Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/RpubBoJex_gVToxDSyC5NBY3MVs.roa
File: RpubBoJex_gVToxDSyC5NBY3MVs.roa (raw, json)
Hash identifier: OBkhofpHXgvR/NIP8lAqy2PLMMwtXhRbgMh8lB6yS08=
Subject key identifier: 46:9B:9B:06:82:5E:C7:F8:15:4E:8C:43:4B:20:B9:34:16:37:31:5B
Certificate issuer: /CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Certificate serial: 0183C7BAE4367220806878CEB4DD4E391778
Authority key identifier: A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/RpubBoJex_gVToxDSyC5NBY3MVs.roa
Signing time: Tue 11 Oct 2022 15:47:37 +0000
ROA not before: Tue 11 Oct 2022 15:47:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 91.149.215.0/24 maxlen: 24
91.149.218.0/23 maxlen: 23
91.149.221.0/24 maxlen: 24
91.149.236.0/22 maxlen: 22
91.149.235.0/24 maxlen: 24
91.149.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:ba:e4:36:72:20:80:68:78:ce:b4:dd:4e:39:17:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67850e571f3f2aca2c1ec1d7e502d9bd184c45c
Validity
Not Before: Oct 11 15:47:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=469b9b06825ec7f8154e8c434b20b9341637315b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:db:ed:14:9f:70:c2:29:a8:69:1b:01:4b:be:
34:92:98:8b:5b:d3:cd:e6:5f:db:96:0b:f9:36:ba:
a8:56:d1:aa:74:99:c0:e9:47:e7:77:d0:bd:bf:ff:
83:f2:5d:79:fa:c9:8b:f6:7b:8f:34:23:1f:4b:b8:
1b:8a:fb:e0:8a:e4:c1:79:ac:36:9e:5a:03:32:56:
90:34:09:0a:40:db:ce:c8:ed:6f:d8:b4:28:0a:16:
ee:c0:65:7c:d2:20:78:94:77:23:a5:36:ef:47:e5:
c7:f0:14:f2:3a:72:21:ee:f7:bc:c5:67:9a:a1:3d:
30:16:45:dd:2c:79:88:8c:36:31:38:3e:13:bf:58:
75:46:9f:61:04:c4:cc:15:37:96:b2:d9:d9:6b:75:
89:40:51:92:ec:20:17:86:bf:6e:a2:bb:c4:83:4d:
ec:16:c0:d1:5c:57:df:e8:15:57:28:25:c7:59:cd:
d3:cb:04:d2:67:35:22:4e:54:ab:3b:72:6b:56:af:
46:0f:89:70:79:72:22:15:4e:92:83:b5:81:0b:35:
1d:8d:05:01:ab:e8:f5:10:65:24:7f:9d:5d:6c:13:
e5:f0:fc:3c:c0:af:45:73:45:96:eb:74:df:ac:b5:
5a:fb:90:e7:75:f8:02:14:40:b7:21:f5:fd:f2:c3:
ae:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:9B:9B:06:82:5E:C7:F8:15:4E:8C:43:4B:20:B9:34:16:37:31:5B
X509v3 Authority Key Identifier:
keyid:A6:78:50:E5:71:F3:F2:AC:A2:C1:EC:1D:7E:50:2D:9B:D1:84:C4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhQ5XHz8qyiwewdflAtm9GExFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/RpubBoJex_gVToxDSyC5NBY3MVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3309b5-f93f-4c62-8dce-b0c151e516cf/1/pnhQ5XHz8qyiwewdflAtm9GExFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.215.0/24
91.149.218.0/23
91.149.221.0/24
91.149.235.0-91.149.239.255
91.149.252.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:e0:a0:4a:66:17:d6:42:0b:f4:31:4d:e8:0f:b9:6e:d7:29:
07:14:1b:11:58:4c:04:80:b1:f3:9e:cf:ca:80:e5:20:9d:b9:
65:6e:e0:ec:bf:f6:eb:76:89:1a:1f:64:5c:d0:ab:d0:7d:e8:
2d:1a:e1:1d:7a:b3:55:1c:6f:48:a6:01:85:88:4d:19:b6:89:
4d:ee:26:5b:ad:ed:e8:00:14:42:f3:6a:38:dc:5f:c1:01:37:
56:29:2b:ea:c6:a7:be:5f:6b:73:b7:1a:54:42:3a:29:f1:a1:
30:71:d1:67:be:6c:8b:86:fc:6e:90:0e:14:5f:dc:58:62:9e:
df:31:c2:c4:e8:7e:ba:9f:58:84:b3:e6:92:90:ab:48:96:db:
78:bf:9f:7c:b6:64:a5:44:17:c3:a8:fa:c0:bd:01:c3:fa:16:
5c:14:c6:de:41:94:a9:5c:b1:5f:f2:9b:6b:11:f3:e8:53:80:
d9:0a:a0:70:db:ee:8b:d5:61:29:21:b0:73:3d:60:de:0a:51:
01:45:d8:c9:f5:3d:15:a0:7f:28:dd:60:c3:32:3a:18:e6:b4:
8f:c1:2e:0a:44:4a:0a:3f:db:4b:17:5b:eb:e2:13:2c:0b:05:
03:8e:94:a0:dd:77:06:e0:7d:09:53:81:54:06:cc:0e:53:10:
d4:8b:08:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org