Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/LMj1fQAAVN2D1c40TpZVJmxadrc.roa
File: LMj1fQAAVN2D1c40TpZVJmxadrc.roa (raw, json)
Hash identifier: thrgqjdK+FlezZTph26i2EYsOYiBcf8aPj+ufkSLQMs=
Subject key identifier: 2C:C8:F5:7D:00:00:54:DD:83:D5:CE:34:4E:96:55:26:6C:5A:76:B7
Certificate issuer: /CN=e96513c94ce36bb89281eaef344b1e51a10778ca
Certificate serial: 01856F5DF7EB6E67025B11FFAE9D72F73A91
Authority key identifier: E9:65:13:C9:4C:E3:6B:B8:92:81:EA:EF:34:4B:1E:51:A1:07:78:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6WUTyUzja7iSgervNEseUaEHeMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/LMj1fQAAVN2D1c40TpZVJmxadrc.roa
Signing time: Sun 01 Jan 2023 22:05:07 +0000
ROA not before: Sun 01 Jan 2023 22:05:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48855
IP address blocks: 91.212.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:f7:eb:6e:67:02:5b:11:ff:ae:9d:72:f7:3a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96513c94ce36bb89281eaef344b1e51a10778ca
Validity
Not Before: Jan 1 22:05:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cc8f57d000054dd83d5ce344e9655266c5a76b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d0:4b:2a:fa:13:ab:49:e7:05:54:2a:3b:81:
0d:10:c8:66:54:30:19:01:be:19:64:b7:cd:c1:5b:
31:8b:9f:8e:35:fb:3d:67:15:f3:e9:b2:b1:e3:86:
51:79:a2:46:55:1b:c0:03:2b:0c:0a:2b:1b:8d:8d:
90:e9:f3:b9:13:8e:68:e9:0d:27:57:47:7b:17:d6:
55:95:41:06:13:84:e9:2d:ad:52:47:94:91:ee:0c:
bf:95:88:9e:c1:b3:54:01:1b:73:b9:9c:dd:8a:f6:
e8:8a:c5:b0:14:5d:c3:12:6a:f9:fc:16:a2:31:40:
9a:b4:b2:bd:dc:9e:60:00:21:0c:2c:32:3b:da:e5:
df:3e:c3:c4:a0:6e:cf:0e:25:7b:11:e1:30:71:64:
ab:8c:08:28:89:cc:1f:b5:7e:bb:25:e3:f3:ce:8d:
ab:7a:39:41:cd:85:35:8a:a9:76:cb:e7:04:01:85:
09:b8:3d:93:d6:78:b9:3a:fd:84:99:d4:22:56:5d:
93:3e:b0:18:df:44:a5:8d:ce:05:4a:8f:39:45:4d:
31:96:22:c1:0c:f6:b3:49:57:a6:14:73:83:84:a3:
43:01:73:6d:56:bc:14:db:7f:4e:8b:ea:3a:dd:6d:
28:21:9c:13:fc:32:d6:69:58:37:bc:35:87:e9:50:
3c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C8:F5:7D:00:00:54:DD:83:D5:CE:34:4E:96:55:26:6C:5A:76:B7
X509v3 Authority Key Identifier:
keyid:E9:65:13:C9:4C:E3:6B:B8:92:81:EA:EF:34:4B:1E:51:A1:07:78:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6WUTyUzja7iSgervNEseUaEHeMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/LMj1fQAAVN2D1c40TpZVJmxadrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/6WUTyUzja7iSgervNEseUaEHeMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.59.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:7b:a4:02:19:32:b6:6a:f2:97:d9:da:06:d5:ed:7b:2e:68:
26:ae:cd:ca:f1:88:f7:c5:ab:f9:62:07:4b:9b:a6:db:04:cf:
70:cc:33:20:12:d6:3f:e0:80:e0:dd:f7:82:62:9c:9d:36:43:
11:05:f2:53:f9:9f:3c:5f:f8:85:0a:5b:af:2a:9a:59:bb:f7:
11:5d:5f:0f:2a:92:ac:33:a3:f1:4b:b7:bf:ab:a0:d9:c1:e3:
90:67:a8:76:c1:cb:45:08:ae:6a:55:11:ec:cd:18:80:3f:6e:
39:77:1f:93:ba:f7:05:62:f7:aa:16:ba:fc:fc:9c:8c:11:e0:
13:6d:2b:19:12:10:76:92:ae:f4:16:97:db:8b:f4:9d:1b:cb:
c9:2f:d3:71:60:77:75:d4:75:d3:cb:bb:18:ce:c4:1c:d3:23:
2b:1d:15:28:0a:46:2a:ae:e5:c9:ca:69:64:33:73:c2:65:f1:
fd:40:00:3b:0a:e5:a5:84:a1:e5:cd:bc:df:cf:86:1d:34:13:
83:eb:ec:c4:17:e7:e1:3f:3e:d4:8c:e6:bc:10:c0:62:68:68:
5f:d4:8b:59:de:07:b8:12:ad:18:ba:8a:06:c3:7c:3b:24:a9:
94:0e:b7:ad:0c:f7:ef:03:5f:f5:00:4e:14:9d:93:b0:1f:ac:
39:f3:32:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:08 2024 by rpki-client on console-fra.rpki-client.org