Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/aQpFkYMyYsDmXczwg0Ew7dOWJck.roa
File: aQpFkYMyYsDmXczwg0Ew7dOWJck.roa (raw, json)
Hash identifier: 63zdbS+VycaziLRphruIrOS1V8TKoKSZM8POASKiOJQ=
Subject key identifier: 69:0A:45:91:83:32:62:C0:E6:5D:CC:F0:83:41:30:ED:D3:96:25:C9
Certificate issuer: /CN=28fb591ec304faed9c22da142d52442cdd642e26
Certificate serial: D7EE
Authority key identifier: 28:FB:59:1E:C3:04:FA:ED:9C:22:DA:14:2D:52:44:2C:DD:64:2E:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPtZHsME-u2cItoULVJELN1kLiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/aQpFkYMyYsDmXczwg0Ew7dOWJck.roa
Signing time: Tue 26 Apr 2022 15:14:25 +0000
ROA not before: Tue 26 Apr 2022 15:14:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49446
IP address blocks: 91.213.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55278 (0xd7ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fb591ec304faed9c22da142d52442cdd642e26
Validity
Not Before: Apr 26 15:14:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=690a4591833262c0e65dccf0834130edd39625c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4b:93:f4:6f:3b:d2:12:88:c8:b5:b8:55:dc:
c5:c3:29:49:e1:8c:e7:de:63:bc:09:4a:7e:6a:24:
ca:14:ca:c5:8a:7c:bf:86:6e:93:c8:91:5f:f6:5e:
69:20:9e:c0:b7:c6:7b:f1:01:50:56:e6:cb:1b:e3:
51:a0:cf:2f:cb:75:16:00:43:69:f9:65:d4:20:4c:
32:36:d5:22:66:44:1e:b6:b3:c8:59:47:6f:0b:1b:
67:0e:c0:d8:b9:f1:f2:b0:98:cf:68:3a:7d:fd:da:
02:8c:09:16:9f:35:e1:83:0e:2e:b9:8e:85:63:99:
c8:41:eb:ad:25:3b:b8:bf:6f:c9:f7:17:34:44:99:
da:f9:e8:39:aa:34:d8:d7:30:8c:34:cd:c0:c2:a5:
13:3f:99:e4:ce:40:1b:89:4b:68:75:01:3b:17:e5:
d3:11:05:56:16:1d:85:7e:34:8d:b6:b5:a2:a8:e3:
22:70:69:d9:e5:8b:fa:e4:86:57:aa:56:96:0e:c7:
e0:01:45:21:b8:6e:a4:fd:50:d2:ec:da:bf:3a:fa:
09:c5:7b:4a:a4:0d:f6:41:85:0f:dc:cc:6b:15:9e:
29:90:37:8a:ea:c1:66:eb:ca:a8:24:c9:ae:fb:3d:
b6:1f:0b:b7:7b:b0:f6:87:1f:0f:18:7a:7e:70:0c:
fc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0A:45:91:83:32:62:C0:E6:5D:CC:F0:83:41:30:ED:D3:96:25:C9
X509v3 Authority Key Identifier:
keyid:28:FB:59:1E:C3:04:FA:ED:9C:22:DA:14:2D:52:44:2C:DD:64:2E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPtZHsME-u2cItoULVJELN1kLiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/aQpFkYMyYsDmXczwg0Ew7dOWJck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/KPtZHsME-u2cItoULVJELN1kLiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.2.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4c:24:b7:a3:25:29:63:1d:ab:bd:50:66:0d:86:cc:b7:40:
1a:89:dd:4c:7a:2c:15:54:b8:cf:ba:fc:c4:1e:9e:fc:07:7f:
31:f3:1c:57:58:9d:75:10:1a:c2:bd:00:ea:48:72:a9:34:ab:
9c:95:16:3c:15:50:39:14:4b:0a:85:16:45:11:c7:20:55:43:
9e:bd:7d:20:7c:2b:e4:e4:d0:54:c4:ff:49:1d:0a:54:7a:4e:
a0:12:4c:e5:27:13:81:e7:36:b0:c2:d0:0b:21:29:ed:ef:7d:
fb:be:18:45:3d:dd:42:5b:a6:17:08:a8:f2:8b:0b:12:33:7e:
3b:14:80:ca:67:92:2b:c9:75:b6:dc:3f:b5:d1:d1:4f:a8:f2:
a6:ac:c0:57:79:d4:e6:e0:51:59:9a:67:9c:6f:71:ef:56:f1:
6b:7b:d9:66:69:ca:ab:09:ca:6b:d2:65:69:8e:92:53:79:4a:
a9:02:fc:13:77:8f:ea:29:5e:95:76:02:15:07:4c:8c:43:a7:
c4:d8:8e:68:e9:e5:71:7e:1f:43:1f:64:df:92:2b:f5:f7:33:
9f:bb:b4:57:6c:96:18:17:b6:8b:66:82:88:00:58:2b:a0:ea:
cf:85:18:4d:3d:62:42:a5:08:11:ad:92:23:8d:fb:0a:af:f0:
68:e3:45:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org