Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/50c033-54a8-44f0-8c1b-5f7691b6620a/1/i-vqTavlbb3PcpR00M6COsUrdgQ.roa
File: i-vqTavlbb3PcpR00M6COsUrdgQ.roa (raw, json)
Hash identifier: XszmREZJfp2jLeCmniqCl+OpKRuyeXWgsKm3g9riLUY=
Subject key identifier: 8B:EB:EA:4D:AB:E5:6D:BD:CF:72:94:74:D0:CE:82:3A:C5:2B:76:04
Certificate issuer: /CN=4c72883ebc2405f98a279e006c48b6caf39dfd51
Certificate serial: 018CCA98FA071038A51E36F6B28B60F1ECF9
Authority key identifier: 4C:72:88:3E:BC:24:05:F9:8A:27:9E:00:6C:48:B6:CA:F3:9D:FD:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THKIPrwkBfmKJ54AbEi2yvOd_VE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/50c033-54a8-44f0-8c1b-5f7691b6620a/1/i-vqTavlbb3PcpR00M6COsUrdgQ.roa
Signing time: Tue 02 Jan 2024 14:34:32 +0000
ROA not before: Tue 02 Jan 2024 14:34:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198034
IP address blocks: 91.230.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:98:fa:07:10:38:a5:1e:36:f6:b2:8b:60:f1:ec:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c72883ebc2405f98a279e006c48b6caf39dfd51
Validity
Not Before: Jan 2 14:34:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bebea4dabe56dbdcf729474d0ce823ac52b7604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:18:33:4f:3f:c7:2f:a3:d2:9d:98:49:ff:17:
53:7c:10:6c:03:3a:0e:a6:a0:1c:ff:ea:fc:80:af:
3f:50:52:6d:09:99:83:7f:f8:fa:0b:a8:ca:bb:51:
07:92:03:60:84:ad:2f:48:a8:65:03:aa:25:a8:78:
9b:59:85:bd:cb:bc:da:8c:e7:1f:0f:53:b2:3c:ab:
fc:84:61:ed:08:00:b6:c7:b2:67:e4:26:e1:69:67:
1c:c7:4d:89:9c:04:46:83:69:5d:8e:1d:56:c1:5a:
71:e3:02:9d:f0:65:12:81:f5:73:7d:f8:3f:2b:23:
34:d8:bc:c7:48:48:0e:b4:28:11:38:e8:d5:7a:3f:
c5:39:50:9c:42:29:e1:40:71:3c:7b:43:97:ad:9c:
ac:00:93:90:e2:b7:03:45:32:c2:af:84:c9:43:5d:
8a:d7:4c:ae:99:0e:20:7a:6f:c7:d5:30:88:e8:da:
fc:4a:a3:9f:16:4b:2c:25:e1:6d:e4:0f:00:d8:89:
09:c4:7c:e3:24:5e:27:3e:c9:ae:4d:75:8a:b2:14:
74:2a:21:f4:d6:f5:83:2f:18:d7:6f:a3:a7:8e:75:
27:5b:08:62:57:40:0b:63:b5:f2:bb:36:2d:ca:48:
0a:f9:dc:41:5e:25:0b:12:f6:c3:fe:da:07:94:27:
a4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EB:EA:4D:AB:E5:6D:BD:CF:72:94:74:D0:CE:82:3A:C5:2B:76:04
X509v3 Authority Key Identifier:
keyid:4C:72:88:3E:BC:24:05:F9:8A:27:9E:00:6C:48:B6:CA:F3:9D:FD:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THKIPrwkBfmKJ54AbEi2yvOd_VE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/50c033-54a8-44f0-8c1b-5f7691b6620a/1/i-vqTavlbb3PcpR00M6COsUrdgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/50c033-54a8-44f0-8c1b-5f7691b6620a/1/THKIPrwkBfmKJ54AbEi2yvOd_VE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.169.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:1f:b6:e1:30:78:46:f2:f6:fe:22:4a:be:ef:fb:8c:01:4b:
2c:7c:f5:f6:1a:87:67:e7:fc:3d:c8:c0:c1:0e:39:6d:4d:7e:
0b:0d:f9:62:fc:21:f0:66:36:4c:c0:66:b1:52:a8:a1:90:4a:
d7:9d:25:50:68:ce:5f:9e:bd:e7:7b:31:c1:08:31:64:92:e1:
b0:71:29:e6:e4:22:4b:f2:ff:7d:83:53:00:a3:45:56:a5:37:
ed:a1:0c:54:78:d8:1d:b5:84:94:d8:c8:ce:a9:c0:ba:9d:2c:
fe:bc:e2:2b:8c:87:1f:2f:aa:80:c0:a2:fa:37:1d:ef:65:8b:
7e:a7:ab:48:f8:53:36:0f:63:af:28:d9:9a:81:d5:b9:f4:11:
33:a2:7c:e8:f0:89:c4:e7:47:ca:1f:c3:0a:87:10:b5:a4:05:
c5:cf:7e:98:f6:68:79:56:33:92:98:df:66:9e:d0:2f:e7:2c:
2a:dd:80:36:41:69:e2:62:04:23:91:a8:9c:28:73:f1:4d:5f:
57:3c:37:bf:22:b2:66:23:83:6e:00:cc:5a:21:95:0e:d1:26:
96:a8:e9:a0:3f:8a:f5:54:bf:9a:96:2f:94:d3:d5:2e:ac:07:
7d:63:a4:26:57:88:df:e7:13:f9:f6:38:b0:30:59:a4:e2:f4:
cd:b0:ed:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:43 2024 by rpki-client on console-ams.rpki-client.org