Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/CTax4ow2RggbQx5RELRk1cpomCM.roa
File: CTax4ow2RggbQx5RELRk1cpomCM.roa (raw, json)
Hash identifier: nTEpyxp33Qn7pGATtidxy2yroYbQ5k6XMYIy1yMyYcE=
Subject key identifier: 09:36:B1:E2:8C:36:46:08:1B:43:1E:51:10:B4:64:D5:CA:68:98:23
Certificate issuer: /CN=5be23e3934f0b49a0bb965105c21420865a9222b
Certificate serial: 01856D8ACB5DCA060DA27A90C08C3A5EAA93
Authority key identifier: 5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/CTax4ow2RggbQx5RELRk1cpomCM.roa
Signing time: Sun 01 Jan 2023 13:34:50 +0000
ROA not before: Sun 01 Jan 2023 13:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.234.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:cb:5d:ca:06:0d:a2:7a:90:c0:8c:3a:5e:aa:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be23e3934f0b49a0bb965105c21420865a9222b
Validity
Not Before: Jan 1 13:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0936b1e28c3646081b431e5110b464d5ca689823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c1:79:de:41:47:f7:c3:04:60:dc:fd:82:d0:
55:8b:47:83:f9:bb:f5:64:c0:b0:97:aa:cb:69:f9:
fc:d7:6b:0c:7f:21:c4:17:00:c7:99:a5:f4:1e:1c:
28:86:08:17:29:0f:d9:72:fa:13:27:e8:4c:56:ec:
80:7c:cc:5e:e3:f3:35:2f:22:67:84:7a:66:71:3c:
2a:0d:c2:48:53:59:5e:90:69:d2:9f:68:15:15:22:
ad:46:8b:14:5c:10:d4:ae:11:58:b3:1c:ab:f8:57:
cb:b1:72:c9:c7:8c:8f:95:e2:c2:57:8b:2f:98:d9:
b2:07:3c:4f:85:d5:ac:c9:e7:b8:65:5c:94:4c:9a:
49:50:c4:c0:c8:d9:f9:16:ac:fd:40:fd:34:43:ba:
3d:05:de:83:7a:95:f0:99:73:42:a5:03:b4:c4:cf:
da:49:e6:0c:b9:62:35:b2:8e:ed:98:8b:6d:e5:e0:
25:36:db:74:f4:c4:73:1b:11:0a:b0:90:25:f2:0b:
92:1d:8b:c4:b1:a8:39:d0:37:07:6d:8a:a0:18:f6:
15:b0:84:07:ec:0e:ca:2e:38:0f:27:8e:0a:f0:39:
99:58:ee:0f:96:eb:6c:42:0a:a1:dc:a3:a0:07:b2:
03:b7:00:a9:e5:b3:15:62:e8:62:91:3a:20:37:63:
c3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:36:B1:E2:8C:36:46:08:1B:43:1E:51:10:B4:64:D5:CA:68:98:23
X509v3 Authority Key Identifier:
keyid:5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/CTax4ow2RggbQx5RELRk1cpomCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/W-I-OTTwtJoLuWUQXCFCCGWpIis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.192.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:58:d4:27:2f:5b:21:2c:8e:0b:d5:db:87:ac:bf:6d:05:3a:
f6:19:15:4f:9e:e0:7b:25:3c:75:06:b7:29:d6:46:d9:ea:a1:
eb:99:5b:0c:e5:7f:6e:ab:7d:b6:a9:2a:2d:8b:70:af:db:5a:
74:23:2e:29:87:06:7f:e9:63:4d:00:6d:1c:d9:3f:fe:6c:4d:
33:7f:d5:fe:29:95:62:6b:68:4f:70:e9:27:51:d2:d7:2a:61:
4a:17:b8:ff:d5:75:5a:47:cc:2e:d7:71:b5:34:e0:5b:2f:b5:
e8:10:8c:e3:47:b8:fc:cd:12:21:a1:14:b6:f9:16:8f:7f:b3:
e9:60:45:32:f8:da:04:7c:79:05:ff:3a:1e:b1:63:f7:f7:36:
1a:96:a3:09:3f:74:e4:26:08:6a:35:c2:d3:0a:15:82:3b:8b:
54:7e:a5:f6:10:c9:a2:25:64:00:4c:51:45:91:44:e2:45:2c:
02:98:02:ee:60:6e:81:16:c7:0c:ac:20:3d:2a:03:f2:75:19:
82:f8:6e:0d:13:d5:5d:b3:32:23:d4:01:95:e4:2d:43:87:e2:
ab:81:c5:46:c5:cc:a8:d2:ea:1e:4d:77:08:28:95:b5:bb:51:
f2:9b:d1:fb:38:33:d2:10:c5:cb:f3:ff:a2:c5:6d:36:f7:19:
62:76:42:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:15 2024 by rpki-client on console-fra.rpki-client.org