Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/G4DSSt9pmVCEQk6W8CtTv71EIyA.roa
File: G4DSSt9pmVCEQk6W8CtTv71EIyA.roa (raw, json)
Hash identifier: 6F1QuJTS5yV3BaAWmbVgOy0Sq0m7vTREXZsTt+qYtvE=
Subject key identifier: 1B:80:D2:4A:DF:69:99:50:84:42:4E:96:F0:2B:53:BF:BD:44:23:20
Certificate issuer: /CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Certificate serial: 0185704BC8A8AE2E51A2386219A1669ACB52
Authority key identifier: E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/G4DSSt9pmVCEQk6W8CtTv71EIyA.roa
Signing time: Mon 02 Jan 2023 02:24:52 +0000
ROA not before: Mon 02 Jan 2023 02:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 91.190.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:c8:a8:ae:2e:51:a2:38:62:19:a1:66:9a:cb:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Validity
Not Before: Jan 2 02:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b80d24adf69995084424e96f02b53bfbd442320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:32:c3:83:cc:c6:ca:9d:72:cf:b0:bb:ec:0e:
7e:b7:42:44:18:1e:59:b8:75:d5:79:53:fc:f7:b8:
9c:29:b3:48:a6:d3:ab:85:cb:64:28:bf:e8:f7:05:
b4:15:2e:da:be:d2:a3:a3:c2:cd:cc:da:dc:f0:0d:
08:84:3a:21:56:3e:45:fc:70:86:87:0f:7b:6e:c7:
d7:49:c1:4b:ab:4a:38:92:26:2c:36:1d:8a:33:c6:
2f:e0:92:44:73:6c:26:47:16:98:c8:10:65:2e:67:
de:96:b5:9b:8f:48:f0:56:7e:0c:e8:bd:c9:0f:77:
4f:76:04:61:c7:2d:c1:06:59:b0:ea:52:54:77:51:
82:4a:5a:a2:a5:d5:d8:b2:01:e9:7e:95:b3:56:3a:
e5:c3:7f:d5:1d:a6:ac:3b:20:01:23:57:9b:6f:f7:
25:df:c9:49:a5:ef:2d:c7:d8:6e:2f:e1:8a:7d:c7:
d7:c6:a0:ac:42:8b:a8:c7:75:86:31:d4:a2:48:e5:
9b:be:50:02:c2:48:d6:fb:f2:d3:79:20:c8:7f:22:
e8:62:b9:36:91:59:cc:b1:f0:40:93:54:96:7f:f4:
9a:54:ee:a3:f6:41:88:3b:c2:d1:1f:c2:dc:11:2d:
15:f1:1c:84:d5:60:46:6f:ed:55:a6:bb:1b:b6:70:
20:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:80:D2:4A:DF:69:99:50:84:42:4E:96:F0:2B:53:BF:BD:44:23:20
X509v3 Authority Key Identifier:
keyid:E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/G4DSSt9pmVCEQk6W8CtTv71EIyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/6AIkMlKcjDzGq3ECROXwNSA-cKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.154.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:7f:e3:ab:1c:82:5b:b5:6c:c1:40:24:4b:d6:ac:4f:6b:db:
da:ed:68:9f:b7:d1:4f:27:f1:cd:94:d8:8c:3d:08:a9:1a:b3:
3b:d9:5d:12:86:35:c0:9f:4b:66:4f:c6:88:a5:0b:bf:d9:cf:
02:63:ba:c0:4f:46:2c:86:e6:35:05:ed:68:e8:d2:4c:fa:2b:
4a:cb:a1:1d:f5:d5:76:4a:7e:d6:24:c1:5b:55:83:84:a0:45:
73:41:37:05:d6:49:de:f3:1f:7d:f6:fb:8c:af:21:80:cb:3e:
3b:03:8f:65:b1:9e:ce:fa:6b:b3:02:14:6d:f8:ff:08:e9:97:
b5:ad:cb:5b:68:a4:4a:68:74:a4:90:e7:d2:f5:44:26:be:a1:
a7:bd:55:24:95:32:bb:8e:8e:6c:8e:e4:a7:62:73:3c:37:62:
02:b3:cf:d2:6e:dd:69:62:73:e8:db:41:96:1c:8a:ff:34:78:
53:ac:a3:3f:69:c5:26:dd:61:f3:6f:02:97:46:f7:3c:c9:67:
c5:2d:53:62:c4:52:bb:7d:6f:cf:63:da:af:a1:7b:15:1e:4d:
81:d8:ec:ed:cc:15:4c:66:35:f0:8b:d7:07:ee:92:bb:7a:0b:
19:85:d8:fe:4e:21:1b:82:d6:1e:a0:bf:bd:fd:f1:ea:e0:cb:
ab:60:0e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 3 09:03:20 2023 by rpki-client on console-fra.rpki-client.org