Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/krFkvUEOsvo872M5nISiehhf7cc.roa
File: krFkvUEOsvo872M5nISiehhf7cc.roa (raw, json)
Hash identifier: FDTpTDSwrKSsoGMp8G06YoWOIyriaJcLfYrU6nnw9jY=
Subject key identifier: 92:B1:64:BD:41:0E:B2:FA:3C:EF:63:39:9C:84:A2:7A:18:5F:ED:C7
Certificate issuer: /CN=537b37656cd14d488a70512921875717a0d910b6
Certificate serial: 01856F67067FE669DF1CEAD24556FF42A6AF
Authority key identifier: 53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/krFkvUEOsvo872M5nISiehhf7cc.roa
Signing time: Sun 01 Jan 2023 22:15:00 +0000
ROA not before: Sun 01 Jan 2023 22:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 91.240.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:06:7f:e6:69:df:1c:ea:d2:45:56:ff:42:a6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537b37656cd14d488a70512921875717a0d910b6
Validity
Not Before: Jan 1 22:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92b164bd410eb2fa3cef63399c84a27a185fedc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:db:03:61:33:8c:4a:f6:9c:c6:06:7e:e9:a5:
22:27:04:ba:53:a0:ca:3c:f9:6c:50:32:3e:92:8a:
32:74:1b:73:10:0a:ef:62:bb:62:34:d1:71:42:e1:
e8:e6:c2:c6:00:5c:fa:67:15:b7:b5:ff:5a:69:7b:
f1:19:4a:77:a5:60:89:f9:88:37:ad:e9:5b:56:6f:
e8:0a:a6:6c:80:fa:da:b1:aa:2d:01:5d:e3:b7:3c:
1d:f9:2c:d6:3c:30:d2:94:f7:06:f7:21:ee:80:92:
de:55:d1:4d:63:69:6b:bd:9d:45:a2:0b:fc:94:96:
f4:36:bd:65:04:0e:5a:7e:2b:6e:22:ca:46:1f:fd:
0d:09:ba:40:fe:14:19:a2:d0:e1:c0:91:3f:3f:2b:
65:06:e5:77:11:f6:0a:83:65:6f:82:8b:2a:3a:3a:
11:1b:fa:5b:43:c6:bc:b9:f8:52:78:e0:d0:0b:fc:
61:9d:f5:70:6c:08:df:2c:4d:07:63:2b:ed:ce:ca:
fb:8b:74:2f:b2:15:87:30:35:60:6c:34:09:ee:e9:
eb:94:08:0e:df:60:37:0b:2a:c5:56:81:5f:0e:e5:
b4:2e:f1:e4:4e:b3:ed:08:48:38:f0:10:dd:5f:07:
ee:07:40:55:59:e0:d3:21:4d:85:9f:12:34:51:64:
46:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B1:64:BD:41:0E:B2:FA:3C:EF:63:39:9C:84:A2:7A:18:5F:ED:C7
X509v3 Authority Key Identifier:
keyid:53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/krFkvUEOsvo872M5nISiehhf7cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/U3s3ZWzRTUiKcFEpIYdXF6DZELY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.175.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:99:ef:39:ac:99:26:d6:05:ca:8e:3d:6e:0e:37:e1:c8:99:
a8:a0:db:fa:24:67:ea:80:10:2a:6f:2e:ee:01:76:f7:5e:7e:
0c:1a:bf:c6:67:52:21:a7:00:6b:96:a1:64:c0:40:57:88:74:
de:e4:f3:18:29:ce:5c:32:b9:68:da:d2:d4:44:77:2b:92:5e:
f6:91:17:11:51:90:23:9b:00:80:ca:68:fd:0c:cc:55:0b:cd:
79:64:4f:17:1c:6f:48:9e:76:55:4e:7b:be:ef:03:63:d9:2a:
c9:c0:ea:29:9b:8a:ec:e9:f0:14:75:15:b7:a7:ba:d0:de:a1:
d5:33:fe:85:b6:f5:a9:14:bb:d4:cb:95:e5:1e:0a:c4:f7:ea:
13:28:96:2e:f2:ed:7b:63:2f:d6:22:33:0e:64:ce:05:ac:1a:
d4:df:a6:b1:9a:4f:25:04:d6:dd:bc:0b:5f:e2:63:9f:09:ec:
7f:c5:45:f6:48:1f:78:f9:59:bb:5a:2b:e3:f3:fa:0e:b4:92:
58:a4:e5:25:a2:df:cf:eb:8c:ad:fe:10:16:f0:1d:ab:6e:56:
56:90:94:bf:b9:ec:10:e3:c9:b7:31:f4:a7:e9:54:b7:57:7a:
4e:bb:7b:f0:58:48:a4:fa:2b:35:ad:02:3d:be:cf:77:9d:d9:
f1:9d:cd:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org