Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/z2SfWmXMRq9L85p4y9sBY5XIYMw.roa
File: z2SfWmXMRq9L85p4y9sBY5XIYMw.roa (raw, json)
Hash identifier: YUAjh2/rpHLxENoTetitNXbbdln91SWkntNG8umqPIM=
Subject key identifier: CF:64:9F:5A:65:CC:46:AF:4B:F3:9A:78:CB:DB:01:63:95:C8:60:CC
Certificate issuer: /CN=a750097953aa14e77350776b62fc37be3f38f402
Certificate serial: 01863B4A44B0F77649D4D9067EA2B247A412
Authority key identifier: A7:50:09:79:53:AA:14:E7:73:50:77:6B:62:FC:37:BE:3F:38:F4:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p1AJeVOqFOdzUHdrYvw3vj849AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/z2SfWmXMRq9L85p4y9sBY5XIYMw.roa
Signing time: Fri 10 Feb 2023 12:26:08 +0000
ROA not before: Fri 10 Feb 2023 12:26:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212982
IP address blocks: 91.219.23.32/27 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:4a:44:b0:f7:76:49:d4:d9:06:7e:a2:b2:47:a4:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a750097953aa14e77350776b62fc37be3f38f402
Validity
Not Before: Feb 10 12:26:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf649f5a65cc46af4bf39a78cbdb016395c860cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8d:a5:cc:b7:a3:b7:cf:48:ea:83:97:d4:dd:
58:f1:e5:35:19:81:8f:c9:a4:35:8d:8b:1e:8a:46:
58:ed:3f:2e:cd:27:92:83:0b:ee:0f:af:ce:cd:21:
47:ff:d2:43:67:64:89:2f:49:0b:6c:24:a2:31:aa:
82:7c:82:73:43:04:51:2c:c0:89:59:e9:e0:f8:18:
80:31:02:d1:74:2e:6f:8c:91:a9:6c:36:91:22:9c:
66:2c:8b:c6:b2:1a:40:02:16:ef:01:04:d5:eb:21:
ee:5b:ff:e2:d7:8d:55:62:80:0d:ec:93:30:9a:3c:
65:21:a1:93:13:de:63:e9:4a:f3:0b:00:9d:12:65:
f9:cc:34:4c:5b:1c:c2:9e:44:91:54:cd:0f:2b:77:
61:27:bf:60:53:6d:c1:20:c8:f6:34:cd:64:e5:76:
45:3b:c1:41:19:0a:2e:dd:dc:3a:bb:46:ff:c0:b0:
8d:d6:4c:c0:21:e4:fa:53:d3:40:c6:50:d5:11:f7:
ab:10:42:3a:c9:a5:fd:9f:e6:4d:dd:52:a0:1c:f2:
b5:bc:b3:94:a0:f6:4c:4e:25:ae:41:04:e2:00:c2:
5c:79:9c:ce:71:71:62:75:19:8a:d2:80:57:21:06:
e6:e5:2b:be:69:23:5d:57:df:b7:6a:94:81:9d:48:
1e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:64:9F:5A:65:CC:46:AF:4B:F3:9A:78:CB:DB:01:63:95:C8:60:CC
X509v3 Authority Key Identifier:
keyid:A7:50:09:79:53:AA:14:E7:73:50:77:6B:62:FC:37:BE:3F:38:F4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p1AJeVOqFOdzUHdrYvw3vj849AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/z2SfWmXMRq9L85p4y9sBY5XIYMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a9e9a8-eabe-4cb0-b7ca-839dd1e5dd1a/1/p1AJeVOqFOdzUHdrYvw3vj849AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.23.32/27
Signature Algorithm: sha256WithRSAEncryption
7a:2b:5d:3c:eb:28:d0:58:75:4f:00:c0:37:72:14:1a:c6:54:
6f:73:a6:b9:dc:38:76:ee:58:83:54:70:ad:63:a0:02:d6:cb:
24:d9:96:50:27:65:10:c0:b5:bf:2b:5c:ff:11:07:7a:46:48:
93:df:eb:a2:a1:a5:58:41:3b:2e:45:bd:5c:de:25:bb:3f:54:
1f:82:3d:a6:72:e5:b7:13:20:52:6b:b5:db:6c:3b:fd:fe:88:
10:cf:c0:a2:ee:60:a3:45:4b:d8:59:7e:71:d1:fb:90:70:56:
91:6e:d7:d1:37:d4:d7:77:df:f9:31:ca:5b:64:c3:9d:09:cc:
46:fb:9e:a1:ef:4d:4c:73:56:5a:e4:ea:60:40:a1:43:88:d6:
ce:db:26:41:5d:ef:79:c3:ef:17:60:85:42:cf:f7:be:3d:c0:
a5:3e:d2:58:00:bd:5c:3f:52:4a:81:49:a5:b2:de:a2:70:25:
29:4b:dd:09:80:a2:93:81:57:5f:1a:4d:b7:84:4f:6a:e1:f1:
24:78:f2:d7:dd:39:52:89:75:b1:df:86:6d:9d:c2:07:7d:25:
48:52:30:27:95:79:6b:b1:57:e3:8b:87:f0:2d:88:50:ba:e6:
eb:41:2b:bf:4d:86:eb:53:be:a6:67:d9:03:6b:7e:69:be:35:
fb:94:7d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:57 2024 by rpki-client on console-fra.rpki-client.org