Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/MvJe4gDSAuVC8aZvBReRQx9PR6s.roa
File: MvJe4gDSAuVC8aZvBReRQx9PR6s.roa (raw, json)
Hash identifier: iBxTnDsIaKYmEbpUKU4PyZRVHuJpE7Q62IYVwNU2mFs=
Subject key identifier: 32:F2:5E:E2:00:D2:02:E5:42:F1:A6:6F:05:17:91:43:1F:4F:47:AB
Certificate issuer: /CN=1637a493bc2025bf080c0b5e242e61e417670e86
Certificate serial: 018CC4245C09AFA90A652945C7F1ABBC08DD
Authority key identifier: 16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/MvJe4gDSAuVC8aZvBReRQx9PR6s.roa
Signing time: Mon 01 Jan 2024 08:29:26 +0000
ROA not before: Mon 01 Jan 2024 08:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 91.213.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:5c:09:af:a9:0a:65:29:45:c7:f1:ab:bc:08:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1637a493bc2025bf080c0b5e242e61e417670e86
Validity
Not Before: Jan 1 08:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32f25ee200d202e542f1a66f051791431f4f47ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fd:9e:c5:f9:a4:96:4b:93:d8:cb:52:76:24:
1d:b3:35:2b:5d:62:9d:af:92:13:16:5b:57:e2:d8:
03:dc:1c:cf:df:93:9e:d9:98:1c:44:24:6f:11:cd:
68:c6:3e:b0:af:93:ce:bb:d1:ee:f1:50:c9:9b:3d:
6b:a5:38:a7:51:fc:c8:e5:d6:49:2a:55:c3:55:37:
91:f3:c6:6e:04:cb:ef:22:b1:c5:34:41:4a:4a:08:
c4:e0:ae:18:50:e2:14:c0:6d:e0:32:5f:cd:d5:2e:
01:3c:70:b2:24:b3:45:f1:33:5d:0f:d5:8f:a8:5b:
b8:51:a1:9d:d3:37:ab:ba:63:42:34:82:b5:f3:4d:
c4:6c:aa:2b:d5:96:f4:2b:ac:7a:c4:03:4a:b5:80:
d9:c9:9f:5d:68:bb:ac:45:d8:8d:d3:a4:93:8e:21:
f8:71:75:a1:e1:17:84:a2:34:be:ae:64:51:7e:00:
01:83:7d:48:2e:bf:71:a4:68:8f:9c:34:00:79:7b:
27:f6:bf:a4:d1:dc:88:14:9d:aa:82:f8:29:c0:87:
45:43:c4:71:f0:f7:59:56:7d:fc:2f:c3:7a:33:d2:
e1:f0:69:21:d2:d0:db:b9:fe:c3:7a:2e:b3:04:64:
2e:54:02:d1:71:12:a5:4c:e6:0a:1e:d6:54:23:be:
95:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F2:5E:E2:00:D2:02:E5:42:F1:A6:6F:05:17:91:43:1F:4F:47:AB
X509v3 Authority Key Identifier:
keyid:16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/MvJe4gDSAuVC8aZvBReRQx9PR6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/Fjekk7wgJb8IDAteJC5h5BdnDoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.117.0/24
Signature Algorithm: sha256WithRSAEncryption
78:30:3b:7e:d0:9f:b1:50:3a:88:af:fd:e1:2f:cd:47:6e:d5:
9f:de:8e:28:ed:41:33:57:d7:fe:d9:d6:2a:59:b9:bb:a5:38:
83:15:22:52:b9:85:2f:9f:f6:a8:db:f3:bc:17:d1:f3:1c:c4:
5e:5d:50:89:88:41:12:0f:f9:99:a8:16:77:78:1a:65:ad:19:
1d:42:d3:d9:ea:91:66:ed:5b:3f:63:ef:e7:9a:86:75:68:75:
49:ad:1d:94:a0:b5:c7:03:b4:6c:1d:9f:46:03:15:75:70:bf:
f7:49:d5:18:48:fe:c9:01:58:8e:58:53:8b:79:78:d3:5a:46:
50:d9:24:83:40:8c:73:cf:e6:bf:3a:13:47:7d:fb:f8:6e:a8:
de:33:b5:1e:3c:8b:db:5c:49:90:4d:8b:90:6b:91:b5:76:60:
d5:53:7f:71:ba:f8:5e:e9:11:15:b4:fd:9d:03:4e:85:d2:4d:
b4:c6:d9:30:c6:b1:bc:e0:fe:5c:c8:77:d9:f7:d8:22:25:67:
67:63:22:5e:83:ec:d2:95:23:17:5f:47:90:8a:95:2a:50:6f:
05:da:43:66:48:11:c6:0b:c5:9b:cd:4a:c6:e2:7e:3c:bd:5a:
88:48:b8:67:cf:8b:03:d0:0f:d4:74:26:c8:85:27:63:4d:78:
9f:45:ef:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 18:09:35 2024 by rpki-client on console-ams.rpki-client.org