Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/89e159-dcb8-4c14-9d03-3dd42c163f25/1/dHXQCy7lwpRQ1dcXCUQjckU1_2A.roa
File: dHXQCy7lwpRQ1dcXCUQjckU1_2A.roa (raw, json)
Hash identifier: FFKOKYc/DvTuPEf8TX/28Wsf3outPIXy+4ru+AdUpc8=
Subject key identifier: 74:75:D0:0B:2E:E5:C2:94:50:D5:D7:17:09:44:23:72:45:35:FF:60
Certificate issuer: /CN=36f20f2dd771cd8a2fd111dff95143950294e957
Certificate serial: 04D2B153
Authority key identifier: 36:F2:0F:2D:D7:71:CD:8A:2F:D1:11:DF:F9:51:43:95:02:94:E9:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NvIPLddxzYov0RHf-VFDlQKU6Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/89e159-dcb8-4c14-9d03-3dd42c163f25/1/dHXQCy7lwpRQ1dcXCUQjckU1_2A.roa
Signing time: Sat 01 Jan 2022 05:02:22 +0000
ROA not before: Sat 01 Jan 2022 05:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20712
IP address blocks: 91.218.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80916819 (0x4d2b153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36f20f2dd771cd8a2fd111dff95143950294e957
Validity
Not Before: Jan 1 05:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7475d00b2ee5c29450d5d717094423724535ff60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:77:28:39:bc:61:50:3e:00:e4:c9:74:8e:e6:
52:64:11:b2:9c:90:b9:0d:13:53:7f:5f:6e:58:c3:
09:a7:23:df:b0:42:ba:ef:38:5c:16:13:3c:c5:84:
a5:14:2c:80:5c:a5:54:4e:8c:0b:ae:99:e9:b5:d1:
bb:06:71:b6:18:ad:00:f6:03:50:3c:b5:cd:57:2d:
f6:f2:23:6c:fa:0a:82:e1:73:eb:d4:39:a4:13:41:
45:2c:7e:67:db:56:d9:b5:12:bf:a8:75:e9:53:b4:
a6:ff:44:4d:24:5e:d8:47:5e:47:e1:1e:5b:69:3f:
ac:6e:3a:d4:59:12:23:9b:ed:50:84:d2:51:51:9c:
7c:f1:32:2f:47:72:9c:7a:56:8a:d3:5a:a9:f4:90:
97:c5:44:60:c1:a2:96:ac:89:d8:83:d5:cb:78:ce:
aa:3b:2b:e6:d7:e6:0e:c1:2f:de:ed:32:14:47:bc:
86:6f:80:67:c2:35:fd:13:37:2b:86:42:97:ce:90:
28:ce:26:ca:c0:9c:02:be:bd:ac:96:e2:ac:ea:c9:
d2:99:11:d1:47:a1:06:f9:d8:44:7c:83:95:25:6c:
7e:47:12:dd:97:e1:ca:cf:2f:9b:e1:49:f9:f6:5e:
63:3a:e1:8c:0a:bc:17:2e:10:07:ab:a5:e5:8e:46:
f5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:75:D0:0B:2E:E5:C2:94:50:D5:D7:17:09:44:23:72:45:35:FF:60
X509v3 Authority Key Identifier:
keyid:36:F2:0F:2D:D7:71:CD:8A:2F:D1:11:DF:F9:51:43:95:02:94:E9:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NvIPLddxzYov0RHf-VFDlQKU6Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/89e159-dcb8-4c14-9d03-3dd42c163f25/1/dHXQCy7lwpRQ1dcXCUQjckU1_2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/89e159-dcb8-4c14-9d03-3dd42c163f25/1/NvIPLddxzYov0RHf-VFDlQKU6Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.36.0/24
Signature Algorithm: sha256WithRSAEncryption
35:f0:47:b8:ec:64:92:66:04:1e:04:62:21:e6:5d:ff:da:eb:
41:0e:13:7b:8a:8d:9d:e4:e3:e4:3c:31:33:30:50:00:f9:04:
e8:64:4e:b4:57:64:c7:0a:57:d5:93:97:9f:14:b9:b3:18:73:
88:4d:f6:1d:34:99:cc:d4:52:be:da:00:ad:ca:a1:ab:7a:7c:
a0:0f:0f:0f:bd:03:77:b6:a6:23:b1:d8:dc:f9:73:25:41:bd:
9f:4c:14:bf:62:40:95:59:3d:10:10:42:b9:c1:5f:60:b4:ad:
32:bd:61:a5:ce:f8:77:31:5e:37:51:1f:07:60:87:09:f7:bb:
40:1f:54:bf:e6:5a:98:29:72:47:27:16:8b:fb:87:a4:77:d5:
8a:2b:e7:0a:22:d5:69:28:64:55:2a:19:21:85:d3:9c:4d:dc:
e8:3c:6c:1f:0c:01:8a:34:0e:a6:16:27:44:53:81:c9:b6:72:
1d:b3:fa:6f:e5:14:f3:ec:26:7c:ba:7c:bc:f3:f2:a6:4b:4b:
9d:01:a3:c1:23:85:1b:53:e5:d9:6f:cc:54:81:18:2c:09:6a:
b5:fe:cf:f6:3b:30:9a:95:2d:84:a2:44:82:45:e5:88:3a:ae:
aa:83:bb:ab:c5:88:7b:87:0f:4c:2b:07:d9:58:55:74:04:53:
8f:68:a4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:08 2024 by rpki-client on console-ams.rpki-client.org