Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3567b2-c430-41fe-a2ca-163dbd377e4f/1/KeKVHkHCi5KVgKfAtkgxS1SbX6Y.roa
File: KeKVHkHCi5KVgKfAtkgxS1SbX6Y.roa (raw, json)
Hash identifier: lCldGOr8s5uoXbWbRIC6pMV38WY5HefM86MoD6dB4Lw=
Subject key identifier: 29:E2:95:1E:41:C2:8B:92:95:80:A7:C0:B6:48:31:4B:54:9B:5F:A6
Certificate issuer: /CN=ec5ac135c2e679626a07248960314454c2c933c6
Certificate serial: 0D7D9354
Authority key identifier: EC:5A:C1:35:C2:E6:79:62:6A:07:24:89:60:31:44:54:C2:C9:33:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FrBNcLmeWJqBySJYDFEVMLJM8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3567b2-c430-41fe-a2ca-163dbd377e4f/1/KeKVHkHCi5KVgKfAtkgxS1SbX6Y.roa
Signing time: Sat 01 Jan 2022 02:52:13 +0000
ROA not before: Sat 01 Jan 2022 02:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35735
IP address blocks: 91.208.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226333524 (0xd7d9354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec5ac135c2e679626a07248960314454c2c933c6
Validity
Not Before: Jan 1 02:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29e2951e41c28b929580a7c0b648314b549b5fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c1:ef:69:63:5a:52:14:f6:ca:1a:e8:b8:f7:
ae:77:e7:2a:27:a4:24:15:44:3c:53:6f:f7:00:70:
96:75:a7:d3:ea:b3:08:13:76:d1:4d:d2:84:0f:06:
68:21:2a:d4:93:2a:92:9b:01:97:8c:61:a1:48:64:
cf:b0:3d:ff:69:ac:b8:7e:2a:82:a6:c3:f4:34:8f:
a9:0e:83:33:82:66:58:85:ba:e9:74:7c:26:ac:45:
60:dd:67:8f:a8:a5:d7:c4:7a:b0:a6:5a:9d:ba:bc:
10:53:66:97:be:54:22:5d:fe:29:f5:bb:4e:07:b7:
61:9b:fb:2d:2d:95:8e:0b:09:87:8c:b0:d6:4c:f0:
90:b8:5b:3a:10:52:c1:3d:eb:27:9c:d0:70:9d:b1:
f4:23:9f:e2:74:95:ad:3f:ad:00:40:1b:f8:50:01:
be:a1:49:72:89:30:c4:27:0c:8d:30:e3:44:77:67:
99:25:f2:17:8d:f6:80:dc:5a:61:60:75:fd:24:b9:
4b:66:b5:3a:9a:f9:4d:3d:1d:7f:99:ef:76:d2:15:
7c:df:a2:0a:a3:a8:4f:4f:89:bd:c1:44:f5:bb:77:
64:d7:3c:97:54:bd:73:2b:f3:79:22:2a:3e:27:51:
82:f0:3a:8b:e2:ab:2d:15:9f:7e:79:45:d3:a9:24:
31:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E2:95:1E:41:C2:8B:92:95:80:A7:C0:B6:48:31:4B:54:9B:5F:A6
X509v3 Authority Key Identifier:
keyid:EC:5A:C1:35:C2:E6:79:62:6A:07:24:89:60:31:44:54:C2:C9:33:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FrBNcLmeWJqBySJYDFEVMLJM8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3567b2-c430-41fe-a2ca-163dbd377e4f/1/KeKVHkHCi5KVgKfAtkgxS1SbX6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3567b2-c430-41fe-a2ca-163dbd377e4f/1/7FrBNcLmeWJqBySJYDFEVMLJM8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.110.0/24
Signature Algorithm: sha256WithRSAEncryption
78:65:b6:a6:2c:bf:fd:8b:f9:bc:40:4d:73:55:6b:34:bf:84:
44:4d:53:d0:fd:9a:27:bb:8c:56:10:3a:62:fb:ab:22:b8:92:
e9:16:9e:37:4d:19:f0:cd:a6:d4:ed:b4:08:be:20:3b:56:86:
d0:fc:95:e1:e1:da:37:88:02:fe:9e:0e:2a:30:88:59:b2:16:
ca:72:d1:b0:18:46:8f:3c:93:60:f2:b8:fb:30:98:7a:db:54:
47:36:eb:5d:3a:ea:00:56:03:d7:4b:4f:41:f4:6d:35:ef:75:
d1:e2:31:56:53:b3:fe:a5:77:cf:14:c5:3d:0e:33:59:28:6b:
ab:5b:01:72:8f:46:c9:b3:62:0f:3d:51:ac:83:0c:33:ea:df:
be:1f:9b:69:d4:88:c1:be:65:c5:16:e6:8b:a3:8f:91:d1:88:
99:09:2e:81:28:19:4d:1f:19:31:b4:1c:a8:c5:eb:74:c5:e7:
ab:c3:b2:c1:71:b7:ea:4c:cb:86:24:5c:3a:2f:76:d0:28:3a:
eb:9f:aa:21:ff:02:d3:68:d0:05:1e:40:81:9f:b8:98:c1:2a:
65:4e:34:df:1c:c0:f2:bf:9e:1a:fd:39:70:47:3c:63:6e:08:
e9:d9:b8:f4:f1:bf:34:46:1f:59:33:b9:35:5e:0b:b1:fd:d6:
3f:94:0d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:16 2023 by rpki-client on console-fra.rpki-client.org