Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/XROtorngJKUdZlC11vB52TeAT6Y.roa
File: XROtorngJKUdZlC11vB52TeAT6Y.roa (raw, json)
Hash identifier: 2wW4Tkb9xxD4c5/qIVvnrgG/dYozC7xRXdtQdPz/Mz0=
Subject key identifier: 5D:13:AD:A2:B9:E0:24:A5:1D:66:50:B5:D6:F0:79:D9:37:80:4F:A6
Certificate issuer: /CN=69b60a6d77c4cac8f102d810be330b3d391efe93
Certificate serial: 0E6929
Authority key identifier: 69:B6:0A:6D:77:C4:CA:C8:F1:02:D8:10:BE:33:0B:3D:39:1E:FE:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/abYKbXfEysjxAtgQvjMLPTke_pM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/XROtorngJKUdZlC11vB52TeAT6Y.roa
Signing time: Wed 19 Jan 2022 09:00:05 +0000
ROA not before: Wed 19 Jan 2022 09:00:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.202.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 944425 (0xe6929)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69b60a6d77c4cac8f102d810be330b3d391efe93
Validity
Not Before: Jan 19 09:00:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d13ada2b9e024a51d6650b5d6f079d937804fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:14:60:e4:bf:b2:62:ef:23:ec:94:ed:b4:7a:
76:3b:b4:0d:9b:10:18:82:29:1a:59:65:98:76:68:
4e:d3:45:70:fb:6c:20:b3:c9:3e:b6:00:43:10:26:
59:77:63:47:9c:13:a8:43:f6:46:b8:e5:a5:de:4e:
ad:c4:1d:da:e6:6c:24:2d:b7:3b:2b:cc:b1:a7:4a:
0c:e4:6b:38:31:13:c8:ae:fb:b2:d8:5a:23:e1:de:
d7:5b:76:18:3b:60:5b:c1:3b:74:a5:8b:cf:dd:44:
8f:36:d0:c8:cc:01:2e:ab:fc:b1:0d:43:a5:5d:74:
98:4f:8b:73:3d:83:08:c2:a8:5d:b2:16:36:56:02:
7d:e1:71:3e:68:e7:15:c4:93:5e:fe:40:83:66:bc:
37:53:10:e9:5f:42:ec:37:ec:d8:0e:ef:5c:aa:59:
c8:c2:27:cc:78:91:66:f1:a1:c0:c2:fb:91:8d:64:
52:c7:b5:bf:90:eb:c0:be:a3:45:a1:6d:14:cb:55:
c4:a4:7b:30:96:75:96:92:c6:b5:0b:53:0f:bd:ab:
20:6b:d3:2f:a6:15:c0:53:b1:ef:23:0d:51:bb:d0:
3f:15:61:a5:6b:d3:35:ff:b1:d7:32:ba:30:1f:46:
0e:4f:a5:12:36:65:c6:b2:61:d7:5a:02:40:e8:04:
36:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:13:AD:A2:B9:E0:24:A5:1D:66:50:B5:D6:F0:79:D9:37:80:4F:A6
X509v3 Authority Key Identifier:
keyid:69:B6:0A:6D:77:C4:CA:C8:F1:02:D8:10:BE:33:0B:3D:39:1E:FE:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/abYKbXfEysjxAtgQvjMLPTke_pM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/XROtorngJKUdZlC11vB52TeAT6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5ff4ff-5bfe-4123-a152-4ad9914bba68/1/abYKbXfEysjxAtgQvjMLPTke_pM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.209.0/24
Signature Algorithm: sha256WithRSAEncryption
55:c8:c7:eb:b7:3b:e9:8b:5a:c9:ea:38:7b:91:14:ae:f9:0b:
3b:2e:69:f1:76:f5:f3:39:22:2e:48:35:00:69:13:d7:b8:a8:
bc:d1:a1:39:d8:b7:cb:4a:de:99:f8:41:97:57:dd:9d:79:8d:
5a:96:a3:67:55:e5:fa:2e:12:25:ea:2b:57:87:c7:74:40:73:
9a:fb:c9:50:82:ad:35:2d:fd:40:8c:ef:82:ae:41:db:e0:c9:
ce:39:7c:b9:09:76:ac:8f:79:1e:a5:7f:6d:cd:b3:2e:39:32:
c8:39:85:b4:23:3a:42:0a:5b:54:f6:6f:42:e8:2d:c6:d5:b9:
fc:b2:50:8f:89:bd:8a:ab:56:bd:81:11:ad:d0:30:81:39:8b:
32:b0:1e:08:9f:c6:cf:2f:c3:7c:9d:7d:23:cc:6b:f3:08:9e:
12:a0:00:bb:09:cc:a1:fb:15:73:2c:c8:d9:49:2a:80:d0:8d:
a6:5f:93:c4:50:cc:72:d8:b1:f7:dc:8f:b2:2b:d4:6a:e8:68:
9c:1e:c5:61:c4:69:45:64:d4:5d:d4:ec:0f:04:a5:f7:b7:3e:
60:63:f7:c9:3f:19:c5:00:22:f4:f4:81:cd:82:a2:f1:e2:68:
94:fc:d9:99:da:e2:00:ba:6b:52:74:85:73:60:ab:9b:05:fd:
91:06:eb:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:04 2025 by rpki-client