Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/SuO7-91VDZLTGNvASkQzLFxwVk4.roa
File: SuO7-91VDZLTGNvASkQzLFxwVk4.roa (raw, json)
Hash identifier: pTrxlciwuujwGBCbqHPy8LfF2xoi3q589Fkcl++atec=
Subject key identifier: 4A:E3:BB:FB:DD:55:0D:92:D3:18:DB:C0:4A:44:33:2C:5C:70:56:4E
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 31BF6234
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/SuO7-91VDZLTGNvASkQzLFxwVk4.roa
Signing time: Sat 02 Apr 2022 08:19:43 +0000
ROA not before: Sat 02 Apr 2022 08:19:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39396
IP address blocks: 109.121.138.0/24 maxlen: 24
109.121.139.0/24 maxlen: 24
109.121.136.0/21 maxlen: 21
109.121.136.0/24 maxlen: 24
109.121.137.0/24 maxlen: 24
109.121.142.0/24 maxlen: 24
109.121.143.0/24 maxlen: 24
109.121.144.0/23 maxlen: 23
109.121.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 834626100 (0x31bf6234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Apr 2 08:19:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ae3bbfbdd550d92d318dbc04a44332c5c70564e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:24:67:fc:da:a1:15:66:c4:2d:38:ed:29:36:
cb:99:4f:ee:1b:44:8c:d7:91:de:69:0e:29:6a:92:
a5:cf:1e:f5:81:95:8f:9b:17:40:aa:80:1e:c7:69:
c2:aa:43:22:74:00:e0:25:27:db:d5:a2:06:aa:8e:
f7:cd:ee:0e:a0:ce:38:90:32:cc:4e:dd:61:e6:79:
49:88:a0:e5:06:13:77:46:74:50:08:04:17:05:26:
ea:c2:78:da:8c:00:44:ee:bd:0d:d0:8c:30:da:73:
f8:c6:14:16:57:8f:6f:13:ff:bb:a7:f2:3e:d6:83:
5f:d2:c7:67:07:00:bf:3a:e5:d3:15:0c:8b:bb:17:
85:b8:80:ae:a2:56:6c:97:c3:6b:51:d8:41:29:38:
6a:59:b4:dd:a2:d5:fb:ce:2b:ee:c9:e1:60:43:d0:
2b:06:e4:43:07:e3:b4:6a:4f:67:6a:0b:94:1a:36:
ca:25:8d:e3:40:0d:2b:2e:36:46:a0:cc:fb:98:d7:
06:8f:87:f1:cc:9e:08:a8:12:95:3d:40:1c:1f:31:
03:1d:17:18:ac:9d:27:b0:c6:ed:b6:d8:0a:fe:8f:
43:0b:c0:b5:42:1c:11:c3:21:23:d0:b0:f2:83:eb:
a9:33:88:9c:f4:cd:88:3b:67:a6:0f:45:ac:5e:8a:
e3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E3:BB:FB:DD:55:0D:92:D3:18:DB:C0:4A:44:33:2C:5C:70:56:4E
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/SuO7-91VDZLTGNvASkQzLFxwVk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.136.0-109.121.145.255
109.121.154.0/24
Signature Algorithm: sha256WithRSAEncryption
53:39:6a:48:86:1d:d6:1b:e9:b3:29:1c:1c:6b:08:0e:c3:47:
ef:41:b7:a7:d8:b8:dd:43:64:0b:54:37:5a:fc:92:5d:9d:fa:
a7:1f:9f:b8:68:ab:36:d9:2b:ea:6d:87:54:f1:20:22:28:b3:
06:96:b0:8c:00:c6:94:a3:af:d9:85:3f:23:7a:f0:62:08:f5:
f6:fc:f2:c1:21:f6:05:b4:34:95:97:0f:61:65:65:9c:25:95:
92:ea:3c:9a:16:3b:2e:2f:18:04:1d:01:84:74:2d:c4:88:f8:
83:30:a7:6e:ef:38:bc:05:47:51:ff:d9:61:17:a9:d2:e3:c6:
79:a2:9d:2b:68:0b:72:19:68:36:26:c2:33:17:c6:12:47:ab:
6a:f7:fc:08:fc:8a:f5:e9:84:fd:d5:15:dc:9d:4b:aa:85:26:
32:95:0d:f2:ab:d8:2d:81:ce:5e:42:60:7b:85:63:13:87:1a:
96:c0:d5:43:8e:df:8e:f8:0f:1b:04:b1:44:41:a9:b9:61:f3:
2a:e4:7a:65:b6:b6:57:30:03:eb:5c:d4:3e:60:59:c2:44:aa:
7b:b6:0f:cb:c6:60:47:00:ca:9d:45:ef:2e:6e:bd:cd:81:fe:
1c:ea:c4:a4:4e:d6:0b:74:70:fb:43:f2:f4:3e:02:b9:42:e7:
aa:0c:4a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org