Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/KaNqLlzgHtmW8jgqVQbSgUvPjl8.roa
File: KaNqLlzgHtmW8jgqVQbSgUvPjl8.roa (raw, json)
Hash identifier: WOEJp7iewyFEOEMGHT8IJRcokblBwJD5lnBoaNHXDhc=
Subject key identifier: 29:A3:6A:2E:5C:E0:1E:D9:96:F2:38:2A:55:06:D2:81:4B:CF:8E:5F
Certificate issuer: /CN=812a6cdc5cb9ce9cfd950b3440d3083b788b95e6
Certificate serial: 018A9A56BC3250B4433C6778CF697CE9EE6C
Authority key identifier: 81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSps3Fy5zpz9lQs0QNMIO3iLleY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/KaNqLlzgHtmW8jgqVQbSgUvPjl8.roa
Signing time: Fri 15 Sep 2023 19:34:50 +0000
ROA not before: Fri 15 Sep 2023 19:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47377
IP address blocks: 91.242.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:9a:56:bc:32:50:b4:43:3c:67:78:cf:69:7c:e9:ee:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812a6cdc5cb9ce9cfd950b3440d3083b788b95e6
Validity
Not Before: Sep 15 19:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29a36a2e5ce01ed996f2382a5506d2814bcf8e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b6:3e:ba:e3:88:5e:06:df:a6:10:95:de:fc:
5f:3d:ad:66:e0:5c:ee:19:22:b6:2e:9d:db:d3:50:
b3:19:41:84:f5:0f:05:9a:c4:ee:71:60:04:71:56:
26:de:44:e5:d9:09:59:65:7b:d3:cf:02:86:6d:fb:
49:96:cd:38:49:0b:97:e2:8a:2b:53:26:d9:23:72:
6d:c6:00:ed:69:79:78:23:14:b2:9a:a9:59:5b:87:
e3:44:f3:44:0c:7d:1c:93:6d:8b:56:38:42:43:c1:
46:5a:7a:89:9c:9f:4a:9e:08:2f:28:f7:a4:99:a2:
bd:05:f3:3a:60:25:14:66:fd:6b:b2:94:ca:50:c6:
f5:96:d8:48:ac:b5:ab:ca:41:fa:d7:4e:8e:32:23:
1a:3e:b3:25:16:4f:99:36:00:f5:0f:65:80:58:07:
2d:da:18:fb:e9:12:e5:9e:f5:00:56:b0:ff:69:f3:
ec:70:55:a7:81:73:cd:55:3d:75:cd:2b:97:97:7a:
57:86:d7:e7:cd:97:f7:65:43:01:f1:ab:64:0f:71:
5f:86:3f:91:a1:c9:55:82:f8:7d:94:d5:4b:e4:2e:
10:19:e3:59:8f:de:4c:c9:87:01:b7:58:63:52:d3:
ec:e5:51:9c:74:39:27:83:bc:b5:ec:61:1b:fd:a9:
c1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A3:6A:2E:5C:E0:1E:D9:96:F2:38:2A:55:06:D2:81:4B:CF:8E:5F
X509v3 Authority Key Identifier:
keyid:81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSps3Fy5zpz9lQs0QNMIO3iLleY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/KaNqLlzgHtmW8jgqVQbSgUvPjl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/gSps3Fy5zpz9lQs0QNMIO3iLleY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.245.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c7:3f:11:f2:f5:56:5d:e7:b8:0b:a9:88:a8:97:c5:04:9c:
e4:ee:1a:f8:11:15:43:8c:a0:63:2d:a1:7c:57:c3:06:c8:d9:
0b:fa:60:9c:e2:32:28:23:49:40:96:b6:1b:40:65:94:04:26:
db:28:84:66:b5:4c:d8:13:19:ad:80:3a:ce:e0:3a:65:25:7f:
ac:78:aa:cc:a0:be:8c:0d:fa:7d:b0:00:dd:94:15:dc:95:2a:
2e:c1:58:6e:70:97:ec:8f:08:71:6b:c1:df:2c:6f:26:b5:32:
ae:bc:e2:d1:a6:f4:63:d7:60:97:30:df:d9:43:5b:3a:c6:b9:
e8:e4:77:c6:a9:df:98:c9:fd:9c:00:96:91:e3:74:5b:26:d8:
c2:54:7b:01:4b:df:29:73:66:f5:6c:5f:c9:a5:ab:8f:9a:1a:
be:95:9e:d5:5b:d4:7c:70:bd:0a:16:45:7f:9b:47:15:01:2f:
30:63:7e:ba:bc:29:05:83:68:db:c0:53:3c:91:46:ed:b7:3f:
05:93:e6:24:7a:8b:7c:fb:b5:1f:c2:55:c8:16:09:a9:0b:5f:
6b:c0:bd:50:2f:dc:43:36:9b:61:db:40:b4:78:6e:ba:b9:18:
5c:a2:87:c6:a5:3e:94:1d:eb:a5:a3:71:30:a0:06:46:dd:33:
aa:ad:ce:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 15 13:47:51 2023 by rpki-client on console-fra.rpki-client.org