Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/3e651d-10e8-46b6-8a9b-330570dfdcfd/1/MK3BGUimbQUfWnHHJLNZfu5CVi4.roa
File: MK3BGUimbQUfWnHHJLNZfu5CVi4.roa (raw, json)
Hash identifier: obG+U86dK5QPsgQO5fhx1cNK6aIV2+QRI/ZImP4AJNA=
Subject key identifier: 30:AD:C1:19:48:A6:6D:05:1F:5A:71:C7:24:B3:59:7E:EE:42:56:2E
Certificate issuer: /CN=ca7baeeb90502dc9316a35121586ec39b720a3dc
Certificate serial: A8864B
Authority key identifier: CA:7B:AE:EB:90:50:2D:C9:31:6A:35:12:15:86:EC:39:B7:20:A3:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ynuu65BQLckxajUSFYbsObcgo9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/3e651d-10e8-46b6-8a9b-330570dfdcfd/1/MK3BGUimbQUfWnHHJLNZfu5CVi4.roa
Signing time: Sat 01 Jan 2022 00:59:01 +0000
ROA not before: Sat 01 Jan 2022 00:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 91.247.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11044427 (0xa8864b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca7baeeb90502dc9316a35121586ec39b720a3dc
Validity
Not Before: Jan 1 00:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30adc11948a66d051f5a71c724b3597eee42562e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9c:c3:5b:41:16:5d:08:2f:5a:83:1f:c6:d2:
2e:82:ae:eb:dd:78:1b:fd:85:89:7c:8e:d7:a3:d6:
7f:a5:3a:6c:88:98:4e:38:c2:53:89:dc:1f:e2:88:
c5:f3:d8:b5:2d:96:6f:94:b5:35:17:e2:7a:d6:00:
c2:ba:ef:50:ed:e8:69:7a:82:a7:d7:c2:21:ba:c9:
59:e7:9f:4d:8a:68:39:6f:8b:67:88:36:7f:20:bc:
c8:42:a4:bb:a6:78:1c:00:25:5e:38:8b:49:6a:c6:
d3:ea:ee:96:08:c7:58:73:6c:56:c3:f7:fc:22:1d:
8b:5c:44:7b:98:e7:da:9c:9c:01:e9:3f:ea:3b:a2:
dc:7c:00:a7:06:ed:ef:b1:4f:f9:c9:29:5f:41:2e:
fb:a9:7f:85:e4:5b:a3:54:af:04:8d:dc:a7:39:fe:
48:3f:95:cd:f6:df:6a:c8:03:6d:b5:c6:7b:2d:34:
3b:d9:82:3e:6c:2f:d4:86:f3:ce:3d:3f:13:ca:58:
00:f5:af:8d:0a:c1:c0:0d:aa:3f:19:95:3d:83:c2:
3a:83:16:96:be:66:fc:a5:7a:69:92:aa:f8:e2:96:
8a:b0:b4:67:e3:61:04:0b:05:57:dd:ca:fb:7d:ae:
17:93:7f:a2:f5:88:0f:ca:70:9a:86:0a:07:13:14:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:AD:C1:19:48:A6:6D:05:1F:5A:71:C7:24:B3:59:7E:EE:42:56:2E
X509v3 Authority Key Identifier:
keyid:CA:7B:AE:EB:90:50:2D:C9:31:6A:35:12:15:86:EC:39:B7:20:A3:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ynuu65BQLckxajUSFYbsObcgo9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/3e651d-10e8-46b6-8a9b-330570dfdcfd/1/MK3BGUimbQUfWnHHJLNZfu5CVi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/3e651d-10e8-46b6-8a9b-330570dfdcfd/1/ynuu65BQLckxajUSFYbsObcgo9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.169.0/24
Signature Algorithm: sha256WithRSAEncryption
79:bd:2b:a0:55:26:13:3b:b0:b4:fd:0e:64:f9:50:73:40:b3:
18:fd:c0:09:99:b6:90:d7:b7:d5:33:22:28:f7:a7:85:b6:b0:
fa:5f:57:c3:d2:62:ae:46:17:e3:e3:09:19:8d:2e:02:bf:61:
fe:fa:79:0b:1c:5d:9d:9f:2c:87:33:29:22:fd:2a:7a:72:eb:
a6:0a:da:6a:4f:e6:72:46:cb:06:fb:5a:d5:f0:c0:65:9a:5b:
0d:6c:9f:de:76:a7:52:0d:cf:e6:42:b7:e1:b0:d9:76:b7:61:
f7:ae:44:33:6b:8a:56:6b:c9:8e:e6:cc:5d:1b:a8:50:0d:72:
d4:09:f0:e4:0d:6c:d6:31:5b:0e:21:d1:15:be:08:99:1f:bf:
8d:47:57:90:95:b2:79:57:fd:ec:30:90:4d:75:33:a8:84:d1:
81:a1:a4:00:fd:a5:82:a1:05:4e:0a:dd:7b:9a:74:7d:c9:09:
ae:64:39:1e:0e:99:3c:5e:0a:c3:1f:41:47:2e:27:73:72:a5:
19:82:4e:61:e8:a9:bb:3c:5c:62:f2:5d:b4:17:82:67:d5:9e:
ec:ac:e4:7f:32:48:a2:e8:d0:3d:5e:76:87:10:1d:3c:27:17:
4f:21:de:4f:84:3f:92:32:45:6a:e9:95:58:af:dd:68:16:b9:
31:50:55:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:26 2024 by rpki-client on console-fra.rpki-client.org