Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/92a0b9-f6d0-4a74-894b-d8ec738d9549/1/uNc7E1sqcHvxvuKyGJ0CBWGrKbE.roa
File: uNc7E1sqcHvxvuKyGJ0CBWGrKbE.roa (raw, json)
Hash identifier: k360Thw6Vvfmk3yX+VxFgnd5Hs4ncG1/cgmgEByXLTQ=
Subject key identifier: B8:D7:3B:13:5B:2A:70:7B:F1:BE:E2:B2:18:9D:02:05:61:AB:29:B1
Certificate issuer: /CN=1e95d98e620be955f1f967908e61addd83fd05cd
Certificate serial: 01867FAB4EB01167C00BCBD7206D739D6BAC
Authority key identifier: 1E:95:D9:8E:62:0B:E9:55:F1:F9:67:90:8E:61:AD:DD:83:FD:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpXZjmIL6VXx-WeQjmGt3YP9Bc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/92a0b9-f6d0-4a74-894b-d8ec738d9549/1/uNc7E1sqcHvxvuKyGJ0CBWGrKbE.roa
Signing time: Thu 23 Feb 2023 19:06:18 +0000
ROA not before: Thu 23 Feb 2023 19:06:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 91.246.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:ab:4e:b0:11:67:c0:0b:cb:d7:20:6d:73:9d:6b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e95d98e620be955f1f967908e61addd83fd05cd
Validity
Not Before: Feb 23 19:06:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8d73b135b2a707bf1bee2b2189d020561ab29b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:da:a8:5f:c9:24:f9:4b:22:ba:6a:9f:da:06:
55:96:79:46:5a:48:bc:cd:3c:9e:e1:f6:1b:b4:b2:
46:2a:3e:e3:c3:f4:52:0e:9a:41:a7:22:cf:bd:63:
e4:10:94:1e:24:5d:4d:7a:e0:66:33:71:82:6a:67:
b2:8e:fb:4e:4e:32:6d:4e:2f:a2:8b:bd:ba:7c:4e:
22:64:45:a2:6f:0c:07:cc:0c:8b:08:77:21:0c:1e:
13:61:2a:99:0f:5b:a1:99:2b:be:3d:00:b4:82:40:
cb:92:53:5a:dc:85:fb:ac:8f:94:aa:1e:c9:17:3b:
bc:8b:e6:58:d3:50:aa:f5:98:4c:6e:ed:9b:41:d0:
3e:0b:15:79:c9:1b:a8:9e:fb:42:5e:2e:1d:83:80:
ea:0c:78:cc:26:30:ca:25:83:f1:79:78:c8:a0:cf:
3d:e4:73:ef:58:ea:2f:b8:a5:91:d0:81:55:92:32:
39:1e:98:04:4d:85:b4:a3:4f:4d:70:f3:0b:fc:8d:
4a:5f:33:7c:92:b8:fd:00:9f:24:58:a9:bf:9e:7c:
38:53:cd:ab:19:72:62:bc:24:d5:96:31:40:f3:61:
17:4b:92:8d:ff:3e:a7:cc:ed:7b:28:ae:ef:a7:7e:
7f:50:be:8a:99:d4:2a:f6:c1:14:f3:4a:4a:55:78:
95:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D7:3B:13:5B:2A:70:7B:F1:BE:E2:B2:18:9D:02:05:61:AB:29:B1
X509v3 Authority Key Identifier:
keyid:1E:95:D9:8E:62:0B:E9:55:F1:F9:67:90:8E:61:AD:DD:83:FD:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpXZjmIL6VXx-WeQjmGt3YP9Bc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/92a0b9-f6d0-4a74-894b-d8ec738d9549/1/uNc7E1sqcHvxvuKyGJ0CBWGrKbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/92a0b9-f6d0-4a74-894b-d8ec738d9549/1/HpXZjmIL6VXx-WeQjmGt3YP9Bc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.36.0/24
Signature Algorithm: sha256WithRSAEncryption
52:b4:ce:49:d0:89:50:57:0d:bb:d5:65:19:25:10:b0:2b:c0:
da:dd:d8:42:a0:6a:b1:bc:63:20:bc:b8:b8:5d:9a:67:b2:65:
ca:90:95:5a:df:a4:c9:41:00:1c:90:41:f2:87:63:a4:4b:20:
fd:db:b9:53:1e:6a:c2:98:89:85:5f:61:3d:eb:85:1c:6e:e4:
28:f6:26:ab:a3:0c:e9:10:31:59:5a:b1:ea:fa:47:ac:09:19:
c5:1f:84:ed:12:aa:55:8e:aa:41:e4:a2:dc:d5:7a:5e:64:f6:
8c:c1:10:73:29:74:3c:b3:90:67:5d:03:ef:da:3f:f4:8a:b4:
43:b4:9d:13:7a:b0:69:fb:5d:86:a1:aa:57:b7:62:16:0b:2c:
03:81:b0:05:17:1c:6a:d4:6c:78:03:d4:38:ba:10:73:7d:1a:
d8:f7:5e:4b:43:80:fe:75:fe:16:e3:2b:aa:09:10:87:25:4a:
a4:18:00:f0:b3:43:53:25:5a:c1:7d:2f:a8:52:03:6f:21:c8:
ae:a4:2c:a4:3d:a4:03:cd:6e:ea:78:ce:45:84:09:c2:7f:43:
45:16:0f:a8:79:73:21:27:8e:8d:9b:31:c8:ea:e9:49:3b:d6:
0f:1a:0e:11:6b:8a:0e:1e:f5:81:8c:fc:b5:1c:65:c3:4c:5b:
79:5d:3f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:40 2024 by rpki-client on console-ams.rpki-client.org