Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/291ea3-67f1-46c1-8873-1fb189b8a031/1/zL8NAKNSTtg46E_P1ZU4shnvUXA.roa
File: zL8NAKNSTtg46E_P1ZU4shnvUXA.roa (raw, json)
Hash identifier: TrZQBB7qd2Im6aNVm45VDJVKBM/tBSoCVoqMfnkJLt4=
Subject key identifier: CC:BF:0D:00:A3:52:4E:D8:38:E8:4F:CF:D5:95:38:B2:19:EF:51:70
Certificate issuer: /CN=0e9441ddb80fd2e34663fcf309f9766130d22e47
Certificate serial: 0597FB16
Authority key identifier: 0E:94:41:DD:B8:0F:D2:E3:46:63:FC:F3:09:F9:76:61:30:D2:2E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpRB3bgP0uNGY_zzCfl2YTDSLkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/291ea3-67f1-46c1-8873-1fb189b8a031/1/zL8NAKNSTtg46E_P1ZU4shnvUXA.roa
Signing time: Sat 01 Jan 2022 03:55:40 +0000
ROA not before: Sat 01 Jan 2022 03:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204601
IP address blocks: 91.228.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93846294 (0x597fb16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e9441ddb80fd2e34663fcf309f9766130d22e47
Validity
Not Before: Jan 1 03:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccbf0d00a3524ed838e84fcfd59538b219ef5170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:21:4a:65:80:fd:14:e2:0a:46:56:9b:96:ef:
81:28:3f:3f:65:03:54:45:07:ba:05:62:d5:a3:91:
4d:d7:f2:26:86:97:f8:1b:1d:ea:b2:45:8d:40:c2:
6a:91:cd:13:82:66:4d:9c:e8:c6:09:26:93:8c:18:
64:a2:97:02:2d:3d:4c:91:fe:f2:31:61:97:b2:a1:
65:cd:44:0b:10:95:e7:cc:bc:ed:63:e8:5e:35:fc:
ac:27:2e:b6:5a:e4:f0:c9:0b:21:13:11:23:8c:98:
e3:46:e4:f2:08:94:39:63:40:36:ef:fb:2a:e4:df:
8c:98:20:20:9d:85:d0:89:10:82:8e:b8:28:f8:ed:
5c:20:33:64:0b:c5:c5:16:01:85:e2:4f:e8:d8:1c:
f8:b6:cd:c4:ca:d4:ce:c7:09:27:86:7c:11:3b:b6:
7c:2b:13:58:69:09:dd:26:eb:5b:04:f6:d9:ba:ed:
98:a0:69:1e:b2:c8:1b:35:97:2d:f5:27:62:43:19:
c6:64:8b:ae:7a:b0:1b:96:3f:d9:68:3f:91:0b:66:
e9:3b:b9:fa:85:8f:1a:92:80:85:01:a7:65:fc:cf:
20:f6:09:0a:ae:77:ca:f2:dc:1c:46:2a:df:ef:16:
48:57:7c:cd:ff:cb:13:0d:6d:a5:7b:e5:a9:5a:f2:
30:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BF:0D:00:A3:52:4E:D8:38:E8:4F:CF:D5:95:38:B2:19:EF:51:70
X509v3 Authority Key Identifier:
keyid:0E:94:41:DD:B8:0F:D2:E3:46:63:FC:F3:09:F9:76:61:30:D2:2E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpRB3bgP0uNGY_zzCfl2YTDSLkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/291ea3-67f1-46c1-8873-1fb189b8a031/1/zL8NAKNSTtg46E_P1ZU4shnvUXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/291ea3-67f1-46c1-8873-1fb189b8a031/1/DpRB3bgP0uNGY_zzCfl2YTDSLkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.56.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:7b:b5:d8:db:bc:e5:22:8b:8d:df:a9:07:3a:c0:2a:7d:4e:
37:ed:f2:c3:8e:88:af:ec:ec:f8:26:f8:a1:1e:2e:86:5b:8d:
59:36:7a:1e:1e:97:de:76:95:b6:2d:71:8b:f7:44:1a:d4:f4:
8a:46:d3:ae:a3:20:50:0b:e1:46:7b:5f:ae:cd:9b:56:0d:9d:
55:54:9d:62:76:93:e4:ab:1f:42:e5:e2:44:db:ac:e6:31:f9:
db:d0:52:6e:07:e0:c5:12:4f:10:17:90:49:46:af:9a:62:02:
a1:0a:48:cc:97:ff:96:9f:f4:dd:3a:fd:63:df:5a:e8:69:b6:
6c:fb:d8:49:fc:c9:de:69:dd:53:9c:09:9d:fa:a9:37:76:54:
d9:15:6d:59:ad:11:f5:45:0e:ee:6b:3b:77:7e:70:54:03:e7:
94:3c:d1:45:07:82:7d:61:4f:7e:d5:8b:bf:7d:aa:7b:e4:c2:
47:ed:78:80:4b:ab:56:0e:8f:dc:a5:1f:0a:4a:88:6e:8f:5d:
9c:ac:1c:69:63:15:d3:96:4f:2f:ec:51:da:53:aa:a5:db:c9:
e7:26:fd:b1:bb:46:05:f7:ba:8d:dc:87:f6:3a:5c:9e:d6:28:
0c:e6:8b:09:87:7f:29:90:51:8d:03:1a:5a:70:2f:34:1c:f6:
1c:db:e9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org