Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/4XqQElssw2dceep2dPp_zgfQ60c.roa
File: 4XqQElssw2dceep2dPp_zgfQ60c.roa (raw, json)
Hash identifier: qGCbVc6mcPu7Hf9K6EiENbLSKhDTOkbboXyRi8Q+cbk=
Subject key identifier: E1:7A:90:12:5B:2C:C3:67:5C:79:EA:76:74:FA:7F:CE:07:D0:EB:47
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 01821763A7ED9EDCA7A66A37C64811E95DE4
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/4XqQElssw2dceep2dPp_zgfQ60c.roa
Signing time: Tue 19 Jul 2022 16:56:23 +0000
ROA not before: Tue 19 Jul 2022 16:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58110
IP address blocks: 91.149.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:17:63:a7:ed:9e:dc:a7:a6:6a:37:c6:48:11:e9:5d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jul 19 16:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e17a90125b2cc3675c79ea7674fa7fce07d0eb47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f2:ad:36:bb:b5:a8:28:71:bd:25:08:48:9c:
2c:03:95:99:39:0b:0d:e3:dc:7c:ea:fb:99:28:01:
39:69:3e:e2:1e:ea:fb:24:45:05:e7:9b:6f:dd:47:
86:bc:29:76:3e:1b:f8:7d:04:9c:8c:3f:0a:58:6d:
e0:69:f0:9d:e4:ec:e3:9b:31:56:ba:7b:4c:68:83:
ed:84:ff:42:2b:49:61:20:84:dd:c7:75:93:02:20:
d8:c4:4f:29:73:b0:5c:5a:bb:a7:4d:16:ac:8f:42:
ca:66:66:78:79:2e:06:90:8e:d9:f7:e7:4f:92:00:
ec:dc:5d:8e:e1:34:0c:52:db:51:9e:92:34:99:12:
9e:f3:f5:2b:b0:4f:00:40:b1:fb:f9:dd:ad:34:30:
37:8c:c9:08:c4:e5:f7:2d:de:6a:18:ca:38:cf:55:
1e:de:03:35:8f:95:10:79:e6:2a:22:93:90:b7:1b:
ef:b6:2b:a3:d8:89:0a:2d:74:a8:7a:2f:86:4f:fe:
8b:12:d3:22:72:94:3b:54:6b:17:36:24:8d:dd:36:
e6:cd:fd:75:f7:2e:fa:68:7b:7a:d9:9c:ad:65:fb:
3d:e4:d3:28:d0:f6:cb:ae:1a:03:74:ac:41:89:28:
d2:67:4a:00:8f:3f:d9:b8:cd:fa:95:a0:ab:3a:2d:
fb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:7A:90:12:5B:2C:C3:67:5C:79:EA:76:74:FA:7F:CE:07:D0:EB:47
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/4XqQElssw2dceep2dPp_zgfQ60c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.192.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:d4:1c:a2:03:8f:86:8c:83:d0:54:c6:39:86:e5:dc:e9:87:
bc:b7:17:aa:e8:68:8d:1d:76:3e:d4:d6:5b:1c:4d:19:c0:b8:
fa:03:0a:9d:24:22:43:16:02:9b:85:c2:ce:38:10:a9:bf:61:
b6:0a:9b:42:0f:4b:1a:5d:a8:13:62:df:50:07:9e:f3:c2:f4:
ca:3e:63:ef:56:b8:1f:34:3c:21:e0:e3:70:3b:49:af:b4:58:
b8:da:90:9c:6a:49:f8:41:6a:84:b5:82:ca:24:eb:12:07:15:
45:cd:0f:18:a4:b2:c7:ae:eb:60:ea:31:3a:28:b8:06:d0:6c:
6d:f7:c8:6b:fa:91:81:63:41:b2:77:52:eb:0b:40:9e:2a:c6:
af:b3:7c:3d:42:42:2a:3b:dd:d1:1a:f5:6f:b7:46:38:6c:5a:
3f:ea:f4:72:49:8e:6a:51:29:f1:63:f5:a6:2b:1a:f4:67:3a:
9a:46:2a:01:af:40:f8:a7:04:b7:0e:ee:08:22:ff:cf:53:0a:
f7:51:18:fd:78:bb:1a:e0:29:35:f4:51:49:e7:4f:3b:37:f0:
41:2e:9b:14:84:3b:a2:33:70:a5:f3:2e:7a:80:03:cf:d1:af:
d5:dd:1b:74:b6:7a:4d:10:f5:c1:bd:b1:1a:d0:67:e5:3f:a5:
45:dd:ee:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org