Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/SfYdeMa3BxkXDHW3HPDzWaY8rr8.roa
File: SfYdeMa3BxkXDHW3HPDzWaY8rr8.roa (raw, json)
Hash identifier: GyTRjyOtQ+YACwn0OqeJQTsnR2d2R/QWPzor0EPehro=
Subject key identifier: 49:F6:1D:78:C6:B7:07:19:17:0C:75:B7:1C:F0:F3:59:A6:3C:AE:BF
Certificate issuer: /CN=6e74ab70b64491aafa269072b7b0ccfc05530926
Certificate serial: 020D4BCA
Authority key identifier: 6E:74:AB:70:B6:44:91:AA:FA:26:90:72:B7:B0:CC:FC:05:53:09:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bnSrcLZEkar6JpByt7DM_AVTCSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/SfYdeMa3BxkXDHW3HPDzWaY8rr8.roa
Signing time: Sat 01 Jan 2022 14:01:38 +0000
ROA not before: Sat 01 Jan 2022 14:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 394814
IP address blocks: 91.199.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34425802 (0x20d4bca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e74ab70b64491aafa269072b7b0ccfc05530926
Validity
Not Before: Jan 1 14:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49f61d78c6b70719170c75b71cf0f359a63caebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:23:f6:3a:b3:db:b3:b1:56:01:15:27:d4:8a:
93:7e:58:13:be:3b:62:db:c0:5d:3d:a1:19:a4:42:
e1:56:f1:55:11:c5:e8:4b:dd:03:ba:bb:92:3a:10:
6e:19:5f:ae:81:b3:41:d4:53:0b:5e:c5:37:45:9a:
25:4e:3a:e1:de:f6:c3:74:01:57:21:8a:44:36:fd:
0c:56:0d:ab:59:27:67:59:44:cd:97:78:ac:be:66:
99:47:e3:1c:7f:70:0a:c8:9f:f4:12:89:08:0c:53:
ef:f6:13:de:e0:51:d4:3e:db:01:81:39:be:3d:5f:
31:83:2d:57:70:fc:af:9d:7e:ac:b3:d0:c8:49:eb:
6d:56:29:c2:cf:97:3b:2b:21:e7:b8:65:1e:c2:1a:
b1:14:97:4f:f4:22:76:ac:bc:b5:88:3e:fe:04:ef:
a2:7d:15:63:1b:6f:4a:dc:a6:80:ef:34:c5:cd:c5:
69:df:97:32:a8:21:17:96:af:b2:1f:3d:34:0d:7f:
57:88:6f:da:64:88:a1:e9:cd:0f:43:04:7d:3e:ba:
f3:58:df:23:9b:89:ae:07:a2:e1:05:b4:7f:a0:68:
13:45:49:d4:7c:3d:c6:e8:26:61:da:e4:94:57:0a:
b1:82:f3:b4:0e:c1:7b:d8:20:17:2e:b3:49:47:19:
0c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F6:1D:78:C6:B7:07:19:17:0C:75:B7:1C:F0:F3:59:A6:3C:AE:BF
X509v3 Authority Key Identifier:
keyid:6E:74:AB:70:B6:44:91:AA:FA:26:90:72:B7:B0:CC:FC:05:53:09:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bnSrcLZEkar6JpByt7DM_AVTCSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/SfYdeMa3BxkXDHW3HPDzWaY8rr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/bnSrcLZEkar6JpByt7DM_AVTCSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.106.0/24
Signature Algorithm: sha256WithRSAEncryption
99:fe:1e:70:85:8d:6b:42:8f:7c:1f:cd:88:9e:19:41:33:d1:
9b:07:e1:31:bc:a8:d9:29:39:b8:ac:d1:7e:97:d2:64:2e:f9:
bc:95:cc:1a:10:f4:1a:de:44:59:42:2e:17:40:49:b2:7f:b2:
71:e1:df:77:a4:b0:d2:1c:a2:ae:ee:bf:eb:61:27:ea:a0:d5:
54:ae:79:b9:9d:fb:e4:af:80:2c:24:9c:ee:92:24:0f:fd:30:
6c:74:de:bf:23:d4:b6:d7:c4:7e:5f:3a:fa:52:af:b2:45:46:
52:1c:4e:a7:d5:fc:0d:b8:d6:a0:e4:3e:5f:0a:85:cd:96:eb:
0a:ef:6e:1b:57:e6:9d:71:56:a8:78:20:ab:c1:ca:4b:3a:c6:
bb:ff:62:d7:69:2e:c8:a9:77:b3:93:89:0f:2d:3c:60:27:10:
76:8b:10:41:05:df:12:49:91:fd:df:57:4a:12:88:52:eb:c0:
b6:eb:04:ee:ac:ec:04:57:5f:c0:e5:f8:47:14:f5:c0:3b:94:
96:78:a7:10:fd:2e:94:a2:dc:c9:fe:60:65:57:96:3c:8f:87:
cf:91:db:46:93:02:5e:36:6e:14:57:1f:a0:a3:52:89:f5:f4:
92:a3:18:03:a9:52:6e:3e:5d:09:50:12:c1:4a:8b:e6:a9:26:
06:db:b7:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:02 2024 by rpki-client on console-fra.rpki-client.org