Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/84b6a3-e5d8-46ac-8a3b-fd264b40f809/1/zCYXGRnlVOdftOMz90EwuaMe1J8.roa
File: zCYXGRnlVOdftOMz90EwuaMe1J8.roa (raw, json)
Hash identifier: w5nYsffBPm+MIrpJYMGrYcTFXG/ochA8PVpDCQ7I9ug=
Subject key identifier: CC:26:17:19:19:E5:54:E7:5F:B4:E3:33:F7:41:30:B9:A3:1E:D4:9F
Certificate issuer: /CN=e368a8f67d62a84c5d6937960018704cc7758f76
Certificate serial: 09F271BD
Authority key identifier: E3:68:A8:F6:7D:62:A8:4C:5D:69:37:96:00:18:70:4C:C7:75:8F:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/42io9n1iqExdaTeWABhwTMd1j3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/84b6a3-e5d8-46ac-8a3b-fd264b40f809/1/zCYXGRnlVOdftOMz90EwuaMe1J8.roa
Signing time: Sat 01 Jan 2022 16:06:38 +0000
ROA not before: Sat 01 Jan 2022 16:06:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5524
IP address blocks: 91.189.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166883773 (0x9f271bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e368a8f67d62a84c5d6937960018704cc7758f76
Validity
Not Before: Jan 1 16:06:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc26171919e554e75fb4e333f74130b9a31ed49f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a9:9a:1f:98:1c:2c:fa:67:74:2f:56:03:ee:
f0:3b:2f:08:f5:6c:80:28:95:58:8c:30:42:6f:56:
ca:f9:36:09:8c:55:a4:11:03:26:5f:6e:fd:53:b2:
cb:e3:21:50:50:ba:e7:f4:43:49:53:82:e0:4a:9d:
ea:03:e8:51:3b:c6:f3:3a:d4:03:12:6c:b0:98:58:
b9:98:3c:b7:19:85:90:08:89:5d:e7:1f:47:23:dd:
a0:9c:b4:04:b3:43:e3:9f:ee:b6:14:0f:76:c7:b0:
8b:f9:36:4e:fa:48:9f:33:b2:a3:50:ac:67:09:48:
70:62:df:ef:4a:42:05:97:e7:55:97:73:c6:0c:bb:
53:ef:5a:ac:a4:49:cd:d1:94:56:c2:70:e0:29:5a:
d7:28:dc:6f:2e:00:fa:48:31:1b:f3:8c:0e:3f:2f:
d4:a6:d7:10:8c:98:88:85:a6:a0:53:61:7e:f7:d2:
84:a4:51:26:7e:36:af:a7:61:05:ce:f3:66:19:e6:
9c:96:b2:99:b0:f6:16:58:5f:2c:0c:b5:45:11:57:
56:ed:2e:d7:0a:71:35:f3:0d:4b:ae:67:63:5e:3d:
20:37:1f:9d:86:cc:4a:d1:c3:ba:e2:b0:a7:ab:e7:
5a:cf:d6:f1:08:17:b4:19:e3:05:b8:6c:50:2b:45:
e1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:26:17:19:19:E5:54:E7:5F:B4:E3:33:F7:41:30:B9:A3:1E:D4:9F
X509v3 Authority Key Identifier:
keyid:E3:68:A8:F6:7D:62:A8:4C:5D:69:37:96:00:18:70:4C:C7:75:8F:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/42io9n1iqExdaTeWABhwTMd1j3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/84b6a3-e5d8-46ac-8a3b-fd264b40f809/1/zCYXGRnlVOdftOMz90EwuaMe1J8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/84b6a3-e5d8-46ac-8a3b-fd264b40f809/1/42io9n1iqExdaTeWABhwTMd1j3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.189.208.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:c3:bc:3d:4e:eb:bd:db:6e:4c:f3:49:fc:79:c5:52:c8:5a:
a0:c4:85:59:f1:3a:61:25:d7:3f:73:a2:da:5c:9d:be:fb:05:
bf:1c:7c:f1:52:29:03:06:a6:68:9a:ab:3c:05:21:e0:bb:64:
9e:5e:e7:40:66:fa:be:7f:a5:7b:6b:48:73:d4:6e:6c:fe:b0:
91:66:a0:e5:54:8f:80:6b:8e:ec:c2:fb:62:4b:7d:fd:49:9b:
a5:b8:a9:b1:cf:37:7c:ee:db:5c:81:10:5f:e2:a4:8c:57:fa:
57:7a:66:d7:19:4f:31:5a:3d:95:24:4c:c0:3e:09:5f:ba:d5:
3b:d0:c6:48:46:86:cc:77:d9:37:dd:a9:26:01:aa:a0:6d:45:
35:c8:16:f2:0d:f8:2b:6c:c1:12:63:f4:2a:83:14:e6:2a:e0:
49:76:88:9f:11:91:63:a3:c4:b9:c2:a8:c0:6d:d4:66:4b:d4:
f2:5b:a6:c5:dc:9e:b4:81:fb:41:1e:c5:1b:3b:1d:14:4a:74:
a3:a3:db:64:4c:35:3f:a5:54:1f:44:11:fc:f4:ed:3b:c1:02:
d5:cf:be:12:86:af:9a:9b:95:96:18:79:eb:7d:bb:03:5d:97:
94:43:fc:fe:b0:10:24:13:5c:cb:d6:92:f8:b6:2f:1c:fc:5c:
cb:a0:f2:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-ams.rpki-client.org