Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/KQjsTMdKWtGaBj-zh_nAzTotYT4.roa
File: KQjsTMdKWtGaBj-zh_nAzTotYT4.roa (raw, json)
Hash identifier: PQ0Yhc0uNQ4zfifNIZp/fNjugfQKVERuW9EUXS7uaP4=
Subject key identifier: 29:08:EC:4C:C7:4A:5A:D1:9A:06:3F:B3:87:F9:C0:CD:3A:2D:61:3E
Certificate issuer: /CN=fb05135f037d25d716d3b721c1ab721366faf905
Certificate serial: 06823E11
Authority key identifier: FB:05:13:5F:03:7D:25:D7:16:D3:B7:21:C1:AB:72:13:66:FA:F9:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wUTXwN9JdcW07chwatyE2b6-QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/KQjsTMdKWtGaBj-zh_nAzTotYT4.roa
Signing time: Sat 01 Jan 2022 02:54:25 +0000
ROA not before: Sat 01 Jan 2022 02:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56910
IP address blocks: 91.220.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109198865 (0x6823e11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb05135f037d25d716d3b721c1ab721366faf905
Validity
Not Before: Jan 1 02:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2908ec4cc74a5ad19a063fb387f9c0cd3a2d613e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f4:3d:41:2d:c8:56:85:b1:21:6d:32:98:1e:
2d:d9:be:9f:2f:d9:d2:67:4d:0c:60:bb:f3:ff:38:
32:a4:bf:24:86:26:3b:ce:d0:59:ef:cd:48:69:d2:
e1:80:e9:18:5e:ef:7a:1d:58:9c:34:58:ad:20:7c:
61:e4:05:5d:35:6e:61:0f:6a:15:6c:3f:49:53:85:
00:76:68:d2:94:2c:7b:0b:37:d1:da:c0:b4:61:aa:
f1:02:74:87:3d:97:51:94:3c:ba:93:4a:bd:85:e2:
92:21:f7:83:e7:05:d7:79:00:90:d8:fd:aa:f6:1f:
ff:3d:dd:9d:90:23:61:58:1a:87:fb:2e:ae:c7:e8:
f3:a6:15:ca:50:eb:6f:c3:81:52:bd:2c:7e:31:9c:
77:26:23:4e:34:2c:ff:1e:48:13:3b:a9:a9:54:7b:
30:c0:4f:5c:a1:73:bb:b8:f2:9a:c2:0a:4d:37:45:
39:f6:2f:14:18:46:70:eb:9a:9d:58:74:26:b0:bb:
23:76:74:5e:b6:c3:76:41:31:1e:8f:5f:cd:53:f9:
d4:bd:e3:a2:28:c2:a0:03:9e:ba:8f:f3:c5:aa:6e:
15:14:3c:97:b7:b7:27:3a:9d:30:54:34:e9:be:68:
d4:ce:ca:50:76:f6:8c:e8:c8:ae:ec:27:c6:2f:ac:
0c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:08:EC:4C:C7:4A:5A:D1:9A:06:3F:B3:87:F9:C0:CD:3A:2D:61:3E
X509v3 Authority Key Identifier:
keyid:FB:05:13:5F:03:7D:25:D7:16:D3:B7:21:C1:AB:72:13:66:FA:F9:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wUTXwN9JdcW07chwatyE2b6-QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/KQjsTMdKWtGaBj-zh_nAzTotYT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/9aa25b-5d1f-43b8-9f89-ccb5e39b208b/1/1-wUTXwN9JdcW07chwatyE2b6-QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.184.0/24
Signature Algorithm: sha256WithRSAEncryption
08:8c:ed:13:28:82:3e:69:49:2b:14:54:e5:93:86:f2:fd:95:
8d:5f:f2:57:45:7f:77:34:3a:74:e9:b6:2f:5f:69:dd:c5:d0:
9d:1b:13:87:65:53:25:6e:b4:76:34:cd:09:e1:62:90:db:85:
4b:95:5c:26:6b:75:8d:c7:80:61:d3:a4:6c:31:7c:7e:bd:b1:
5b:8c:17:07:97:bc:54:60:c4:b7:ec:0f:9b:21:92:73:e4:55:
79:a3:59:1f:d0:14:d7:99:86:7a:8c:cb:f2:04:62:d7:7f:24:
1a:89:d6:ca:b4:b7:85:5a:fe:48:54:f5:67:d1:9d:07:a2:dc:
90:1b:c2:b3:10:54:ce:c1:29:be:9a:40:d7:b7:07:75:47:c7:
68:b5:66:9c:ed:e9:ef:4e:9b:6b:2a:bc:8e:d9:1e:5f:3f:bf:
96:76:a2:5b:54:f9:50:28:7a:db:3d:2a:cd:1a:5b:a5:19:4b:
24:21:88:15:7d:a7:55:cd:d5:3f:0e:f5:62:b3:62:c2:d7:3d:
9c:77:f2:bf:81:83:72:2e:20:17:08:d8:57:ba:71:3c:dd:2a:
24:36:3b:28:ab:25:e4:22:3f:d6:48:a7:1f:62:9b:3f:54:25:
db:20:26:dc:41:88:0e:eb:2c:aa:2f:54:4d:c5:0c:93:b0:04:
32:bc:ef:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:27 2024 by rpki-client on console-ams.rpki-client.org