Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/zHdXOlmumJrm9zq9r2kqEDL__Ls.roa
File: zHdXOlmumJrm9zq9r2kqEDL__Ls.roa (raw, json)
Hash identifier: f7LYUwomVcFbmmHmjwY39m2yZetnj/drhNUZmWluaRs=
Subject key identifier: CC:77:57:3A:59:AE:98:9A:E6:F7:3A:BD:AF:69:2A:10:32:FF:FC:BB
Certificate issuer: /CN=e96513c94ce36bb89281eaef344b1e51a10778ca
Certificate serial: 018CC726A9FE0ECB7A7208F8FF56BF3B3F06
Authority key identifier: E9:65:13:C9:4C:E3:6B:B8:92:81:EA:EF:34:4B:1E:51:A1:07:78:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6WUTyUzja7iSgervNEseUaEHeMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/zHdXOlmumJrm9zq9r2kqEDL__Ls.roa
Signing time: Mon 01 Jan 2024 22:30:48 +0000
ROA not before: Mon 01 Jan 2024 22:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48855
IP address blocks: 91.212.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:a9:fe:0e:cb:7a:72:08:f8:ff:56:bf:3b:3f:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96513c94ce36bb89281eaef344b1e51a10778ca
Validity
Not Before: Jan 1 22:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc77573a59ae989ae6f73abdaf692a1032fffcbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f5:5b:f0:74:fd:35:12:6e:68:9f:4b:94:de:
d8:b9:82:96:d0:0a:44:95:3f:5e:c8:57:6c:ea:3b:
11:02:df:64:cd:3a:ae:bf:37:80:3c:bf:55:a4:e4:
58:a1:9e:e3:eb:c9:a9:24:4f:2e:22:2a:39:59:54:
e1:1e:85:52:ab:53:98:d7:e1:1e:f0:c1:05:6e:9f:
ab:35:2d:7a:70:26:c7:39:f7:c6:fd:86:cd:f4:c8:
ab:ba:13:c5:ff:7f:91:25:d2:57:c7:11:d6:b6:25:
58:0b:6b:db:a9:91:38:62:10:2b:ae:c4:c0:54:d8:
d2:21:d5:d2:4c:1b:c3:ea:1e:fc:3a:b0:dc:40:9f:
8d:96:2e:32:fc:ce:79:87:de:7a:68:f6:4e:d3:a1:
ba:aa:5d:46:8e:99:68:ca:2d:c3:0b:ab:d8:66:cf:
da:fc:93:bf:28:42:3c:e8:00:8a:b7:f9:43:3f:68:
12:8c:69:51:37:7c:26:32:45:51:9c:bb:4c:52:ef:
52:2c:a6:14:b9:9b:11:ac:4b:95:cc:4d:8f:79:57:
35:7e:ce:e2:00:54:58:ee:a1:4e:b8:35:10:6d:52:
ea:ce:a9:bc:68:52:3f:cc:44:04:80:a1:d5:19:04:
f0:d9:23:1f:2d:87:63:b4:38:19:da:20:9c:92:77:
e5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:77:57:3A:59:AE:98:9A:E6:F7:3A:BD:AF:69:2A:10:32:FF:FC:BB
X509v3 Authority Key Identifier:
keyid:E9:65:13:C9:4C:E3:6B:B8:92:81:EA:EF:34:4B:1E:51:A1:07:78:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6WUTyUzja7iSgervNEseUaEHeMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/zHdXOlmumJrm9zq9r2kqEDL__Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/6WUTyUzja7iSgervNEseUaEHeMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.59.0/24
Signature Algorithm: sha256WithRSAEncryption
08:bf:f6:40:a5:4f:42:79:01:c2:61:ba:76:43:da:4a:08:44:
b6:c4:0f:c2:92:ed:04:ad:bc:26:12:42:26:20:4f:cf:df:41:
ad:0c:25:39:4b:d3:e5:b1:e5:fc:3e:bb:0b:31:ef:57:47:68:
ae:c3:55:4c:a8:41:12:7d:f4:3b:0a:6f:ad:ec:84:6b:90:d3:
1d:d0:a6:3c:6f:d0:01:6c:4a:7d:d4:e2:34:9f:2c:48:60:20:
b5:63:74:3c:32:dd:50:f6:1c:ef:3d:06:bc:fa:74:16:5d:ca:
8a:c6:7a:71:e6:dc:69:b2:e1:5b:8c:c9:df:35:60:5a:9e:8f:
d6:31:67:b7:d9:ff:1d:ef:d6:d1:c3:63:7c:60:1a:1b:a5:de:
d9:a7:d8:21:62:8a:1a:b2:35:6a:48:1f:56:d7:88:fa:95:bd:
5b:c9:59:62:51:b7:94:13:94:e2:a4:71:87:a9:28:2e:9b:ea:
13:54:56:70:43:31:1d:2e:bc:6c:0b:b6:09:a1:d5:39:46:cf:
88:9a:e4:d0:68:f0:1c:50:4d:c1:cf:6d:ae:1f:9d:80:4c:b3:
ae:7b:fc:fe:7b:fe:a7:f6:d7:6d:fa:99:0f:5f:28:9e:aa:fb:
af:17:8a:a7:4a:e9:da:97:1d:c6:1b:2d:54:a8:63:f4:68:c1:
5e:be:63:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:08 2024 by rpki-client on console-fra.rpki-client.org