Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/hSTH6B9xWUwV1ohyQEMzMerBBD4.roa
File: hSTH6B9xWUwV1ohyQEMzMerBBD4.roa (raw, json)
Hash identifier: +fYE9uytE9xMDABd4+pMH6vvBpO/vun0WDYBXTsjmRc=
Subject key identifier: 85:24:C7:E8:1F:71:59:4C:15:D6:88:72:40:43:33:31:EA:C1:04:3E
Certificate issuer: /CN=318afc52c816ec5d736e7e52c3386528e6cbbeea
Certificate serial: 31FD9A
Authority key identifier: 31:8A:FC:52:C8:16:EC:5D:73:6E:7E:52:C3:38:65:28:E6:CB:BE:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYr8UsgW7F1zbn5SwzhlKObLvuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/hSTH6B9xWUwV1ohyQEMzMerBBD4.roa
Signing time: Sat 01 Jan 2022 00:55:35 +0000
ROA not before: Sat 01 Jan 2022 00:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210579
IP address blocks: 91.227.138.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3276186 (0x31fd9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=318afc52c816ec5d736e7e52c3386528e6cbbeea
Validity
Not Before: Jan 1 00:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8524c7e81f71594c15d6887240433331eac1043e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d6:79:ad:c1:a3:be:55:3b:2d:4e:2f:4f:7f:
b7:7c:05:7f:7d:15:25:ce:52:6b:e0:c1:3b:a2:31:
44:50:88:19:e2:76:b3:12:2d:a7:7f:e9:41:d3:ef:
bd:ad:37:61:ff:11:85:f0:a1:74:7c:c6:41:68:71:
db:1a:ac:69:b9:22:b4:5d:48:3d:87:ba:6f:cf:68:
ec:17:09:64:45:c6:be:fc:f4:f5:70:16:f1:0e:78:
68:5d:b2:28:b3:c2:93:89:d2:cf:eb:46:df:97:af:
9f:4b:d5:27:6a:cc:fb:2b:8f:84:45:e5:10:a9:5c:
b9:ac:d6:b3:b8:31:0b:96:33:45:8a:b9:4e:89:60:
ba:f5:52:49:8f:a4:6b:33:c8:d6:1b:b5:51:34:c5:
5d:42:04:36:82:89:4c:67:1f:93:0c:92:de:34:4d:
25:09:ae:09:85:58:51:bd:ed:2f:67:ef:ad:89:39:
90:9a:08:4b:61:d6:4b:d7:89:be:eb:ef:2b:a0:88:
aa:90:b7:56:8d:7e:6c:c8:9b:81:89:76:cb:c0:f4:
5f:48:05:1d:ac:7e:7a:d6:7c:66:be:1c:66:98:ce:
73:96:ff:6f:62:6f:50:12:30:fb:81:fa:e1:a5:ab:
ba:8e:06:19:94:6c:29:c1:8e:cc:ca:65:16:47:7c:
e7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:24:C7:E8:1F:71:59:4C:15:D6:88:72:40:43:33:31:EA:C1:04:3E
X509v3 Authority Key Identifier:
keyid:31:8A:FC:52:C8:16:EC:5D:73:6E:7E:52:C3:38:65:28:E6:CB:BE:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYr8UsgW7F1zbn5SwzhlKObLvuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/hSTH6B9xWUwV1ohyQEMzMerBBD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/f109a8-f466-4def-abdd-1fe55061d28f/1/MYr8UsgW7F1zbn5SwzhlKObLvuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.138.0/23
Signature Algorithm: sha256WithRSAEncryption
70:31:98:a4:27:30:39:42:bf:c2:34:67:ae:de:7d:a7:3e:83:
f9:03:b6:18:11:d3:d1:e4:7d:cb:31:9a:7c:cb:3c:3c:09:18:
fb:a3:66:69:69:f3:6c:e2:ae:06:69:f6:45:d6:f4:8f:67:e6:
5c:d4:3d:28:4d:3f:a1:c0:cf:e5:69:49:df:57:17:8c:76:53:
0a:ff:e4:05:98:50:d6:ac:14:25:ed:91:44:74:79:b5:eb:21:
1d:6e:93:25:15:96:0f:9a:68:2e:17:43:f1:ba:5d:4b:66:65:
e0:d1:50:7a:e3:c0:41:1d:c6:fc:35:a3:7f:cc:34:32:c7:ca:
bf:2a:0c:3b:34:5c:bc:62:f4:13:98:18:19:69:1b:25:cb:2c:
21:41:59:2e:3f:db:d3:57:d8:9c:64:d4:a9:78:cb:e9:5a:a0:
e3:ef:8d:08:1e:85:90:72:18:c2:17:5c:bc:c2:ac:44:04:d2:
eb:59:a3:19:91:5f:35:82:11:80:6d:63:b4:10:38:17:75:f1:
81:c5:4a:d7:79:61:52:4d:47:40:bc:22:af:e1:2b:e6:4d:61:
90:98:54:cb:52:55:77:16:3a:ab:aa:cb:5d:23:f5:c8:4c:47:
df:29:67:7a:06:26:ae:cb:ba:7b:51:ef:14:9a:6a:3d:3e:37:
8e:0f:36:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:27 2024 by rpki-client on console-fra.rpki-client.org