Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/2K8Lg20lRjV6n5WbjBHNbDx9Uj4.roa
File: 2K8Lg20lRjV6n5WbjBHNbDx9Uj4.roa (raw, json)
Hash identifier: eG0TZM53XJWWw1+4No6b4Z/mWJ4dbpclvz1i0c0Kipw=
Subject key identifier: D8:AF:0B:83:6D:25:46:35:7A:9F:95:9B:8C:11:CD:6C:3C:7D:52:3E
Certificate issuer: /CN=8a149f76d3944151f0ade4de7831d3d42cb6e8df
Certificate serial: 0185715E7620F3BC9613EAC90F88437C6BCC
Authority key identifier: 8A:14:9F:76:D3:94:41:51:F0:AD:E4:DE:78:31:D3:D4:2C:B6:E8:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihSfdtOUQVHwreTeeDHT1Cy26N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/2K8Lg20lRjV6n5WbjBHNbDx9Uj4.roa
Signing time: Mon 02 Jan 2023 07:24:54 +0000
ROA not before: Mon 02 Jan 2023 07:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57523
IP address blocks: 91.213.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:76:20:f3:bc:96:13:ea:c9:0f:88:43:7c:6b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a149f76d3944151f0ade4de7831d3d42cb6e8df
Validity
Not Before: Jan 2 07:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8af0b836d2546357a9f959b8c11cd6c3c7d523e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:97:e7:a8:ca:18:92:b1:0c:67:17:31:b6:db:
cd:53:92:9e:ca:fe:20:f1:34:53:57:b2:95:45:41:
db:d0:0e:88:ad:a3:44:1d:08:15:67:d0:c0:06:78:
a6:15:f3:f4:a1:e7:2e:73:21:d1:f5:59:1f:65:3a:
8b:20:ba:66:a6:e9:94:30:cb:3a:47:4b:7f:d0:8d:
6a:37:2e:cf:a7:5f:09:49:86:34:d3:c1:1d:16:a9:
92:ef:7e:e2:33:1c:3c:67:19:36:e2:64:8c:2e:c3:
74:82:23:d6:99:7e:36:4c:6e:fd:c6:67:f0:61:a3:
a5:62:b6:50:50:43:b8:b0:a6:54:d0:2a:90:1f:1f:
f8:6a:89:22:61:18:37:2a:52:97:42:87:f9:fc:9e:
13:40:ba:7d:78:f1:69:ef:c1:80:64:d8:45:5d:71:
ef:ad:39:3a:47:85:1d:12:1d:05:ad:83:62:59:8e:
33:d3:22:b8:e2:b8:94:59:7e:bb:06:ad:b5:20:3a:
b1:b0:87:7e:29:8d:57:cc:38:c4:3a:f7:91:57:ea:
10:5c:c8:e3:09:8e:38:f8:11:a5:e2:ff:dc:ad:83:
cd:bc:a5:83:0f:5b:00:8b:64:83:2b:8a:09:32:30:
ed:dc:19:8a:4e:5b:0b:8c:a8:51:a9:d0:21:d8:df:
a0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AF:0B:83:6D:25:46:35:7A:9F:95:9B:8C:11:CD:6C:3C:7D:52:3E
X509v3 Authority Key Identifier:
keyid:8A:14:9F:76:D3:94:41:51:F0:AD:E4:DE:78:31:D3:D4:2C:B6:E8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihSfdtOUQVHwreTeeDHT1Cy26N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/2K8Lg20lRjV6n5WbjBHNbDx9Uj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/ihSfdtOUQVHwreTeeDHT1Cy26N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.138.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:d4:61:75:ae:56:f2:a4:3f:f3:ff:10:c6:b3:39:78:54:43:
42:be:f8:32:00:e4:1d:80:6d:ac:d2:01:0f:e7:2a:47:58:e2:
96:f5:4c:f1:88:d4:66:04:a6:13:72:01:58:31:55:5c:56:55:
07:b8:2d:39:1a:2c:05:01:30:73:0f:94:e7:cc:c5:56:fc:2d:
27:7c:ff:6d:79:5a:b0:3f:f1:29:a9:b8:0f:d2:19:4f:a9:e2:
7b:9e:52:e8:7a:24:39:2e:44:00:a1:65:84:6f:83:6b:d5:40:
4f:c2:73:a3:85:fd:b0:03:4c:65:eb:95:bb:bb:77:be:de:9b:
9b:ea:24:81:2b:e2:33:48:e4:7d:27:66:9a:99:cc:0a:6e:b4:
62:49:fc:70:bb:98:a3:b5:28:8a:74:c1:07:bd:86:38:ba:4c:
0b:d6:27:8c:e8:69:0d:7a:45:70:92:c6:87:87:21:f5:79:94:
d6:ca:d3:92:5a:9b:4e:83:01:c5:08:4f:2a:a2:37:5b:b1:d0:
ee:c4:6d:d0:a4:3c:40:5d:41:9f:dc:22:41:6e:96:11:42:04:
71:50:20:2f:d8:40:30:83:9d:a4:0b:11:e0:32:be:3d:dd:5c:
4d:f8:0f:4a:2b:eb:16:70:f0:40:0b:98:a5:2e:01:b4:10:b9:
48:e5:f6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:07 2024 by rpki-client on console-ams.rpki-client.org