Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/Bo5l0GGylbBCom_9GeeWBeoUWLg.roa
File: Bo5l0GGylbBCom_9GeeWBeoUWLg.roa (raw, json)
Hash identifier: P3DpnX8HGL+uX6+cgAe1vHSkOhuKy8TLCM5Vkzz8kcw=
Subject key identifier: 06:8E:65:D0:61:B2:95:B0:42:A2:6F:FD:19:E7:96:05:EA:14:58:B8
Certificate issuer: /CN=ece5feab893d52681ce5395de08f90830d3c322b
Certificate serial: 018CC649A6AFB47600849C2D71F06507F11A
Authority key identifier: EC:E5:FE:AB:89:3D:52:68:1C:E5:39:5D:E0:8F:90:83:0D:3C:32:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7OX-q4k9Umgc5Tld4I-Qgw08Mis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/Bo5l0GGylbBCom_9GeeWBeoUWLg.roa
Signing time: Mon 01 Jan 2024 18:29:24 +0000
ROA not before: Mon 01 Jan 2024 18:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51055
IP address blocks: 91.216.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:a6:af:b4:76:00:84:9c:2d:71:f0:65:07:f1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ece5feab893d52681ce5395de08f90830d3c322b
Validity
Not Before: Jan 1 18:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=068e65d061b295b042a26ffd19e79605ea1458b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:4b:9b:cf:71:1f:ff:5a:3c:d4:d3:5f:2d:87:
b4:95:26:6a:80:0d:a4:55:ca:3e:9a:aa:a1:bc:af:
4e:07:16:09:20:61:13:e0:6e:c8:5a:cf:8a:75:0e:
31:f7:50:a8:a2:91:5d:d6:8c:f8:0c:8d:2a:3a:fc:
5a:d3:f2:76:70:ff:0d:52:5f:f8:0c:36:9c:67:aa:
13:2d:87:e1:71:98:19:4a:fa:15:96:04:a0:c6:a9:
ad:ac:47:9c:81:72:b8:cb:0c:4d:d8:81:0a:96:d9:
41:83:7d:dd:c3:bc:2f:4d:2c:81:26:73:74:a9:bb:
25:3b:87:87:ee:f9:1f:06:46:7c:32:06:f7:9f:32:
e7:70:05:f1:3c:23:98:51:ec:21:ee:37:09:54:07:
72:d2:f3:00:0d:97:55:b8:c0:a8:b7:f5:92:ac:b8:
7a:62:b4:b6:bf:d2:9a:56:a4:44:a5:a8:7e:09:df:
25:07:2d:22:20:dd:64:ca:aa:7e:3a:cb:51:76:fa:
23:62:d7:30:44:b7:a7:7a:5f:56:4c:ac:82:ed:d0:
cd:11:67:55:b4:fe:dd:9a:a8:88:1f:83:b1:60:50:
46:d1:ff:95:e6:a4:40:ea:57:7f:28:c2:f8:10:ad:
b2:ac:8d:25:69:c9:72:e9:0a:76:94:cd:eb:7b:8d:
73:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8E:65:D0:61:B2:95:B0:42:A2:6F:FD:19:E7:96:05:EA:14:58:B8
X509v3 Authority Key Identifier:
keyid:EC:E5:FE:AB:89:3D:52:68:1C:E5:39:5D:E0:8F:90:83:0D:3C:32:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7OX-q4k9Umgc5Tld4I-Qgw08Mis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/Bo5l0GGylbBCom_9GeeWBeoUWLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/7OX-q4k9Umgc5Tld4I-Qgw08Mis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.112.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:e3:6b:90:fc:56:20:81:fe:12:95:fa:4e:ea:de:13:c6:f5:
e3:5a:4e:a3:40:3f:1c:f7:bd:aa:d0:d5:14:4a:54:56:6b:37:
36:61:72:59:4d:2c:a3:d9:f7:b7:ce:58:e3:9a:fc:70:c2:c5:
f1:cf:a0:72:b4:fc:76:be:f9:34:db:84:e7:ca:a5:6c:30:12:
c9:9a:45:af:ba:fb:54:77:04:9d:93:9b:2e:12:cb:16:39:72:
4f:df:52:69:a1:c6:96:4d:b1:64:d0:44:33:66:9e:8f:51:15:
6a:62:c4:b2:4f:f3:be:1f:f4:38:12:8e:32:c7:86:d7:54:fb:
1e:3e:76:a9:98:6e:cd:2b:8d:b7:a1:76:27:88:01:18:b8:0d:
22:c4:f7:90:c1:66:57:bc:8c:fa:f3:6e:30:35:e4:16:78:21:
87:3d:1f:8b:19:f1:e0:21:a7:50:e1:e2:65:12:1e:7f:38:aa:
bc:85:ac:22:95:15:c0:13:f0:e4:7a:7a:ca:c3:1d:66:bf:64:
7c:56:f7:41:b8:4f:09:5e:bb:a1:47:89:92:dd:76:bb:30:b0:
52:25:cf:32:5b:8a:40:3d:6f:9a:e9:39:e5:ec:00:15:04:3e:
35:ae:a9:c4:be:2c:d0:cc:7a:5a:31:5e:07:e2:f1:1f:93:2c:
7b:fa:31:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 12 18:07:11 2024 by rpki-client on console-fra.rpki-client.org