Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9ce818-ee21-4a2b-bcab-5a6ac8caaacc/1/0dysQa8ycKFGpa4mFNWVX5Z76jA.roa
File: 0dysQa8ycKFGpa4mFNWVX5Z76jA.roa (raw, json)
Hash identifier: QvViyYotMT9FONlsnAsjiUU98mX0RlYxpHt5NHDobAc=
Subject key identifier: D1:DC:AC:41:AF:32:70:A1:46:A5:AE:26:14:D5:95:5F:96:7B:EA:30
Certificate issuer: /CN=bbfaf1743ce022a788a885ce4af0a9838d89e536
Certificate serial: 03D8E2C1
Authority key identifier: BB:FA:F1:74:3C:E0:22:A7:88:A8:85:CE:4A:F0:A9:83:8D:89:E5:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_rxdDzgIqeIqIXOSvCpg42J5TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9ce818-ee21-4a2b-bcab-5a6ac8caaacc/1/0dysQa8ycKFGpa4mFNWVX5Z76jA.roa
Signing time: Sat 01 Jan 2022 09:58:35 +0000
ROA not before: Sat 01 Jan 2022 09:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196741
IP address blocks: 91.247.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64545473 (0x3d8e2c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbfaf1743ce022a788a885ce4af0a9838d89e536
Validity
Not Before: Jan 1 09:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1dcac41af3270a146a5ae2614d5955f967bea30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:2d:72:d6:0e:fd:6b:83:47:25:15:9a:44:
02:a4:71:09:23:5a:74:66:8f:45:88:bf:22:8e:19:
9a:70:26:7b:37:22:78:24:f7:97:09:73:a8:0c:8d:
0b:82:5f:ac:c5:a6:d1:cf:99:aa:4f:ba:11:24:f4:
e3:3e:ae:45:a0:28:16:d8:fa:1a:62:af:23:ae:4f:
32:60:9f:8b:48:30:c7:37:ed:de:b8:2e:fd:5e:3a:
36:4f:b8:ae:10:d3:63:f4:cd:ce:0d:8c:35:4c:c3:
44:4b:69:e2:38:92:fe:7a:3d:44:81:07:a4:5b:67:
75:c7:cb:ef:9d:bb:8e:24:0a:19:fc:5d:06:28:4d:
7f:05:ee:d2:35:90:df:95:79:f7:93:ab:0f:f7:47:
d9:04:64:32:b6:6a:96:fb:c5:e9:5a:a6:78:3c:4e:
4e:e3:a0:19:a1:1d:57:f8:9d:02:83:ef:e2:ed:44:
a5:bc:5b:4e:ce:33:a3:a1:61:0d:86:35:70:c8:8a:
cf:18:fd:c4:3d:43:d5:96:da:8f:22:84:5f:02:44:
7a:c6:2c:5f:59:84:26:c9:69:a6:9a:3f:32:4b:67:
a5:c4:c8:7a:eb:7d:a0:1a:85:a8:c5:70:f2:15:04:
47:3f:50:62:4d:ed:d9:f9:02:42:78:e0:18:a0:45:
ab:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DC:AC:41:AF:32:70:A1:46:A5:AE:26:14:D5:95:5F:96:7B:EA:30
X509v3 Authority Key Identifier:
keyid:BB:FA:F1:74:3C:E0:22:A7:88:A8:85:CE:4A:F0:A9:83:8D:89:E5:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_rxdDzgIqeIqIXOSvCpg42J5TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9ce818-ee21-4a2b-bcab-5a6ac8caaacc/1/0dysQa8ycKFGpa4mFNWVX5Z76jA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9ce818-ee21-4a2b-bcab-5a6ac8caaacc/1/u_rxdDzgIqeIqIXOSvCpg42J5TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.221.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ee:c8:6f:15:3e:82:e7:a1:b4:e2:30:26:11:8a:13:89:b2:
80:ed:b3:e8:ac:dc:d9:33:04:fe:37:ec:87:f2:4b:da:66:d9:
80:5a:25:b9:73:49:20:6e:1f:66:bd:49:6b:20:c6:9d:c3:76:
6a:e9:5e:e9:73:fe:a2:c6:4b:fe:4e:7e:b2:90:2a:ff:24:4a:
38:8d:fb:99:27:eb:23:2b:62:fd:df:1b:71:40:e1:7f:59:0f:
51:d9:5c:10:81:88:cc:dc:71:d9:19:e6:d4:44:ca:f9:fe:2a:
e4:44:1a:93:7c:1d:78:e6:ae:2c:8e:53:0c:40:19:0c:b9:7c:
c9:06:91:11:f6:a8:e5:83:29:6c:e8:76:db:45:aa:08:9c:59:
c3:15:a3:8e:96:3f:25:ac:5e:37:d2:d5:e9:c4:6e:78:57:c2:
a9:26:61:ea:dd:92:43:42:d4:05:3e:da:93:d7:d4:b0:c4:75:
98:c1:d4:e2:b3:55:ed:80:26:bb:1d:c2:60:6e:a7:61:3f:3c:
af:0d:3d:70:72:9b:d9:f9:29:e4:30:e5:58:c9:b3:21:48:9a:
01:47:3d:60:f2:55:ab:58:80:3d:e2:e3:8b:8a:e0:17:c9:33:
16:51:50:2d:08:e9:18:46:7a:28:df:64:8e:f2:d4:d4:bd:0d:
d7:30:62:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:00 2024 by rpki-client on console-fra.rpki-client.org