Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/sWmxqnF3ZTdbd_FV5Kl3SOf1egs.roa
File: sWmxqnF3ZTdbd_FV5Kl3SOf1egs.roa (raw, json)
Hash identifier: TbAlDFhopSGo2r2b0uDVWAFpkRtAjoyyaatFXydnj8k=
Subject key identifier: B1:69:B1:AA:71:77:65:37:5B:77:F1:55:E4:A9:77:48:E7:F5:7A:0B
Certificate issuer: /CN=5be23e3934f0b49a0bb965105c21420865a9222b
Certificate serial: 01713A78
Authority key identifier: 5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/sWmxqnF3ZTdbd_FV5Kl3SOf1egs.roa
Signing time: Sat 01 Jan 2022 15:59:17 +0000
ROA not before: Sat 01 Jan 2022 15:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.234.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24197752 (0x1713a78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be23e3934f0b49a0bb965105c21420865a9222b
Validity
Not Before: Jan 1 15:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b169b1aa717765375b77f155e4a97748e7f57a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:fd:8a:00:56:92:8d:36:21:30:93:6b:10:
a2:93:0f:9f:b8:39:1d:0a:ee:e0:6b:59:66:61:cf:
46:7b:6c:15:1c:8c:03:36:a4:b1:78:a4:bb:e3:58:
8c:84:6b:30:da:40:53:81:59:d7:af:30:9f:e0:8a:
04:06:29:a6:aa:9d:11:d5:ee:6b:69:19:0c:39:14:
92:a5:8a:e0:54:5e:18:39:a6:3f:4b:34:08:de:d2:
5f:31:4f:02:7d:27:97:a0:41:30:b7:c5:a8:d6:b1:
5f:95:52:16:ba:49:b8:0c:18:ec:1d:24:39:ee:06:
0a:22:4d:a2:75:70:26:89:6e:ab:14:2d:c6:ba:37:
30:9f:52:1a:d5:08:59:76:c5:3d:18:80:07:46:61:
18:3a:36:b6:b9:f5:74:f0:c2:29:46:7e:46:f0:a2:
6f:eb:55:95:78:bb:c1:42:14:42:d8:ad:9a:ff:d6:
ac:84:c8:e6:25:09:d9:26:48:e6:74:99:0a:f7:a3:
a2:fb:09:21:81:80:32:2e:5a:19:c3:a6:f6:b4:dd:
6b:e4:38:30:ce:6b:88:71:1f:14:db:05:cf:03:a8:
8d:f3:e0:6e:05:41:08:16:57:33:5d:e0:cb:bd:7e:
33:b1:13:7a:54:b3:5b:a3:6a:46:44:80:3a:ad:34:
d7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:69:B1:AA:71:77:65:37:5B:77:F1:55:E4:A9:77:48:E7:F5:7A:0B
X509v3 Authority Key Identifier:
keyid:5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/sWmxqnF3ZTdbd_FV5Kl3SOf1egs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/W-I-OTTwtJoLuWUQXCFCCGWpIis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.192.0/24
Signature Algorithm: sha256WithRSAEncryption
57:6e:06:3d:d4:a1:54:5c:3b:4c:6c:16:4d:3d:5e:71:78:85:
f3:74:d4:e2:b3:bd:2c:70:95:95:8d:a1:a1:b1:8d:f8:66:97:
6e:5a:0b:5f:fa:7b:36:70:9b:49:98:29:09:b8:23:ab:d7:29:
10:5a:57:c7:71:13:48:2e:86:c4:04:12:7f:2d:2a:53:f9:65:
72:2b:2b:39:98:43:c9:24:9f:9b:07:24:59:cb:c7:84:da:74:
15:28:f9:50:f3:21:38:0c:ed:9b:4c:0e:67:9a:5c:28:93:ef:
11:d9:b7:dc:4f:b0:c6:d1:00:4a:87:2f:87:e8:fd:ac:b4:5d:
33:fb:9a:12:5b:e4:33:ac:c6:52:a5:bb:11:99:54:ea:06:d1:
a7:52:4f:b0:c1:c3:73:d1:b9:a2:cc:32:4e:b5:34:2d:1b:9c:
27:1d:c7:35:92:56:68:79:0e:8d:cf:49:0b:75:90:4c:44:41:
b3:e9:9b:6e:75:66:42:f0:cb:27:bc:f8:e1:ae:24:e9:13:87:
6f:ec:d9:bb:22:4c:4b:7a:92:4e:53:94:86:f1:cf:49:df:ee:
1e:d4:50:9b:bf:df:c3:5c:cd:73:f8:af:27:dc:85:0d:a9:c9:
27:b2:2a:12:f6:b3:6d:14:b1:93:2c:d4:19:68:bb:6d:bb:b8:
10:bb:18:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org