Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/Xx47OunrKA7xvrYw3YrMVEM9bXw.roa
File: Xx47OunrKA7xvrYw3YrMVEM9bXw.roa (raw, json)
Hash identifier: 1sStMeQ0JHchmmLFo0TQkCmqOeGXSqI+13r8aV+D1W8=
Subject key identifier: 5F:1E:3B:3A:E9:EB:28:0E:F1:BE:B6:30:DD:8A:CC:54:43:3D:6D:7C
Certificate issuer: /CN=eb57a2c600b69e0bbaee2c68996792f6286abfe7
Certificate serial: 362B
Authority key identifier: EB:57:A2:C6:00:B6:9E:0B:BA:EE:2C:68:99:67:92:F6:28:6A:BF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61eixgC2ngu67ixomWeS9ihqv-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/Xx47OunrKA7xvrYw3YrMVEM9bXw.roa
Signing time: Wed 20 Apr 2022 13:06:34 +0000
ROA not before: Wed 20 Apr 2022 13:06:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.212.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13867 (0x362b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb57a2c600b69e0bbaee2c68996792f6286abfe7
Validity
Not Before: Apr 20 13:06:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f1e3b3ae9eb280ef1beb630dd8acc54433d6d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:34:11:df:c0:09:04:0c:9a:6e:21:1a:dc:c9:
9f:60:51:b8:f2:b3:95:a2:8a:5a:ba:72:32:d6:70:
ce:90:ae:03:5e:9b:79:2a:5d:05:e2:ca:a5:a1:d4:
85:6f:04:02:d3:07:02:b8:0d:a3:65:e1:ab:f6:60:
3a:22:b5:1b:6e:b7:db:e6:36:1f:90:a1:f2:35:21:
c7:04:3d:19:3f:6f:f6:0b:d0:37:8e:cd:cd:e6:be:
57:77:67:66:d9:e9:bb:67:ed:3a:50:9e:a4:9b:89:
e0:9e:a7:93:e4:d7:85:25:7a:10:4a:c6:f4:85:9b:
f2:07:28:d3:67:14:2d:a1:1c:2f:71:4a:1e:40:2a:
70:7f:fb:72:03:39:72:f9:8a:4a:d9:5b:9d:da:df:
92:e1:42:05:b6:a5:19:ad:3f:14:21:3f:a7:fb:6a:
95:e8:d1:fc:be:9f:1c:62:68:53:56:48:db:39:54:
c1:f4:b4:68:1e:c2:f0:f5:de:90:f0:13:d8:51:ae:
6d:10:e4:4d:dc:5b:5a:95:62:e9:d8:1c:4a:d1:9f:
79:4f:af:af:3e:15:df:b1:da:f6:c4:26:f4:d4:6a:
aa:24:1f:c3:6e:90:19:2d:d7:20:d4:cb:c4:c5:09:
85:51:58:ff:b0:85:fe:3d:63:21:ae:89:19:95:a4:
6c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1E:3B:3A:E9:EB:28:0E:F1:BE:B6:30:DD:8A:CC:54:43:3D:6D:7C
X509v3 Authority Key Identifier:
keyid:EB:57:A2:C6:00:B6:9E:0B:BA:EE:2C:68:99:67:92:F6:28:6A:BF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61eixgC2ngu67ixomWeS9ihqv-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/Xx47OunrKA7xvrYw3YrMVEM9bXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/61eixgC2ngu67ixomWeS9ihqv-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.216.0/24
Signature Algorithm: sha256WithRSAEncryption
50:6e:5f:97:3b:d0:8a:f6:75:31:bf:4c:f6:08:92:f5:d5:2d:
61:05:6f:99:3d:a0:05:c1:e3:6d:0d:ee:b5:eb:04:56:61:7d:
99:fd:75:97:3d:f5:97:d5:62:02:97:d9:36:67:12:af:4f:5c:
dd:e1:1b:21:8e:28:7e:3e:bd:9a:28:e5:0e:bd:e1:17:dc:6a:
69:09:e4:34:dd:4e:05:dc:e1:88:62:b3:de:42:3d:e0:3b:fe:
db:9a:b0:c5:d0:2d:55:f6:0b:91:fc:42:62:7f:a5:90:32:7e:
1b:5e:c6:93:ca:ea:ba:48:c4:1b:48:4e:36:9b:39:df:e6:3f:
06:dc:37:c3:26:46:9d:46:12:94:9c:41:b5:74:94:79:31:6e:
98:bc:ed:44:24:01:14:6c:81:99:a8:73:ce:c0:77:e6:97:a8:
05:ec:f5:a2:08:f0:fd:90:fa:c0:e3:a6:e1:dd:fe:c2:a0:2c:
af:7f:a2:6e:29:2b:c8:10:3e:48:63:f4:81:69:a8:09:d0:02:
00:10:49:5a:a6:92:b4:97:45:75:8f:ee:6a:c4:06:e2:5d:cd:
06:b4:fc:af:29:5d:68:35:01:55:8f:e8:33:e0:a9:5c:2c:d6:
42:6b:69:37:2e:8d:61:93:28:4d:e0:e4:ea:ef:49:65:01:2c:
84:31:79:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:12 2024 by rpki-client on console-fra.rpki-client.org