Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/EKAMKYJrKSfbvjrkM-GV8CRY5lk.roa
File: EKAMKYJrKSfbvjrkM-GV8CRY5lk.roa (raw, json)
Hash identifier: lsJ5m5mPST7KVqJ/1S4CyJvgPzvBPASdBbQotnNZ3K4=
Subject key identifier: 10:A0:0C:29:82:6B:29:27:DB:BE:3A:E4:33:E1:95:F0:24:58:E6:59
Certificate issuer: /CN=537b37656cd14d488a70512921875717a0d910b6
Certificate serial: 0770E35E
Authority key identifier: 53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/EKAMKYJrKSfbvjrkM-GV8CRY5lk.roa
Signing time: Wed 15 Jun 2022 10:00:44 +0000
ROA not before: Wed 15 Jun 2022 10:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12345
IP address blocks: 91.240.163.0/24 maxlen: 24
91.240.89.0/24 maxlen: 24
178.239.21.0/24 maxlen: 24
91.240.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124838750 (0x770e35e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537b37656cd14d488a70512921875717a0d910b6
Validity
Not Before: Jun 15 10:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10a00c29826b2927dbbe3ae433e195f02458e659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8a:f8:3d:75:50:f5:25:f3:b2:cd:58:a5:94:
76:24:13:36:3c:d3:20:3f:f4:fc:57:05:d6:91:e4:
f8:ce:54:ec:cf:e3:83:00:70:be:97:62:0d:0a:db:
0f:06:c9:d7:45:75:4c:6f:e5:6f:89:e0:65:27:94:
e0:7b:71:5d:0a:49:74:c0:e3:8c:7c:40:65:fb:43:
08:32:b6:86:15:d7:1b:aa:cf:5b:51:38:b2:7f:ca:
43:4a:3c:fb:de:d0:15:aa:f4:bd:8c:9d:0d:6f:9e:
fc:69:fe:f7:d2:b2:01:b3:7e:16:2f:63:3e:53:20:
1b:26:53:21:01:47:46:f1:2b:cb:b8:71:f2:bf:09:
fc:a1:5a:25:bb:d8:21:58:81:f9:8c:72:6c:57:9d:
2f:00:bc:1a:26:ca:df:0e:63:d8:1e:a1:98:85:be:
3d:74:fe:38:4d:89:3b:55:e9:26:5c:ce:d4:e3:73:
25:20:32:85:57:ea:b0:8c:75:93:ba:56:cd:3f:6c:
8a:34:9d:6c:d1:f9:34:5b:80:e7:42:b9:de:04:56:
53:7a:19:54:54:41:3e:23:52:5e:19:49:a2:6e:64:
38:10:a2:8a:9a:68:e3:c6:67:e8:f2:c4:47:cd:d2:
67:97:ae:19:2a:53:b5:4a:4b:02:b2:48:a6:f7:af:
12:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A0:0C:29:82:6B:29:27:DB:BE:3A:E4:33:E1:95:F0:24:58:E6:59
X509v3 Authority Key Identifier:
keyid:53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/EKAMKYJrKSfbvjrkM-GV8CRY5lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/U3s3ZWzRTUiKcFEpIYdXF6DZELY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.89.0/24
91.240.128.0/24
91.240.163.0/24
178.239.21.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:cf:b4:83:8c:b0:59:42:96:bb:b6:35:b1:4e:0c:80:3c:65:
a4:f0:c9:70:3c:8b:6d:20:f0:53:a3:64:a9:45:de:08:3a:92:
4c:25:a9:70:ba:2b:96:84:ab:18:1e:c7:57:d6:a4:9a:9e:40:
50:c4:7d:f6:11:ea:a8:8c:38:76:07:3f:2d:75:e7:1f:1f:10:
8a:7a:90:5c:b3:1a:8a:22:85:8a:97:45:82:7f:c6:b2:7c:7d:
64:5d:ec:d8:7b:3a:b9:8d:fc:3f:00:69:1c:96:68:e5:92:ed:
e5:ae:1e:29:35:b1:ad:a2:39:ac:c1:cf:19:86:a6:6a:d9:cc:
26:5c:7f:86:ee:9f:dd:b5:f6:ae:8a:3c:ae:38:fd:7a:40:f7:
92:d9:6f:42:34:c9:04:f5:2c:fb:e6:38:d1:6b:8f:d2:2c:2a:
a4:47:5c:12:b2:14:c5:69:ff:aa:f4:44:1f:6b:92:71:f8:60:
c7:e2:ed:63:01:a9:65:4d:9e:1f:4d:25:8c:a7:72:ee:7a:97:
ef:19:e1:fe:ec:92:cf:43:c4:86:bf:2e:c7:fe:0c:0a:e1:e4:
aa:d8:8b:fe:3c:f6:01:21:af:55:83:b1:81:46:00:6c:d5:e9:
f9:d8:6e:53:78:a6:79:d6:b6:0a:1f:55:cb:41:76:b9:73:56:
32:9a:43:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org