Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/IrnaPqD1ekmAP92j7gL-jy15RYM.roa
File: IrnaPqD1ekmAP92j7gL-jy15RYM.roa (raw, json)
Hash identifier: QvzWyRPuCeNpCuKCQcZbwpcVHLhK2wSNCONn9+Pp7m8=
Subject key identifier: 22:B9:DA:3E:A0:F5:7A:49:80:3F:DD:A3:EE:02:FE:8F:2D:79:45:83
Certificate issuer: /CN=5be23e3934f0b49a0bb965105c21420865a9222b
Certificate serial: 018841E0644F01AEBC861054FB331A1AB1A8
Authority key identifier: 5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/IrnaPqD1ekmAP92j7gL-jy15RYM.roa
Signing time: Mon 22 May 2023 05:13:24 +0000
ROA not before: Mon 22 May 2023 05:13:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.234.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:41:e0:64:4f:01:ae:bc:86:10:54:fb:33:1a:1a:b1:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be23e3934f0b49a0bb965105c21420865a9222b
Validity
Not Before: May 22 05:13:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22b9da3ea0f57a49803fdda3ee02fe8f2d794583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:2e:9a:80:c4:8c:53:69:4e:24:1f:43:e0:45:
69:0a:d5:7f:00:b3:ec:fc:4b:9b:30:8d:0b:73:40:
69:fa:6d:aa:06:90:f0:81:e5:22:19:4e:38:9b:36:
8d:cf:6f:3e:74:f7:49:31:ed:39:69:e3:54:26:b4:
b3:e4:ee:0f:9e:07:b5:98:df:47:94:09:61:ea:e9:
cb:ad:37:e5:2f:d7:bf:84:d5:42:90:1a:c7:31:a7:
5e:62:11:48:7d:81:9e:26:ae:83:75:d8:19:83:23:
b7:c7:34:98:fe:6f:ca:59:6b:f2:74:b7:1b:1c:eb:
91:55:0a:5c:0f:7d:d9:de:f6:db:90:14:16:19:c9:
71:f2:75:2e:0e:a9:bd:d3:4b:bf:9d:d4:86:a1:bb:
62:e9:1d:dd:32:7d:17:2b:6e:fd:0a:f3:8f:5a:65:
ca:f6:54:67:d9:8c:1e:89:83:d8:ca:1f:ce:81:f0:
c4:2a:2d:8d:6d:31:e6:d9:ab:8b:cc:cc:91:85:4a:
ed:6a:b7:58:8b:9e:51:d9:f9:d9:87:e1:02:d0:bd:
6f:9d:ca:70:d0:d1:82:47:7c:ee:5c:f6:f8:af:0d:
ef:a3:2b:ad:60:70:60:52:1d:cb:71:73:89:da:61:
38:75:63:92:91:42:cc:a2:e1:05:7a:60:ce:24:75:
d1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B9:DA:3E:A0:F5:7A:49:80:3F:DD:A3:EE:02:FE:8F:2D:79:45:83
X509v3 Authority Key Identifier:
keyid:5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/IrnaPqD1ekmAP92j7gL-jy15RYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/W-I-OTTwtJoLuWUQXCFCCGWpIis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.192.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:34:81:9e:a5:51:8d:33:bc:19:f2:2a:08:ce:dc:7c:da:41:
8b:e1:e4:72:fc:58:8c:a1:5f:55:67:99:64:87:10:8b:77:03:
78:0f:bb:bf:68:39:fe:86:6c:52:e7:cd:6b:d5:b1:f6:6c:73:
72:32:f5:1e:6d:34:e2:63:67:2c:b9:04:d9:a0:6d:b4:1e:a4:
63:62:95:70:34:f8:3a:55:69:bf:14:19:77:f5:2a:e8:02:0f:
f1:f0:75:89:0e:25:92:e1:6d:91:12:55:4b:cd:bf:89:3b:76:
93:40:59:2c:e2:7e:db:f0:8e:61:a7:4e:d1:02:4d:5c:c0:7b:
d1:10:73:b0:05:7e:8e:f8:19:80:56:21:db:1b:8f:e7:f5:94:
38:dc:91:02:a6:91:e5:ac:42:92:8b:8a:f2:2a:3e:f7:52:21:
72:6d:e9:60:f5:50:5f:89:b1:ab:d3:ee:c3:a7:39:2d:9c:0c:
09:35:ff:5a:89:6a:4e:bf:28:64:9f:70:08:a4:4d:ed:02:6d:
8e:60:18:8d:a1:e8:63:c8:1e:56:c2:44:ed:10:65:ef:00:7d:
dd:91:b0:7e:ad:da:2b:ae:30:a9:88:8e:6c:b2:11:9d:c9:1c:
e0:b7:01:b6:e4:93:06:d8:c6:1a:4f:25:b7:b2:89:07:8c:38:
6c:46:b5:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:15 2024 by rpki-client on console-fra.rpki-client.org