Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/kLq69l9nqYghefl1b5SYk2LqXmQ.roa
File: kLq69l9nqYghefl1b5SYk2LqXmQ.roa (raw, json)
Hash identifier: ksXFmdZbCZLJr4SbDDYIU5CF34K37eRUHM88y7mv3NA=
Subject key identifier: 90:BA:BA:F6:5F:67:A9:88:21:79:F9:75:6F:94:98:93:62:EA:5E:64
Certificate issuer: /CN=73d09d895b43a622a4521b95b99969dc673c0d7a
Certificate serial: 12A269
Authority key identifier: 73:D0:9D:89:5B:43:A6:22:A4:52:1B:95:B9:99:69:DC:67:3C:0D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9CdiVtDpiKkUhuVuZlp3Gc8DXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/kLq69l9nqYghefl1b5SYk2LqXmQ.roa
Signing time: Sun 06 Feb 2022 20:43:12 +0000
ROA not before: Sun 06 Feb 2022 20:43:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 93.177.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1221225 (0x12a269)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73d09d895b43a622a4521b95b99969dc673c0d7a
Validity
Not Before: Feb 6 20:43:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90babaf65f67a9882179f9756f94989362ea5e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:97:14:91:cf:4e:12:fe:54:e6:ac:61:53:
bc:97:a4:b6:e9:57:cc:b7:e0:71:41:c8:44:a2:6e:
8b:a4:86:92:12:bb:a7:ab:94:ea:09:06:07:0e:eb:
2d:6b:a5:db:4a:16:70:32:64:80:29:10:97:c7:6e:
92:69:80:57:c9:32:4f:9e:63:cc:18:32:ca:93:87:
a7:eb:c1:cd:0c:28:7c:7a:c9:b5:65:80:93:bd:23:
d3:65:d9:d0:bb:04:2b:9b:94:38:0c:a5:4d:c7:7b:
fb:2d:e8:3c:e3:e9:e7:77:27:08:a4:fb:a7:b8:39:
0b:ee:b1:b4:bc:39:70:30:d0:7d:ef:86:9b:60:32:
16:7c:8d:94:83:27:ea:e4:9d:53:32:0a:a9:06:31:
a4:2e:79:1b:f5:86:58:6d:42:d7:ad:66:56:00:d0:
6c:9b:db:fb:88:21:8a:28:ed:9d:39:5c:47:f4:ce:
42:26:37:cb:38:b6:3c:9b:96:45:17:26:8d:8a:2e:
93:ff:db:49:a9:e4:bc:bd:9f:f2:76:e5:de:50:9b:
64:fc:a3:bf:74:6b:39:26:a5:64:ef:73:7a:64:b2:
17:b9:c6:7a:4d:58:e7:84:a5:47:de:26:00:1a:4d:
c9:73:92:2f:ab:17:0c:52:fb:b6:19:cb:c1:7d:a1:
2c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BA:BA:F6:5F:67:A9:88:21:79:F9:75:6F:94:98:93:62:EA:5E:64
X509v3 Authority Key Identifier:
keyid:73:D0:9D:89:5B:43:A6:22:A4:52:1B:95:B9:99:69:DC:67:3C:0D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9CdiVtDpiKkUhuVuZlp3Gc8DXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/kLq69l9nqYghefl1b5SYk2LqXmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/c9CdiVtDpiKkUhuVuZlp3Gc8DXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:31:ca:22:a1:e5:df:c2:67:ad:78:3d:50:f8:74:3a:c6:e3:
33:2e:b7:a5:af:a6:6c:81:17:19:3f:7f:e0:c4:90:f4:ef:3f:
53:4e:e0:b5:65:0f:70:7f:3c:8a:32:e0:7c:e6:af:45:ae:bc:
e6:23:54:28:0b:e8:bd:f0:05:af:70:c2:f4:ed:f3:ac:b6:e8:
13:2f:e3:49:3d:ab:fa:0d:68:c0:98:98:41:b6:53:6d:d3:75:
ee:89:06:f6:c3:5e:94:34:e2:ac:a2:81:20:8b:f9:99:bf:df:
9f:76:0b:d6:e5:d6:63:31:b5:d1:3e:32:59:2a:be:2a:f8:d1:
d7:5c:57:60:03:d3:e6:8f:01:1b:10:d8:fb:9e:67:78:69:e8:
8c:f3:9a:2b:b6:87:c9:34:c2:fd:71:fe:ed:fe:bc:1d:75:c5:
5c:22:ac:23:74:09:b7:51:14:29:90:9a:2f:e5:61:86:87:2d:
1c:0a:48:bb:e1:39:0c:18:62:6c:37:30:27:53:d1:2d:52:e9:
91:8b:b8:75:07:53:87:d0:f3:05:5a:70:d2:60:5c:4a:c5:88:
c6:c3:40:79:78:04:a5:a7:44:c4:0e:e7:9f:22:51:e7:2d:b0:
0b:92:16:34:7a:62:01:cb:43:aa:6f:fc:af:13:8e:3a:29:c7:
3c:f7:17:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org