Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/868e9b-e143-4e57-867a-43ee37032079/1/_CWAPgFAdF6aoaCRDSPF0tyM_O4.roa
File: _CWAPgFAdF6aoaCRDSPF0tyM_O4.roa (raw, json)
Hash identifier: uE2Ze46W5iZAZew9GDw1ZVuBD4OwIghyirQdlqPcahQ=
Subject key identifier: FC:25:80:3E:01:40:74:5E:9A:A1:A0:91:0D:23:C5:D2:DC:8C:FC:EE
Certificate issuer: /CN=52227117bea639cbc897fc31e764a3495fb401c2
Certificate serial: 0185730387CF2A7AE176783F4E5EBFAF14A5
Authority key identifier: 52:22:71:17:BE:A6:39:CB:C8:97:FC:31:E7:64:A3:49:5F:B4:01:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiJxF76mOcvIl_wx52SjSV-0AcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/868e9b-e143-4e57-867a-43ee37032079/1/_CWAPgFAdF6aoaCRDSPF0tyM_O4.roa
Signing time: Mon 02 Jan 2023 15:04:49 +0000
ROA not before: Mon 02 Jan 2023 15:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 91.221.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:87:cf:2a:7a:e1:76:78:3f:4e:5e:bf:af:14:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52227117bea639cbc897fc31e764a3495fb401c2
Validity
Not Before: Jan 2 15:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc25803e0140745e9aa1a0910d23c5d2dc8cfcee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8b:8e:f8:51:7b:34:aa:dc:7d:af:ad:20:ec:
a1:35:44:70:29:6a:1a:02:a0:4b:83:5f:0b:d7:e8:
cf:02:1a:c4:06:8b:16:2d:32:a4:0a:f6:7b:f0:98:
03:32:76:72:b5:0e:1a:11:9b:3e:a0:cd:e4:b7:97:
f5:75:fd:57:6c:69:e0:35:e5:b1:46:68:0a:c4:65:
bf:cd:0b:5d:6b:b5:cc:77:14:e9:d5:a4:a9:e7:4b:
b7:87:01:47:9e:21:bc:99:9e:9b:d5:6c:e0:c2:84:
93:07:3b:e2:e3:e8:fc:6e:2b:02:b7:00:74:f2:d7:
48:fe:d5:a6:36:b8:ea:1c:1b:fd:7e:22:f7:ea:fa:
5f:c1:a9:87:bc:f6:00:d3:c9:69:c7:e0:60:7e:2b:
43:3e:98:d4:90:6b:c5:ba:0b:15:e4:17:8a:cf:5f:
07:b8:3d:77:dd:23:c8:22:62:bd:52:c6:fd:53:cb:
6d:57:14:da:84:9b:b7:54:c9:4b:46:71:37:de:79:
f0:49:eb:c5:79:db:1b:b7:d8:ef:1c:fb:1d:fd:13:
56:4b:39:ce:79:7a:13:ed:47:2d:3c:90:52:9c:ef:
ff:81:52:5e:bf:90:68:2b:80:b5:b5:6a:7f:42:da:
96:f4:31:d2:3b:db:45:02:f5:69:6c:82:1d:40:8a:
97:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:25:80:3E:01:40:74:5E:9A:A1:A0:91:0D:23:C5:D2:DC:8C:FC:EE
X509v3 Authority Key Identifier:
keyid:52:22:71:17:BE:A6:39:CB:C8:97:FC:31:E7:64:A3:49:5F:B4:01:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiJxF76mOcvIl_wx52SjSV-0AcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/868e9b-e143-4e57-867a-43ee37032079/1/_CWAPgFAdF6aoaCRDSPF0tyM_O4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/868e9b-e143-4e57-867a-43ee37032079/1/UiJxF76mOcvIl_wx52SjSV-0AcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.81.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8b:f8:bb:f2:e4:49:bb:ec:d9:f7:cb:90:9a:15:95:8d:46:
a1:9a:1b:5b:16:d1:ca:20:5a:8f:91:c1:06:1a:62:38:a7:8e:
5f:28:df:ec:c2:cb:d2:64:ec:0c:66:00:55:40:33:b8:f1:4c:
4b:b8:11:5c:8a:20:19:5f:9c:5b:9d:d6:e0:83:58:b5:33:e6:
a5:43:f8:fc:94:e7:66:9d:40:d4:bf:8f:45:30:57:d1:0d:99:
e9:ca:11:41:39:c6:82:af:e3:32:73:17:05:57:32:ad:b5:cc:
56:56:5d:ce:b2:c4:ab:eb:87:90:3f:3f:ee:2f:76:3a:54:de:
9e:d4:d0:85:00:4b:28:10:80:d8:36:f4:7e:d7:36:52:19:6e:
2f:35:93:6d:53:7d:ca:f3:d6:55:f7:7d:2c:ad:0f:79:ed:0b:
17:70:54:7b:be:c7:bf:48:d1:ff:9e:70:85:c8:98:a8:17:19:
7e:ea:9d:c0:ae:ea:08:0d:3c:a0:b3:d7:d4:3e:49:0d:f3:ca:
08:f7:bd:eb:9b:5a:3f:6b:5b:f4:bc:04:49:b2:00:fb:b4:04:
5e:d6:ab:92:07:4a:b5:f3:ef:c1:0e:d3:87:ef:db:59:d7:86:
65:c3:e7:28:74:22:79:91:bc:c4:6b:dc:f0:56:94:30:ec:b6:
7e:e9:96:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:52 2024 by rpki-client on console-fra.rpki-client.org