Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/kg91E8EYRHc6r-M5haABCZ8aGFs.roa
File: kg91E8EYRHc6r-M5haABCZ8aGFs.roa (raw, json)
Hash identifier: D5By0gzub8W97Q/c06/7zW0QMsC4vDGGgzQJeyWzR5A=
Subject key identifier: 92:0F:75:13:C1:18:44:77:3A:AF:E3:39:85:A0:01:09:9F:1A:18:5B
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 4315137D
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/kg91E8EYRHc6r-M5haABCZ8aGFs.roa
Signing time: Tue 24 May 2022 08:37:13 +0000
ROA not before: Tue 24 May 2022 08:37:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61115
IP address blocks: 86.107.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1125454717 (0x4315137d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 24 08:37:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=920f7513c11844773aafe33985a001099f1a185b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c9:e6:f7:21:2b:17:bb:ae:54:8e:b7:7a:6f:
c6:83:54:89:3d:ad:1f:1f:60:c9:b2:1c:cb:6d:65:
1b:04:6b:71:a1:86:47:8c:dc:b2:eb:7b:bf:29:fc:
c7:d8:a8:95:17:bc:7f:d9:4a:ad:1c:d8:f3:35:b5:
c8:d4:ac:84:dd:7d:28:84:f6:1b:52:ab:84:fb:18:
46:7f:f6:72:7a:f0:50:fb:e1:47:82:13:fd:33:c3:
d4:a1:1e:1d:bd:80:81:b3:25:83:f0:17:70:a0:de:
bd:46:07:14:22:5c:a5:26:21:26:35:19:91:a3:8d:
ea:e5:0b:e4:40:af:16:4a:4c:4c:1f:7f:b8:2c:32:
17:ff:49:d0:46:98:d8:d4:ca:48:d0:4d:1f:bb:81:
eb:8f:f7:ff:a7:58:ab:48:c1:e1:b0:81:b8:db:ad:
59:c2:29:b3:c0:c6:ec:bb:7c:4c:75:1b:e0:e9:70:
2a:28:96:46:34:4b:5d:fe:a5:6f:c2:25:2d:a8:7e:
40:05:6e:6e:6e:dc:fe:43:3e:e0:1d:96:a7:37:65:
b2:1b:4e:1a:80:e1:9b:a9:20:4c:f3:6a:93:ba:5e:
c2:f7:ac:e9:e5:05:8c:2b:aa:b8:a7:7f:23:9c:1f:
20:4d:65:4d:cc:3c:e7:a7:3c:68:76:8c:28:eb:dd:
c4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0F:75:13:C1:18:44:77:3A:AF:E3:39:85:A0:01:09:9F:1A:18:5B
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/kg91E8EYRHc6r-M5haABCZ8aGFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.106.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:e3:63:39:9e:b5:4e:ed:05:0d:0d:99:5b:9d:5f:34:74:c9:
02:8d:39:ad:5d:22:7e:03:75:11:27:35:8f:5a:a7:1f:0f:79:
ff:f7:f0:fe:10:b7:ec:a3:aa:ef:db:b8:4d:e0:ce:6e:38:8c:
c2:0e:15:1b:5a:04:01:a9:f4:64:75:97:0a:97:b8:7d:dc:3d:
9f:cd:7c:48:44:ec:86:ed:f2:48:a3:a6:58:57:81:6f:02:40:
e0:19:a8:8f:1a:5e:79:48:1b:61:a9:4e:4a:75:a8:29:37:b8:
6f:82:51:7e:06:2d:b4:c5:59:9a:a1:e0:0c:ab:05:e8:18:ec:
de:5c:82:ee:e3:08:d7:ac:66:be:8c:b8:6f:96:b7:0a:02:04:
9d:5b:49:0a:ad:19:7d:86:49:22:93:e8:a1:d2:9e:21:1d:a9:
9d:ba:17:7f:82:f7:32:10:ef:70:39:c3:38:87:93:d8:ff:9b:
96:20:13:53:87:2f:99:96:0c:5f:46:0e:e3:94:ce:85:e6:35:
5c:b4:7d:a9:bb:ca:55:6c:83:d0:99:d2:22:c5:39:77:72:5f:
9a:f6:78:f1:0c:40:4b:dd:c0:79:01:fa:f3:96:ec:10:cd:e4:
ca:be:c7:10:ac:75:11:3f:13:f4:7a:e5:2e:a1:06:38:92:70:
4b:80:8d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:17 2025 by rpki-client