Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/d8b6cb-8ca8-405c-9662-b352f472fde3/1/_XKJ1vMcAoNwKYUa2muLceutuEQ.roa
File: _XKJ1vMcAoNwKYUa2muLceutuEQ.roa (raw, json)
Hash identifier: XEGzLmYC2NHZfd+Wzqi1qdK6C02lGJ8mkFOrCxbJx90=
Subject key identifier: FD:72:89:D6:F3:1C:02:83:70:29:85:1A:DA:6B:8B:71:EB:AD:B8:44
Certificate issuer: /CN=37ba8e333936d2beb4068985f0b3f799d5478b0d
Certificate serial: A0DC25
Authority key identifier: 37:BA:8E:33:39:36:D2:BE:B4:06:89:85:F0:B3:F7:99:D5:47:8B:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N7qOMzk20r60BomF8LP3mdVHiw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/d8b6cb-8ca8-405c-9662-b352f472fde3/1/_XKJ1vMcAoNwKYUa2muLceutuEQ.roa
Signing time: Sat 01 Jan 2022 01:57:01 +0000
ROA not before: Sat 01 Jan 2022 01:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 91.242.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10542117 (0xa0dc25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ba8e333936d2beb4068985f0b3f799d5478b0d
Validity
Not Before: Jan 1 01:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd7289d6f31c02837029851ada6b8b71ebadb844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:58:70:26:ea:b3:fd:51:95:2b:a4:60:ca:dc:
77:21:37:59:f2:17:c8:1d:1e:be:b5:3d:34:13:b8:
e3:74:8a:a9:ab:89:fc:8b:8b:39:67:1b:67:ed:de:
5d:07:39:5e:d6:e1:b6:51:bb:e2:cc:92:81:1d:3d:
5f:81:95:e8:f0:47:79:8e:a5:b8:7e:27:5a:04:50:
e4:12:41:75:97:c4:67:ce:a9:b9:67:ae:7c:f2:89:
13:88:5f:99:2f:f5:de:9c:02:da:56:3a:cc:1b:c5:
8a:e8:9f:95:91:0e:61:12:77:0c:b6:c2:0a:10:f6:
b2:95:9c:ab:61:e7:83:93:bf:37:5f:74:57:87:1d:
ed:67:d7:08:ea:f5:cb:d6:36:d1:cd:62:88:bf:0f:
11:e2:d2:66:f2:44:9b:de:7b:c9:aa:a1:56:47:58:
1c:c4:78:49:34:0a:57:8e:a3:e8:52:b3:3b:b7:a6:
d7:58:25:23:95:0f:35:8c:61:74:32:4f:1f:e0:94:
39:6a:ba:f1:c0:1e:66:9a:d0:ea:70:fe:51:6c:d0:
fd:7f:b5:cb:65:40:f5:23:79:47:90:13:56:9a:52:
81:e3:3c:69:d1:b4:ae:1a:d9:d1:4f:79:a7:bd:f6:
d0:7c:06:9e:2b:28:78:a3:a6:fe:1f:12:56:f6:30:
90:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:72:89:D6:F3:1C:02:83:70:29:85:1A:DA:6B:8B:71:EB:AD:B8:44
X509v3 Authority Key Identifier:
keyid:37:BA:8E:33:39:36:D2:BE:B4:06:89:85:F0:B3:F7:99:D5:47:8B:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N7qOMzk20r60BomF8LP3mdVHiw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d8b6cb-8ca8-405c-9662-b352f472fde3/1/_XKJ1vMcAoNwKYUa2muLceutuEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d8b6cb-8ca8-405c-9662-b352f472fde3/1/N7qOMzk20r60BomF8LP3mdVHiw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.234.0/24
Signature Algorithm: sha256WithRSAEncryption
85:33:2d:30:58:c3:fd:7d:07:ee:d6:35:d5:33:10:5a:8e:b5:
46:d2:4e:8d:94:79:a0:a6:e4:5e:7d:de:8c:97:09:4d:1b:b9:
1a:98:fa:19:23:93:9f:55:b6:49:d9:c0:ea:86:2c:f6:a8:05:
4a:f4:ec:38:5d:80:8a:a1:0b:6f:69:c5:e4:bb:57:8d:16:5a:
52:ee:aa:40:70:e4:54:6f:6b:b5:fd:df:ca:4c:46:5a:80:f7:
19:34:03:0c:3b:f3:7f:a1:2f:de:f4:cb:80:73:12:00:9d:57:
b7:dd:04:3e:da:2b:1c:d1:d3:ec:fe:2e:b0:56:7f:dd:e6:42:
e8:c4:0f:b8:52:58:f7:58:72:93:a8:da:5f:cf:59:6e:69:80:
8e:cc:92:f5:44:5d:9a:be:ab:40:94:10:68:18:4f:c7:c0:62:
e8:30:4e:0f:14:52:6c:63:cb:9a:1f:dc:c3:ad:48:7d:17:09:
ae:66:7b:0c:2b:a4:a2:02:fc:20:ad:b7:54:61:1a:8e:c7:82:
f1:cf:16:62:8d:5a:88:09:da:12:47:58:8f:5a:fe:e3:4e:d5:
38:02:11:23:7f:63:c4:ce:d3:16:20:9b:82:70:b0:2a:3d:10:
b8:5e:8f:f1:c8:07:00:7e:de:f2:8e:93:fe:d1:79:62:a4:4e:
76:99:fb:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:59 2024 by rpki-client on console-fra.rpki-client.org