Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/sBpPFs7R8XUXI26E0rySjfVy7Hw.roa
File: sBpPFs7R8XUXI26E0rySjfVy7Hw.roa (raw, json)
Hash identifier: reWtUoR+Vft5VHizS/DpaVLgkS4bLvAKRsbSwJQepdw=
Subject key identifier: B0:1A:4F:16:CE:D1:F1:75:17:23:6E:84:D2:BC:92:8D:F5:72:EC:7C
Certificate issuer: /CN=1685cdba5d7daf6ddccf8675a90a25b6ed6444d7
Certificate serial: 018CC2DAFF0E9D02690C27EC8EC42E7990BB
Authority key identifier: 16:85:CD:BA:5D:7D:AF:6D:DC:CF:86:75:A9:0A:25:B6:ED:64:44:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoXNul19r23cz4Z1qQoltu1kRNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/sBpPFs7R8XUXI26E0rySjfVy7Hw.roa
Signing time: Mon 01 Jan 2024 02:29:41 +0000
ROA not before: Mon 01 Jan 2024 02:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203020
IP address blocks: 91.199.253.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:ff:0e:9d:02:69:0c:27:ec:8e:c4:2e:79:90:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1685cdba5d7daf6ddccf8675a90a25b6ed6444d7
Validity
Not Before: Jan 1 02:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b01a4f16ced1f17517236e84d2bc928df572ec7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:04:e5:91:65:d8:04:cb:60:b9:eb:00:f2:2b:
f4:e4:7a:a4:d2:db:6a:fb:32:fa:6d:fc:4c:69:40:
f0:1b:f4:da:60:db:41:9a:29:97:ea:6c:97:8b:2a:
22:68:c6:d2:89:2d:13:a9:0e:68:1d:ec:8f:eb:21:
09:4b:c2:e0:07:98:28:b2:31:da:d6:29:3a:bc:1d:
0b:b7:68:ce:de:e9:f0:ff:11:fa:33:10:0e:2d:fc:
60:86:48:ac:6b:cb:70:41:9e:c5:72:f2:9e:5c:39:
b4:ca:17:aa:91:2c:9e:67:c5:5e:52:69:21:6e:f3:
68:e7:83:45:fa:9f:0f:45:19:09:38:66:cf:6b:bd:
34:f2:6a:76:04:c2:24:23:8a:b4:91:ab:86:e1:9d:
d3:2a:74:86:83:46:89:ae:c0:b4:d8:89:3a:17:a2:
95:87:51:f8:54:65:ae:8b:be:d6:24:63:51:09:7b:
28:59:8c:d1:4f:ba:f1:ed:5a:ce:fc:4c:1e:27:27:
72:36:48:c4:0a:b7:36:dc:46:f5:de:8f:21:cd:6d:
16:69:94:f0:b1:67:dd:7c:8d:c8:aa:54:eb:2e:37:
c1:ff:62:a2:88:8f:d8:2f:99:b7:46:21:5c:ed:3e:
02:8f:2d:bc:86:60:12:95:4e:e0:11:cd:f9:c6:9e:
e5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1A:4F:16:CE:D1:F1:75:17:23:6E:84:D2:BC:92:8D:F5:72:EC:7C
X509v3 Authority Key Identifier:
keyid:16:85:CD:BA:5D:7D:AF:6D:DC:CF:86:75:A9:0A:25:B6:ED:64:44:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoXNul19r23cz4Z1qQoltu1kRNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/sBpPFs7R8XUXI26E0rySjfVy7Hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/FoXNul19r23cz4Z1qQoltu1kRNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.253.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:b0:74:48:d4:8e:24:a2:8a:fb:86:8d:d6:6f:b9:a9:58:fc:
9a:b8:cb:a0:82:46:92:5f:d1:ef:83:c9:7f:ce:4a:e1:c4:42:
d5:13:66:a7:c3:cc:b4:45:31:da:3b:31:54:ae:47:71:41:34:
f0:18:5f:3c:36:57:6a:2f:fa:35:2e:35:f9:69:7b:5b:0d:5a:
c1:80:97:10:e8:7f:a4:3f:80:be:6d:d8:3e:ce:33:97:0a:f7:
9f:c8:64:19:1e:8f:44:9e:89:2c:3e:de:aa:c4:cc:4d:d4:63:
a0:d5:b7:62:a6:39:f7:42:c8:23:a3:77:9e:f2:df:7a:56:a6:
ba:9b:c1:69:d6:34:66:c0:8f:24:b0:3b:f6:d2:cb:ce:84:3b:
4e:12:58:90:57:52:47:d6:fb:15:87:f7:24:44:fa:83:d2:63:
97:27:d2:90:8f:53:05:f6:7f:95:97:99:67:e5:9a:9c:61:cd:
bc:81:87:c1:97:cf:b7:d9:ab:5a:be:8b:c9:8f:1b:0a:05:2f:
51:21:47:34:65:f7:15:cc:53:26:60:2a:63:b1:08:d0:e0:da:
d8:f6:dd:f6:f1:fa:0e:0f:d4:83:54:49:77:10:40:a7:9a:21:
05:4b:e6:c0:01:f1:cd:d9:e1:4f:30:03:f2:de:81:06:6c:de:
a9:d4:01:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 19:50:29 2024 by rpki-client on console-ams.rpki-client.org