Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/Ncsjwj8GMO6zVCUj1zxQtDYihVE.roa
File: Ncsjwj8GMO6zVCUj1zxQtDYihVE.roa (raw, json)
Hash identifier: 6HB0IgeVMtUn8JJz6hHHJGswiWleLp4GQ3okqoqvLag=
Subject key identifier: 35:CB:23:C2:3F:06:30:EE:B3:54:25:23:D7:3C:50:B4:36:22:85:51
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 0821493D
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/Ncsjwj8GMO6zVCUj1zxQtDYihVE.roa
Signing time: Sat 01 Jan 2022 03:52:26 +0000
ROA not before: Sat 01 Jan 2022 03:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26636
IP address blocks: 91.149.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136399165 (0x821493d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Jan 1 03:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35cb23c23f0630eeb3542523d73c50b436228551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:eb:15:a5:06:99:8f:11:9c:f7:ed:78:24:4c:
73:f5:fc:40:48:cd:b9:fd:c8:03:00:e8:9c:27:0b:
d4:87:0d:18:0d:ac:c9:03:df:cb:9e:69:8e:62:8a:
08:f2:e0:37:5f:2d:dd:d4:96:ff:e3:5b:96:f7:fe:
57:71:e9:04:01:38:36:a6:d9:2d:cd:d8:44:3c:1f:
6d:92:e8:b4:f9:2f:c7:01:e3:93:98:8d:f5:ec:5f:
4f:6f:54:82:5d:f4:18:c7:75:1a:29:9c:5e:4a:a2:
40:eb:38:95:f1:af:be:71:b9:ce:71:2c:cd:dc:32:
cf:e7:20:d3:03:b6:9c:c3:61:4c:50:bb:5e:49:ed:
63:83:4c:67:1c:9d:6f:63:3a:17:ec:18:fb:8c:7f:
28:c2:60:fa:cb:20:bd:f4:e5:c8:35:41:bb:56:3a:
03:78:23:b2:c7:0a:54:11:b8:3e:3b:54:42:8c:d6:
be:06:31:34:5b:d5:7a:e7:f1:7a:d5:00:01:a2:06:
c5:a4:96:fe:c1:2e:d7:c6:55:ea:b6:1a:4a:ec:ce:
ab:53:20:dd:36:47:23:31:8f:eb:c1:04:f2:d3:03:
11:1e:98:b3:aa:6f:9a:5d:26:df:c8:0a:96:94:89:
26:99:77:a1:c6:2b:0a:bb:81:d0:be:a4:35:92:cc:
c1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:CB:23:C2:3F:06:30:EE:B3:54:25:23:D7:3C:50:B4:36:22:85:51
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/Ncsjwj8GMO6zVCUj1zxQtDYihVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.230.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:b6:c1:40:30:92:25:a3:23:b8:d9:a8:df:a9:82:45:40:3a:
57:b3:fb:a4:7c:a1:e1:d0:d8:46:c9:ed:00:7b:03:16:e6:a1:
eb:b1:e3:4c:55:71:4f:d7:6b:68:b8:89:2b:e6:18:23:2c:e7:
3c:45:f5:5e:38:32:3d:41:08:32:fd:6f:4b:46:19:1b:d8:53:
63:3c:66:04:a6:46:c4:fa:3c:d8:5a:55:4b:89:56:a5:58:62:
d1:ab:ce:b9:99:9e:57:2e:8a:95:88:4e:ee:5c:81:33:f6:2c:
a8:dc:d7:07:0d:96:7d:ad:a1:af:52:37:ed:09:92:84:c2:5c:
18:c2:8c:2c:a5:72:59:06:47:d8:e7:bb:7e:f5:39:b1:30:08:
86:66:b4:14:4e:1d:f5:cd:db:9b:c3:4d:74:d7:ce:c1:f0:f6:
50:b2:c4:ef:8f:44:90:bb:03:08:2c:1f:90:82:b6:18:0d:56:
a2:33:72:cc:39:87:35:ff:2c:1d:e4:33:c3:ad:1e:b9:5f:0e:
20:16:0a:a6:52:bd:65:06:e4:12:25:7b:e7:be:92:4d:3d:ea:
43:ce:a5:6a:9e:4a:73:f2:cf:8f:60:b0:6f:43:64:6c:47:a3:
cd:1f:3e:f8:02:dd:7c:63:15:2b:bf:3f:af:1c:d4:87:90:c1:
0b:e0:82:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org