Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/JIgjAPsBAA6VmDTOGhNzWkl07vc.roa
File: JIgjAPsBAA6VmDTOGhNzWkl07vc.roa (raw, json)
Hash identifier: F2b5HGsS3iUObGcmU5Bo6eEpudKcZN+MPdwHUPM1UpQ=
Subject key identifier: 24:88:23:00:FB:01:00:0E:95:98:34:CE:1A:13:73:5A:49:74:EE:F7
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 0993E523
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/JIgjAPsBAA6VmDTOGhNzWkl07vc.roa
Signing time: Sat 04 Jun 2022 13:52:20 +0000
ROA not before: Sat 04 Jun 2022 13:52:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 91.149.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160687395 (0x993e523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jun 4 13:52:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24882300fb01000e959834ce1a13735a4974eef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:aa:e9:cd:8a:30:1e:b4:bb:e4:78:eb:d1:71:
f4:51:31:6b:04:8b:47:85:c4:b5:30:f3:d2:3e:19:
b3:e7:73:ba:d5:de:6c:6b:d5:07:dd:42:04:f4:3f:
9c:30:fb:d7:ec:da:8c:c0:9e:c4:0f:84:21:fd:09:
78:33:95:94:7d:41:15:27:45:bd:b6:81:85:e6:db:
86:d8:98:b8:2e:24:8f:22:7a:f2:24:a2:d3:b5:58:
28:fb:e9:0f:fa:e0:2d:3e:86:c0:d8:cf:dd:9f:ff:
18:4e:b3:44:ce:23:0c:c9:8e:b1:48:33:a5:54:2a:
da:3d:a3:81:e3:0a:87:79:e9:87:0d:02:ee:44:f4:
64:80:f2:b4:79:70:4e:2e:73:fc:14:14:fd:5f:61:
96:c7:af:c7:08:da:8c:a6:3f:73:6e:1e:7d:92:95:
73:da:06:c3:c0:53:21:f0:88:88:19:09:7b:29:57:
df:2e:6d:15:a6:48:9e:69:3c:10:d8:b2:95:83:a5:
c3:bf:75:3a:e3:12:6b:14:6f:ac:9e:44:de:23:ec:
95:fd:bf:41:48:75:f3:50:37:cb:33:ac:a3:fc:bd:
e7:dc:f3:59:ff:de:e3:52:cb:fa:ff:81:24:62:78:
1c:5e:4f:30:f4:3d:a5:2e:c7:37:1f:31:24:6d:23:
dd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:88:23:00:FB:01:00:0E:95:98:34:CE:1A:13:73:5A:49:74:EE:F7
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/JIgjAPsBAA6VmDTOGhNzWkl07vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.221.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b5:62:63:ac:a8:0a:e9:0a:8a:31:cf:5c:b9:ad:97:41:cb:
49:96:a6:87:25:0c:45:c3:a1:20:76:e5:58:a9:58:4c:08:12:
b9:ed:e1:48:40:92:ba:04:d6:f9:44:5c:e1:7c:9f:bf:84:bf:
bb:a0:5f:ac:b7:45:1b:9f:8a:4e:6b:f1:c2:26:ef:25:3a:7a:
fb:73:07:c4:be:d3:dd:8b:b5:a6:ef:f2:4d:26:63:a4:e5:31:
f3:a5:93:8c:eb:0c:97:7c:ed:86:31:bc:8c:9c:ae:0c:31:10:
26:26:b1:f2:dc:48:92:28:58:99:7c:8f:d1:61:ee:8a:86:8b:
e7:2a:82:5f:9f:f6:4e:71:a7:ab:9e:71:c2:3e:1c:08:47:0a:
f4:bc:1f:35:34:d3:88:32:5c:eb:15:4a:c2:af:1a:68:95:dc:
a8:cb:d1:4c:2d:18:52:25:a4:6d:eb:ae:57:02:d5:5c:62:39:
3e:35:a4:a3:b3:47:63:36:b1:a2:95:51:f3:98:62:94:ff:d2:
45:6b:85:2e:d8:14:f8:21:46:1c:3b:bf:09:c6:fe:16:3e:79:
7c:79:e9:70:0b:25:7a:4b:ad:3f:ef:e6:cb:b1:9f:9b:ae:11:
a6:23:d3:32:03:38:37:98:73:20:c3:e3:80:ec:64:2a:9b:2b:
92:d5:b3:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org