024 by rpki-client on console-fra.rpki-client.org