Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/6ce644-0256-45a7-af1c-c60e9a4a5d34/1/qTmnkVWYobAL1cGOxIbKuCr9utk.roa
File: qTmnkVWYobAL1cGOxIbKuCr9utk.roa (raw, json)
Hash identifier: /eZpM7mUiByClTCSe0JhB+hmW9IaeDENUwLkXa7HiIo=
Subject key identifier: A9:39:A7:91:55:98:A1:B0:0B:D5:C1:8E:C4:86:CA:B8:2A:FD:BA:D9
Certificate issuer: /CN=bc696339adb8e888be95040e1c83da7f95bbb385
Certificate serial: 018CC7934C47D00A9CA8007CDCE833223237
Authority key identifier: BC:69:63:39:AD:B8:E8:88:BE:95:04:0E:1C:83:DA:7F:95:BB:B3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGljOa246Ii-lQQOHIPaf5W7s4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/6ce644-0256-45a7-af1c-c60e9a4a5d34/1/qTmnkVWYobAL1cGOxIbKuCr9utk.roa
Signing time: Tue 02 Jan 2024 00:29:28 +0000
ROA not before: Tue 02 Jan 2024 00:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50673
IP address blocks: 91.205.192.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:4c:47:d0:0a:9c:a8:00:7c:dc:e8:33:22:32:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc696339adb8e888be95040e1c83da7f95bbb385
Validity
Not Before: Jan 2 00:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a939a7915598a1b00bd5c18ec486cab82afdbad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2e:56:f6:22:f4:bb:5a:21:a8:84:96:ba:68:
63:1d:13:df:fa:b1:3e:62:99:87:ab:90:d9:d7:69:
a9:b1:a2:aa:52:52:87:ff:34:60:4b:c2:88:7e:71:
f1:45:f0:7e:cc:5a:7d:b9:4b:15:d9:f5:19:6d:97:
dc:f9:e4:26:27:6e:b4:68:af:c5:63:c4:0c:3a:cc:
ab:79:43:08:1c:2f:6e:d6:2e:3d:82:b3:76:c0:65:
de:20:da:1d:fc:ba:33:4c:c8:54:1c:53:8b:ac:e6:
3f:84:75:c8:e1:e4:ce:9b:80:7b:15:7a:bf:77:22:
3d:9d:fb:38:15:8d:06:51:d8:f5:1a:28:ae:4b:85:
e0:8f:da:a7:bd:80:e6:22:f2:3e:46:1f:ec:62:e5:
56:8c:72:11:32:d6:5b:c7:1b:9f:6e:a7:00:1c:a7:
01:03:ee:15:00:20:cd:1c:17:7b:db:ff:d0:e1:b8:
d4:53:dc:e0:78:76:ba:28:ee:d1:4e:14:f0:1b:7f:
f4:a0:c1:29:6a:58:2a:4d:35:5a:b8:50:a9:0a:e2:
69:e1:94:63:2c:65:70:7c:6f:e0:35:21:1a:0e:c0:
58:48:45:3b:d2:83:97:a5:c6:25:4a:5e:23:e4:cf:
42:1e:0f:1f:bd:49:97:d4:5c:70:a2:d2:3d:d0:88:
8c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:39:A7:91:55:98:A1:B0:0B:D5:C1:8E:C4:86:CA:B8:2A:FD:BA:D9
X509v3 Authority Key Identifier:
keyid:BC:69:63:39:AD:B8:E8:88:BE:95:04:0E:1C:83:DA:7F:95:BB:B3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGljOa246Ii-lQQOHIPaf5W7s4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6ce644-0256-45a7-af1c-c60e9a4a5d34/1/qTmnkVWYobAL1cGOxIbKuCr9utk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6ce644-0256-45a7-af1c-c60e9a4a5d34/1/vGljOa246Ii-lQQOHIPaf5W7s4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.192.0/23
Signature Algorithm: sha256WithRSAEncryption
13:58:b4:5a:58:d9:90:6e:d1:d2:60:30:8a:2e:30:6a:c8:e0:
bd:45:61:83:ea:73:a7:97:29:1d:ab:45:e8:cc:8f:14:3c:07:
7f:b5:4f:05:dc:5f:d0:ed:4e:3a:f8:9c:ca:ea:95:1e:c4:c1:
ab:48:6c:50:33:71:aa:4c:4f:2c:d2:5f:5d:df:a4:91:bc:24:
f9:3c:d4:64:fc:ba:e7:98:9f:3d:b2:37:44:1f:f2:80:11:66:
38:e0:95:7b:29:32:33:0e:69:65:d0:b4:58:41:22:81:49:10:
4a:99:b5:98:95:c8:1d:67:4e:22:47:81:1a:8e:6b:c4:64:a2:
4a:6b:bd:5c:f6:54:75:7e:23:70:e2:16:09:9b:d5:bd:7d:23:
3d:77:21:df:8f:88:d5:d1:82:81:fa:05:c4:29:d9:19:22:30:
b6:0a:13:1b:4b:d7:48:0a:3f:6c:91:08:ff:84:3a:3e:77:3d:
c6:2b:50:97:e0:c4:36:5f:0a:8d:bc:80:5f:88:36:a5:d5:7a:
b1:01:1c:45:2c:af:3e:fb:da:0f:97:1b:98:3a:6b:4c:f2:d4:
f3:c4:2d:8f:b1:dc:d2:f9:8c:80:83:db:33:da:82:14:41:1f:
31:81:ba:e8:9c:a7:32:8c:2c:4b:72:7b:d8:6a:29:97:6b:8e:
68:f7:26:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:24 2024 by rpki-client on console-ams.rpki-client.org