Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/y7f1UWexCQREZzYORWWMLfzueZE.roa
File: y7f1UWexCQREZzYORWWMLfzueZE.roa (raw, json)
Hash identifier: vYaM0IgEWqzsFJGoPNj825Yv+GXRFo303UZDEe+fk48=
Subject key identifier: CB:B7:F5:51:67:B1:09:04:44:67:36:0E:45:65:8C:2D:FC:EE:79:91
Certificate issuer: /CN=5be23e3934f0b49a0bb965105c21420865a9222b
Certificate serial: 017298DF
Authority key identifier: 5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/y7f1UWexCQREZzYORWWMLfzueZE.roa
Signing time: Sat 01 Jan 2022 15:59:17 +0000
ROA not before: Sat 01 Jan 2022 15:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.234.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24287455 (0x17298df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be23e3934f0b49a0bb965105c21420865a9222b
Validity
Not Before: Jan 1 15:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbb7f55167b109044467360e45658c2dfcee7991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:60:f5:3a:20:30:3c:99:d9:4b:d4:1c:8a:c1:
9d:40:b2:99:27:3d:d5:30:08:89:84:f2:a2:5b:55:
1c:11:63:c8:c6:69:14:86:0a:b1:cb:84:fe:0f:47:
c1:0f:eb:02:db:21:8b:00:d5:ab:88:c0:67:60:8a:
ca:1f:38:63:1b:cd:57:be:b0:6d:30:4c:20:b7:b8:
66:15:bb:6c:74:cb:a7:1a:02:47:73:46:74:03:bc:
9d:72:69:e6:a3:cf:1f:b1:b2:80:4f:a6:5e:96:ed:
44:e3:7f:a6:a0:53:05:04:d9:b9:1a:bf:31:f1:c4:
28:3d:9d:c5:12:f9:22:33:fc:e1:71:e6:a3:68:3a:
ff:da:5b:e7:9d:4e:e6:fb:1b:73:28:14:91:74:4c:
ca:22:71:91:36:50:a4:b5:af:38:39:ad:53:90:d4:
9b:01:2f:70:c3:f9:9e:ba:25:5b:6e:82:61:01:5b:
3d:a6:dc:ea:d8:87:71:6a:b0:37:01:96:15:fd:5d:
ff:6f:59:54:24:e3:7b:d8:ec:cf:fa:6d:d4:1a:3b:
8e:5d:23:27:69:27:3a:16:2e:2e:cd:9e:1a:50:53:
d1:39:ea:9d:d2:5e:70:c0:30:fc:ae:00:cf:85:a8:
1b:30:33:65:bf:79:d0:ee:df:fa:e4:96:9f:f3:df:
d9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B7:F5:51:67:B1:09:04:44:67:36:0E:45:65:8C:2D:FC:EE:79:91
X509v3 Authority Key Identifier:
keyid:5B:E2:3E:39:34:F0:B4:9A:0B:B9:65:10:5C:21:42:08:65:A9:22:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-I-OTTwtJoLuWUQXCFCCGWpIis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/y7f1UWexCQREZzYORWWMLfzueZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d7d11f-a94e-4262-bf21-dda11a535986/1/W-I-OTTwtJoLuWUQXCFCCGWpIis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.192.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a9:47:f6:5f:f1:4d:b1:34:b6:f6:a6:6c:42:bc:c4:7e:72:
68:12:0c:00:29:9d:26:11:19:3c:e8:22:35:ce:6f:05:55:01:
ab:0a:f7:80:53:c8:40:bb:3d:af:a6:75:05:7b:06:4d:80:a8:
32:b6:10:c2:ce:c0:b8:26:24:77:82:18:fb:62:93:95:96:2a:
72:07:86:2c:99:8d:46:12:bf:d2:46:9b:11:5e:90:19:9f:57:
f0:21:eb:8c:e2:ed:19:b1:79:30:20:03:69:0c:5d:cd:c7:51:
64:85:7c:aa:7d:5d:bc:60:5d:37:6d:87:ef:0f:83:55:d5:4e:
09:95:3d:b0:57:d5:bf:69:e3:b2:01:4f:07:80:6f:5f:9d:e5:
15:26:01:62:a0:f0:8c:fe:9c:7d:78:69:fd:f7:3a:40:c6:c2:
87:6d:58:30:ce:88:5e:dc:f7:d5:e5:24:8e:75:c7:d6:51:eb:
9e:03:72:58:60:9b:2a:49:79:f9:21:80:1b:58:44:4f:fa:07:
eb:e6:d0:fa:ae:86:76:aa:64:fb:71:bd:4b:f4:da:0a:07:12:
1a:b1:b9:a3:40:67:f8:e6:58:95:93:30:ab:c9:53:d1:ff:35:
6a:49:88:1d:3e:c6:2e:19:a7:47:8b:d9:21:53:b5:52:51:0d:
bc:9e:19:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org