Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/JkqEezZqFooZzmcHgaHe5YngT7M.roa
File: JkqEezZqFooZzmcHgaHe5YngT7M.roa (raw, json)
Hash identifier: NOYvndXp7ZWzxzAOhslZo+ccIXs8BB27+NxsJWhI6Fs=
Subject key identifier: 26:4A:84:7B:36:6A:16:8A:19:CE:67:07:81:A1:DE:E5:89:E0:4F:B3
Certificate issuer: /CN=5be23e3934f0b49a0bb965105c21420865a9222b
Certificate serial: 01870519C44425C481827514D5EEB1BA28CE
Authority key identifier: 5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/JkqEezZqFooZzmcHgaHe5YngT7M.roa
Signing time: Tue 21 Mar 2023 16:56:27 +0000
ROA not before: Tue 21 Mar 2023 16:56:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 91.234.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:19:c4:44:25:c4:81:82:75:14:d5:ee:b1:ba:28:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be23e3934f0b49a0bb965105c21420865a9222b
Validity
Not Before: Mar 21 16:56:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=264a847b366a168a19ce670781a1dee589e04fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ac:d5:e4:01:52:ea:b4:ed:74:14:fb:d6:72:
9b:2a:eb:c1:38:84:90:d9:3f:a0:ac:85:e1:2d:bb:
06:60:29:c3:7a:16:c9:5c:ca:a1:de:9b:0f:15:ea:
5c:e3:d9:e5:ab:b3:c5:e9:a3:1f:8e:4f:17:e8:93:
1c:fa:de:bd:cd:53:42:e0:03:2c:60:6b:98:14:73:
47:1c:7e:fb:45:7e:6d:95:2c:8c:06:18:27:95:76:
d3:46:67:41:99:fd:6b:22:5f:d6:76:7f:50:fc:5c:
39:57:2e:40:2d:15:8a:f4:12:44:19:b5:3b:ea:86:
d4:53:16:9d:79:ea:58:49:93:34:34:30:1b:cf:8c:
68:2d:c4:47:c2:e5:f3:54:73:de:e4:4c:62:0b:06:
70:19:15:2d:61:ed:80:c4:a1:ee:75:5f:d5:39:dd:
d8:67:87:47:52:6a:63:49:31:8c:30:55:e7:4f:5c:
3b:d7:e3:42:1c:a1:79:ae:48:fc:df:c1:aa:ae:16:
b8:89:87:9c:f0:26:30:d7:72:61:50:43:ee:9e:c7:
8e:70:67:48:05:8c:76:94:15:04:63:02:9c:5e:5e:
cd:a8:69:a8:90:da:f7:fd:6f:66:3d:9b:b8:d4:97:
13:86:ec:72:2e:54:e4:fa:aa:df:3e:ba:5a:1b:3e:
b7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4A:84:7B:36:6A:16:8A:19:CE:67:07:81:A1:DE:E5:89:E0:4F:B3
X509v3 Authority Key Identifier:
keyid:5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/JkqEezZqFooZzmcHgaHe5YngT7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/W-I-OTTwtJoLuWUQXCFCCGWpIis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.192.0/24
Signature Algorithm: sha256WithRSAEncryption
14:61:c0:5f:97:ab:eb:07:81:7b:0f:ff:de:fa:cb:e3:88:5d:
25:b8:0d:ea:9d:1d:70:24:88:ae:1d:b3:94:fb:c9:30:c9:b1:
b0:b4:94:1b:e3:9e:74:ac:11:d2:88:56:34:4e:b2:0a:b7:af:
8e:19:72:4a:29:17:20:b7:f6:da:af:c9:21:47:d5:1d:00:57:
19:ec:b1:96:e9:e5:c3:ee:95:49:3d:9c:68:94:32:fa:a2:91:
95:41:aa:0e:f3:36:8e:42:ec:c2:6d:ff:53:15:aa:22:a6:49:
45:4a:de:76:66:d7:15:38:da:e8:13:e0:eb:ef:aa:8e:5d:04:
58:49:9f:91:be:56:a5:1d:9e:da:dd:b2:aa:02:38:96:90:c0:
17:d2:2d:98:8e:21:a9:ab:ee:ac:77:7d:61:7b:28:5e:26:c4:
1d:bc:49:37:d2:58:02:bf:ea:fe:d0:c5:fc:d5:c0:db:db:e7:
19:29:da:70:1c:b1:f0:85:5b:6b:59:04:27:b1:fd:fc:a4:2d:
7c:dd:cd:bc:32:a4:84:44:74:33:b6:5c:42:64:2a:35:95:07:
16:17:dc:f1:21:68:ca:88:72:4c:64:65:38:ea:61:84:f6:49:
37:e8:01:fa:f9:d0:b3:ee:1b:b5:f7:9e:50:78:e4:f7:09:bc:
e5:34:af:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org