Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/5dbeff-f1ad-4ceb-b473-81973ebb0794/1/dybUqPrAbn9kNK5EePk42MxPQOA.roa
File: dybUqPrAbn9kNK5EePk42MxPQOA.roa (raw, json)
Hash identifier: KCIU4Zb1BDOwE0u9kYqoxBjtLc5w7iU7PxJ59VdEwIA=
Subject key identifier: 77:26:D4:A8:FA:C0:6E:7F:64:34:AE:44:78:F9:38:D8:CC:4F:40:E0
Certificate issuer: /CN=70a9b97f1f8a1ed4738c500aecffad24f1367166
Certificate serial: 0185711512B5519F48C87FA047C889312817
Authority key identifier: 70:A9:B9:7F:1F:8A:1E:D4:73:8C:50:0A:EC:FF:AD:24:F1:36:71:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKm5fx-KHtRzjFAK7P-tJPE2cWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/5dbeff-f1ad-4ceb-b473-81973ebb0794/1/dybUqPrAbn9kNK5EePk42MxPQOA.roa
Signing time: Mon 02 Jan 2023 06:04:44 +0000
ROA not before: Mon 02 Jan 2023 06:04:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 91.247.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:12:b5:51:9f:48:c8:7f:a0:47:c8:89:31:28:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a9b97f1f8a1ed4738c500aecffad24f1367166
Validity
Not Before: Jan 2 06:04:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7726d4a8fac06e7f6434ae4478f938d8cc4f40e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c8:36:b9:b3:6f:5d:85:e1:f4:82:82:89:a7:
3f:e9:fc:af:c2:33:90:8d:45:e2:6d:5c:2d:e6:b6:
88:38:cd:74:8f:41:00:5b:b7:7b:55:5f:06:84:d8:
49:5a:01:43:5d:da:b0:c5:b5:d5:49:87:f9:34:03:
54:12:a9:d3:a0:6f:0c:d6:45:a9:86:a1:63:64:4c:
d3:34:81:27:1b:19:fc:eb:20:1c:ed:de:e4:3e:df:
53:1d:2c:7b:2c:b9:e7:d6:24:40:88:82:99:e4:5a:
64:b8:91:e2:bd:6e:3d:df:75:1c:6a:95:f9:bb:94:
45:07:cd:28:7b:cd:db:22:e8:e3:a2:7e:f5:15:ee:
41:90:72:85:10:3d:e2:de:1d:5f:df:2a:f4:ef:e1:
39:18:0c:b9:23:c0:95:00:83:6c:c7:24:98:b8:4e:
10:b7:a9:6a:53:f3:69:4f:2e:ec:1d:ec:2c:39:20:
76:97:9d:6d:81:f5:a8:f4:36:64:24:4a:71:f5:2c:
ae:d2:ec:ec:58:85:a1:54:5d:67:4d:f0:f6:66:05:
cf:cc:15:44:cf:8c:80:ea:dc:54:0a:6d:64:00:f3:
7d:db:e6:9d:4a:f1:ce:21:6a:ff:7d:a5:e6:54:40:
07:37:d7:46:22:a5:8e:83:86:90:93:6d:01:9c:f6:
e0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:26:D4:A8:FA:C0:6E:7F:64:34:AE:44:78:F9:38:D8:CC:4F:40:E0
X509v3 Authority Key Identifier:
keyid:70:A9:B9:7F:1F:8A:1E:D4:73:8C:50:0A:EC:FF:AD:24:F1:36:71:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKm5fx-KHtRzjFAK7P-tJPE2cWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5dbeff-f1ad-4ceb-b473-81973ebb0794/1/dybUqPrAbn9kNK5EePk42MxPQOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5dbeff-f1ad-4ceb-b473-81973ebb0794/1/cKm5fx-KHtRzjFAK7P-tJPE2cWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.164.0/24
Signature Algorithm: sha256WithRSAEncryption
05:41:59:71:be:a9:ad:a5:aa:99:77:ca:b1:bb:ee:49:2f:7b:
b5:06:69:26:6c:9e:5e:f5:20:26:fb:ee:e2:73:88:cb:ba:cf:
0d:33:ce:62:4e:16:24:3d:b2:1d:f2:1f:89:2d:b5:5c:94:3d:
de:1a:09:57:12:a6:89:0c:ef:82:7f:47:49:2f:63:ba:a8:c6:
34:c0:0e:b0:57:63:94:0e:74:da:1a:61:51:fc:09:1b:49:8f:
c1:8c:d6:c0:59:d2:1a:f3:62:b8:c8:37:d1:e2:d0:29:57:2d:
a7:f2:18:22:ad:77:19:83:16:e1:5d:b7:0f:08:e7:d5:b7:e9:
b4:42:45:52:30:8f:07:a9:0d:1f:c4:05:25:9c:83:68:a6:b9:
37:b7:2e:23:b0:79:f8:85:32:c9:c8:db:70:87:7b:8a:37:ad:
47:c0:22:7c:73:36:bc:1f:dd:a4:a0:07:ee:ca:3a:f9:b9:0c:
a7:33:66:db:d8:c4:c0:72:a0:d8:af:ad:3f:76:2d:09:0f:75:
f9:30:74:1f:8a:f6:23:75:3c:f2:1d:f5:eb:3e:94:0b:1a:b5:
d3:d4:bf:7d:64:19:51:60:e3:b5:4e:f6:87:77:60:11:46:33:
04:5e:64:c2:99:3a:7a:3a:a7:25:b3:38:06:df:8f:10:07:d0:
47:c2:4d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:27 2024 by rpki-client on console-ams.rpki-client.org