Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/f2c074-48ea-404f-8fbd-8e63d723cd2d/1/cLRgHBehfVCS-05wT-C_GZCHyiw.roa
File: cLRgHBehfVCS-05wT-C_GZCHyiw.roa (raw, json)
Hash identifier: R9fihKPFNWGGYYwo65hnAOpZGM1kJOYX40IGf4jusFs=
Subject key identifier: 70:B4:60:1C:17:A1:7D:50:92:FB:4E:70:4F:E0:BF:19:90:87:CA:2C
Certificate issuer: /CN=da9f7efc6cb5a9b63b0bf8b9ee893d95f6e62b79
Certificate serial: 01253B
Authority key identifier: DA:9F:7E:FC:6C:B5:A9:B6:3B:0B:F8:B9:EE:89:3D:95:F6:E6:2B:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2p9-_Gy1qbY7C_i57ok9lfbmK3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/f2c074-48ea-404f-8fbd-8e63d723cd2d/1/cLRgHBehfVCS-05wT-C_GZCHyiw.roa
Signing time: Wed 23 Mar 2022 07:00:51 +0000
ROA not before: Wed 23 Mar 2022 07:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60233
IP address blocks: 91.233.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75067 (0x1253b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da9f7efc6cb5a9b63b0bf8b9ee893d95f6e62b79
Validity
Not Before: Mar 23 07:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70b4601c17a17d5092fb4e704fe0bf199087ca2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a8:48:cf:b9:ef:04:76:11:be:50:f6:ad:42:
74:c3:5f:4c:1b:a2:26:8a:cd:9d:75:c7:ad:e5:60:
da:d3:7c:5f:bf:32:c0:e4:08:24:47:c3:4a:ee:3c:
ea:dc:a3:ff:c4:c2:c4:68:db:ae:7a:a7:e0:27:1a:
8f:32:62:90:33:e6:09:9d:f1:8a:73:69:12:d3:17:
28:0d:80:23:dc:8e:b0:85:15:ef:be:72:4f:0a:35:
c6:14:cf:c0:d1:d2:d3:67:eb:a3:97:f7:73:2e:a1:
73:41:08:aa:61:da:4b:66:59:c1:fc:40:08:06:da:
50:55:d2:89:e8:11:e1:1c:69:28:16:cd:ff:83:ec:
2d:8d:10:d8:99:f7:e1:e8:00:50:3c:89:ee:e6:05:
ac:9f:d2:3f:1a:7c:ad:61:88:32:ef:08:98:86:59:
e5:32:d1:83:02:f1:46:2a:37:ac:2a:e6:90:0b:de:
e5:20:37:a5:b6:d8:84:e7:35:62:51:86:47:18:d0:
e0:4f:54:75:1f:bd:9e:18:4b:72:bd:7f:c4:47:00:
ac:f6:8e:99:33:36:35:09:da:12:b8:76:88:38:df:
a7:34:4a:2e:37:6a:17:f4:46:9a:0d:c1:7c:57:4f:
56:b3:b8:a7:8b:09:22:cd:a0:15:53:5e:dd:6c:35:
42:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B4:60:1C:17:A1:7D:50:92:FB:4E:70:4F:E0:BF:19:90:87:CA:2C
X509v3 Authority Key Identifier:
keyid:DA:9F:7E:FC:6C:B5:A9:B6:3B:0B:F8:B9:EE:89:3D:95:F6:E6:2B:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2p9-_Gy1qbY7C_i57ok9lfbmK3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f2c074-48ea-404f-8fbd-8e63d723cd2d/1/cLRgHBehfVCS-05wT-C_GZCHyiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f2c074-48ea-404f-8fbd-8e63d723cd2d/1/2p9-_Gy1qbY7C_i57ok9lfbmK3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.121.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:a9:13:01:3a:9f:be:93:84:14:10:d8:9b:73:73:5e:09:e5:
25:df:39:5e:81:23:23:c3:76:77:de:0a:51:c7:18:03:2c:90:
7a:04:b8:49:6a:a6:40:6a:cd:a9:bb:19:38:8c:67:40:02:c0:
00:38:5d:5e:d3:71:1a:9f:5c:56:ef:ef:c4:6c:c0:e2:ef:97:
a2:9f:a8:d2:50:05:4b:7a:2f:68:3b:0e:80:a2:07:72:f0:63:
7c:91:35:26:79:e0:8f:ab:69:39:da:c3:4f:57:ad:96:50:a9:
d9:46:64:a3:b1:7d:2f:e9:e1:de:d2:bb:68:9c:ac:77:56:5d:
5f:2e:76:52:d9:0e:41:a5:98:fe:71:10:3f:dd:a7:9a:80:ef:
09:d8:04:ce:2e:8d:71:9d:2d:78:c8:36:dd:c3:05:1e:af:38:
77:01:63:c4:27:4e:15:6e:76:90:8f:de:42:ff:e2:ae:84:af:
e0:81:c7:bb:9e:94:85:5f:4b:d3:25:32:3d:70:b0:e4:e3:d1:
b2:d9:09:44:81:3b:3e:9a:de:e3:fe:47:ec:dd:69:69:48:f5:
8e:01:5c:f4:a9:de:a5:d5:c8:a9:e9:2c:b1:69:33:47:94:85:
a6:1c:c1:5b:71:93:60:2b:9f:58:e9:0e:f8:10:93:0a:c3:36:
68:eb:73:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:21 2023 by rpki-client on console-ams.rpki-client.org