Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/c1f74a-7a78-4acd-8770-96c5988682b7/1/OtgYBow9Pqvl6MYBhYZr3x32VXo.roa
File: OtgYBow9Pqvl6MYBhYZr3x32VXo.roa (raw, json)
Hash identifier: EhKPMCswv5fNIWc9KEn8CPl4qcEtXBp0fwvadoGg42Q=
Subject key identifier: 3A:D8:18:06:8C:3D:3E:AB:E5:E8:C6:01:85:86:6B:DF:1D:F6:55:7A
Certificate issuer: /CN=783c34b7797cc66dff4e4a0a1273479ded6ae961
Certificate serial: 0F5B
Authority key identifier: 78:3C:34:B7:79:7C:C6:6D:FF:4E:4A:0A:12:73:47:9D:ED:6A:E9:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eDw0t3l8xm3_TkoKEnNHne1q6WE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/c1f74a-7a78-4acd-8770-96c5988682b7/1/OtgYBow9Pqvl6MYBhYZr3x32VXo.roa
Signing time: Tue 25 Jan 2022 18:23:19 +0000
ROA not before: Tue 25 Jan 2022 18:23:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 91.132.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3931 (0xf5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=783c34b7797cc66dff4e4a0a1273479ded6ae961
Validity
Not Before: Jan 25 18:23:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ad818068c3d3eabe5e8c60185866bdf1df6557a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9c:c9:93:25:8d:eb:ec:24:4a:f8:72:77:99:
72:aa:aa:bd:69:45:b5:80:69:50:79:95:a4:c1:1b:
76:02:30:5a:31:ed:0c:ab:8e:2d:22:6d:f5:5c:b0:
ad:5a:cc:07:7e:95:12:df:88:c6:33:df:58:b3:b8:
39:65:a5:e4:63:53:d7:53:13:bf:d2:32:ba:19:a3:
22:09:fa:09:4b:44:26:a4:ab:09:d6:57:a7:89:6e:
8e:9b:46:ca:fd:ba:5a:f4:e4:91:97:08:ba:39:ff:
c2:b3:bd:e1:34:eb:9c:2f:55:05:55:c1:b1:7c:73:
b3:61:90:33:30:f7:33:f5:b9:2a:e1:f8:0b:f1:66:
d8:a5:34:5e:1d:33:66:b4:0d:12:2d:5a:b8:d0:4f:
53:d7:6f:ed:84:90:48:8a:8c:6e:5c:70:bb:71:08:
2f:11:33:9f:20:5f:e0:8e:10:d1:b9:51:51:72:6f:
a9:0a:5b:82:6a:51:fc:52:45:45:56:ff:29:60:ef:
11:c8:10:26:f3:b5:98:54:e5:d3:57:68:f5:11:b2:
6b:8f:0d:8b:3c:62:1f:4a:5c:be:b9:d5:28:ba:af:
82:50:4a:8f:a3:f3:ca:04:77:00:1d:07:5f:2d:08:
ce:a5:df:75:43:4e:5e:c4:41:d7:ca:2b:15:06:e1:
5f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D8:18:06:8C:3D:3E:AB:E5:E8:C6:01:85:86:6B:DF:1D:F6:55:7A
X509v3 Authority Key Identifier:
keyid:78:3C:34:B7:79:7C:C6:6D:FF:4E:4A:0A:12:73:47:9D:ED:6A:E9:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eDw0t3l8xm3_TkoKEnNHne1q6WE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c1f74a-7a78-4acd-8770-96c5988682b7/1/OtgYBow9Pqvl6MYBhYZr3x32VXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c1f74a-7a78-4acd-8770-96c5988682b7/1/eDw0t3l8xm3_TkoKEnNHne1q6WE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.226.0/24
Signature Algorithm: sha256WithRSAEncryption
43:92:e9:9e:44:b0:b3:37:20:cf:3a:99:0b:f7:08:8d:1a:37:
f7:95:4f:3a:5f:dd:e5:67:36:83:e2:ab:f0:5e:72:bb:0e:a3:
93:8a:25:10:cf:8b:63:ea:92:7c:a2:49:d7:a3:99:cc:81:45:
f6:ed:cb:68:e5:ec:86:15:60:4f:d2:24:58:2c:09:0f:75:29:
2c:53:fd:12:98:9c:a3:4d:93:ab:e2:cf:93:1c:91:46:d3:ca:
60:8b:87:b9:74:e3:44:d3:87:1a:ea:a5:68:0c:bc:47:c5:d8:
98:3d:68:7b:ec:72:8f:b6:30:7c:d9:44:fa:8a:11:57:97:0d:
42:83:2f:c1:e4:f1:cc:b7:f1:17:73:f6:f4:c9:ab:1c:c4:a3:
c9:94:a2:31:81:e6:bf:99:5c:9a:ec:d0:dc:8e:67:1d:64:19:
29:7f:ab:7b:61:a3:3c:33:68:ed:a0:33:1f:b3:39:6f:03:29:
18:77:4f:b0:47:a9:bf:8d:19:b2:16:9a:fe:0b:5e:af:8a:3b:
3d:32:28:a6:e6:f3:a5:17:9e:b9:0a:d3:fc:c6:c9:87:bf:6a:
7f:2d:22:bf:16:fd:77:4c:0a:5a:5d:81:77:93:79:e2:c8:16:
e5:d7:40:02:39:8f:41:14:45:cd:6a:0a:12:4e:94:bf:65:be:
a2:ee:01:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:08 2024 by rpki-client on console-ams.rpki-client.org