Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/67e2a1-efc5-400a-a67d-fe573ba26ddb/1/u3Fg_zNUARvQF7NXbE_6liSKGMY.roa
File: u3Fg_zNUARvQF7NXbE_6liSKGMY.roa (raw, json)
Hash identifier: b2zpkgQ97VfEOkOgxL9AcJv90c4NccAC/ArK9pidAa4=
Subject key identifier: BB:71:60:FF:33:54:01:1B:D0:17:B3:57:6C:4F:FA:96:24:8A:18:C6
Certificate issuer: /CN=e5e24b031683bb1a8ca16c2a5c95dcc8a8e3e1a5
Certificate serial: 018CC5012E8EB7C5E088A552F0431D7C23C7
Authority key identifier: E5:E2:4B:03:16:83:BB:1A:8C:A1:6C:2A:5C:95:DC:C8:A8:E3:E1:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5eJLAxaDuxqMoWwqXJXcyKjj4aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/67e2a1-efc5-400a-a67d-fe573ba26ddb/1/u3Fg_zNUARvQF7NXbE_6liSKGMY.roa
Signing time: Mon 01 Jan 2024 12:30:38 +0000
ROA not before: Mon 01 Jan 2024 12:30:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60064
IP address blocks: 91.132.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:2e:8e:b7:c5:e0:88:a5:52:f0:43:1d:7c:23:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5e24b031683bb1a8ca16c2a5c95dcc8a8e3e1a5
Validity
Not Before: Jan 1 12:30:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb7160ff3354011bd017b3576c4ffa96248a18c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:49:3e:8f:62:cb:14:8e:f9:e0:9c:85:da:
a1:37:e2:2a:3a:fe:0c:7e:0e:9c:4c:8f:b5:0e:99:
53:cd:e6:d6:bf:f8:9b:bf:10:32:6c:8b:0f:32:f4:
55:53:2d:3e:97:1d:a6:ef:0a:9a:a9:cd:14:40:53:
b3:83:92:68:9d:a6:fb:33:c7:04:0b:51:40:09:d0:
74:7c:e8:b5:c4:a6:6a:92:8c:17:0d:a1:8a:6a:d7:
09:e5:ab:d8:3e:63:bf:fb:a3:39:81:06:42:e1:89:
3a:86:0f:57:88:bb:ca:6d:00:5b:5d:95:e1:04:9c:
4d:3a:52:a3:6e:c0:14:14:fd:bd:a3:87:43:b2:36:
83:00:a5:35:83:fa:31:5b:c5:96:fc:05:69:47:bd:
ae:93:0b:a6:bc:b6:7a:1a:4f:c6:3b:cc:c4:13:07:
20:ed:fb:2c:0b:78:65:67:9c:2f:ee:6d:28:17:61:
93:b8:96:37:65:c8:3f:4f:f4:7d:4b:69:5f:7c:92:
44:99:ba:8a:06:ab:e4:f8:b5:f0:de:26:21:93:1e:
40:60:f7:cb:fe:14:db:33:f7:01:c6:64:77:8d:be:
54:4d:5b:06:2d:d0:33:e8:94:b1:d6:55:ec:16:2b:
13:5b:95:e6:1b:d4:6d:de:42:98:c4:17:40:a5:15:
7b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:71:60:FF:33:54:01:1B:D0:17:B3:57:6C:4F:FA:96:24:8A:18:C6
X509v3 Authority Key Identifier:
keyid:E5:E2:4B:03:16:83:BB:1A:8C:A1:6C:2A:5C:95:DC:C8:A8:E3:E1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5eJLAxaDuxqMoWwqXJXcyKjj4aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67e2a1-efc5-400a-a67d-fe573ba26ddb/1/u3Fg_zNUARvQF7NXbE_6liSKGMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67e2a1-efc5-400a-a67d-fe573ba26ddb/1/5eJLAxaDuxqMoWwqXJXcyKjj4aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.225.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c5:54:a5:38:c3:15:6b:0f:f3:cd:62:94:4d:41:4a:f1:09:
de:ca:f5:6b:71:50:5d:e8:97:37:9f:fb:72:53:97:7c:5f:39:
4c:ec:39:14:d2:5d:88:1d:3e:e5:3e:75:23:36:a8:e0:37:0b:
d0:ed:5e:da:ca:10:ee:b9:c2:9f:e0:8e:24:ed:cc:64:36:fc:
f7:8f:67:24:f0:43:6f:7e:08:8f:14:21:36:f8:92:da:ec:d4:
e0:c8:2c:d3:e7:af:03:3b:70:fc:7c:94:3a:0c:82:b7:29:a3:
12:0d:17:57:ba:88:25:44:fd:d0:c2:cc:08:7c:9d:62:96:84:
48:9e:27:30:ca:3a:a0:7a:17:27:b1:96:91:80:0e:80:d7:fd:
57:1f:6b:b8:da:8b:8d:07:18:1f:78:f6:02:42:98:a8:6b:7c:
db:5c:23:fb:7b:dc:84:9a:ac:c9:cf:ab:d9:de:a6:cd:a8:b1:
33:b8:ea:81:d9:b3:bd:33:01:bf:3f:9f:e9:09:4c:38:3a:45:
82:8d:d7:de:25:79:10:49:cc:ef:00:96:0b:d0:66:f6:57:9d:
7a:99:eb:dc:f7:4b:a6:d3:33:e8:3a:e1:cd:7a:01:81:0b:77:
a9:85:86:f9:93:b8:c4:6d:52:7e:b9:bc:7b:dc:6f:8c:ac:9e:
f5:0b:b7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:04 2024 by rpki-client on console-fra.rpki-client.org