Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/CgqV2MBdIQur_nkvrxmrXjr2Wsw.roa
File: CgqV2MBdIQur_nkvrxmrXjr2Wsw.roa (raw, json)
Hash identifier: nrv2W0oSMkGOv7arWHTZ9JGjDlpQLbIuEECX8ltFz7c=
Subject key identifier: 0A:0A:95:D8:C0:5D:21:0B:AB:FE:79:2F:AF:19:AB:5E:3A:F6:5A:CC
Certificate issuer: /CN=5be23e3934f0b49a0bb965105c21420865a9222b
Certificate serial: 0173C413
Authority key identifier: 5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/CgqV2MBdIQur_nkvrxmrXjr2Wsw.roa
Signing time: Sat 01 Jan 2022 15:59:18 +0000
ROA not before: Sat 01 Jan 2022 15:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 91.234.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24364051 (0x173c413)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be23e3934f0b49a0bb965105c21420865a9222b
Validity
Not Before: Jan 1 15:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a0a95d8c05d210babfe792faf19ab5e3af65acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:95:2b:a0:2d:4a:52:9b:74:35:c2:c3:bd:78:
af:87:67:fa:0e:ed:27:59:64:70:a3:ea:3b:d0:75:
d5:30:b5:b8:45:15:15:60:f4:85:c8:75:dd:fa:c1:
4c:12:1d:3d:c7:fc:f8:9e:21:8b:f6:0e:42:aa:7b:
98:cc:91:26:2f:c5:4c:b3:5d:27:55:fb:2b:99:a0:
85:ec:17:04:8d:67:23:b2:69:41:e8:b8:61:44:f6:
6e:50:9d:98:da:f4:25:be:04:0d:62:4d:fe:ad:eb:
5e:80:21:a2:86:1f:c9:28:17:90:59:03:5b:a0:e7:
5d:ac:65:3a:b8:6d:e9:57:8a:fc:de:57:88:b5:24:
49:cc:90:4b:e7:a4:a1:dc:d1:bd:8b:e1:6d:a4:46:
66:17:7e:28:85:78:5c:1c:d9:47:0f:e2:be:8b:b6:
cf:5e:53:88:00:7f:7a:e7:40:62:08:8c:66:39:ac:
e7:8f:78:f6:f4:38:49:e5:e5:bf:8c:e3:f2:d3:5b:
9f:1b:16:aa:f9:43:03:e3:c2:5e:04:4e:ae:ef:ba:
77:2a:70:36:a3:24:ca:40:6c:af:0c:d3:a8:9c:60:
18:0e:bf:86:fa:11:13:69:c1:12:d2:9b:fc:ca:98:
f3:07:f5:ab:b4:21:0f:13:bc:9d:46:b8:96:a3:7a:
fc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:0A:95:D8:C0:5D:21:0B:AB:FE:79:2F:AF:19:AB:5E:3A:F6:5A:CC
X509v3 Authority Key Identifier:
keyid:5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/CgqV2MBdIQur_nkvrxmrXjr2Wsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/W-I-OTTwtJoLuWUQXCFCCGWpIis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.192.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a1:13:27:c5:67:5d:4c:a0:6c:a2:ec:ae:7b:c1:6c:f8:31:
69:4b:85:0b:fd:0f:95:0a:6a:10:6c:99:10:13:26:c9:ee:35:
97:fb:89:e4:a8:00:dd:95:5e:69:cf:ae:77:ed:53:57:78:8d:
44:f7:86:83:14:e7:48:fc:44:c1:a5:53:a5:c7:20:ad:99:7a:
21:a2:43:03:de:00:c6:c9:9f:fb:77:ce:0e:a0:ba:10:4d:b7:
75:f5:a0:32:8f:85:8b:45:6f:39:98:a9:66:d1:56:cd:06:57:
93:fb:f7:c4:d3:69:f9:ad:11:c8:18:8a:0d:0c:8c:09:1a:3b:
c7:94:f3:94:87:1c:14:b6:89:b4:b3:88:75:a3:73:ba:42:9e:
29:61:a3:ba:d4:33:ef:2a:54:3d:01:dd:a3:5e:23:7a:c8:2e:
1f:cd:e0:4c:a6:c6:3e:19:58:8a:32:ce:8c:60:d1:e0:b4:71:
6f:70:3e:4b:27:88:a5:95:22:62:b0:13:10:c3:d4:d0:c2:57:
08:52:5b:12:db:87:a8:e9:e0:16:fe:18:71:c4:28:ee:a1:a3:
f7:e6:4b:a5:93:fd:dc:23:96:86:82:36:56:2a:dc:7b:c1:eb:
1b:9b:86:e1:17:23:a2:d9:b5:89:0d:a9:8e:d3:5f:df:8f:20:
51:26:6b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:15 2024 by rpki-client on console-fra.rpki-client.org