Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/4LVlp63baW6I4UrxhLtOE3G-Ogc.roa
File: 4LVlp63baW6I4UrxhLtOE3G-Ogc.roa (raw, json)
Hash identifier: APB8jfznm46ywdw1UtPR8D5T9YpB9MCVZhOM8uzYZGg=
Subject key identifier: E0:B5:65:A7:AD:DB:69:6E:88:E1:4A:F1:84:BB:4E:13:71:BE:3A:07
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 0A0B4649
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/4LVlp63baW6I4UrxhLtOE3G-Ogc.roa
Signing time: Tue 29 Mar 2022 08:49:57 +0000
ROA not before: Tue 29 Mar 2022 08:49:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168511049 (0xa0b4649)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Mar 29 08:49:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0b565a7addb696e88e14af184bb4e1371be3a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:03:4e:1d:ee:f3:87:2e:6e:aa:81:9a:72:cf:
80:92:74:7c:d8:35:87:e9:47:30:19:0a:c9:ed:ef:
ab:b6:62:ad:6f:a2:e6:b1:da:da:96:78:2f:b6:12:
42:1d:90:2b:5c:ba:9f:34:0c:21:2e:b9:af:27:d2:
98:0e:0c:c7:f1:8c:6b:fe:8c:a1:2a:86:e1:d4:d7:
95:67:df:6b:40:42:42:bb:04:b6:fb:f7:c5:e8:bb:
29:a0:7e:34:1a:02:d4:0c:b6:c5:a5:a8:67:b0:d7:
48:30:10:ff:1d:e6:c5:6c:38:e6:dd:20:a7:5a:ad:
53:70:70:4e:e0:6c:e0:3c:92:ad:09:7a:05:4c:9d:
8f:a0:ca:f6:19:af:04:a0:95:ef:c7:14:3e:73:d7:
a5:a5:75:ed:b4:61:dd:25:90:08:f9:8d:df:88:a6:
16:ae:94:43:0e:57:91:1b:89:d5:14:84:96:83:b5:
2b:08:05:45:0d:2d:e4:79:0f:59:d8:64:2e:18:e9:
4e:d1:83:8c:0f:f1:38:7f:82:10:23:83:65:62:16:
d7:05:3f:47:cc:2e:65:41:58:b8:9e:08:3d:f7:df:
2e:37:e8:ec:5b:bd:7b:15:66:a0:b3:7a:1a:68:a6:
71:ff:b2:d0:37:2f:fb:48:8c:a7:06:5a:d5:53:4e:
f2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B5:65:A7:AD:DB:69:6E:88:E1:4A:F1:84:BB:4E:13:71:BE:3A:07
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/4LVlp63baW6I4UrxhLtOE3G-Ogc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:58:3b:16:fe:a1:ec:75:c9:ff:9e:4a:49:41:69:15:19:2d:
97:af:cf:92:ba:1a:46:98:fa:61:2e:9c:0a:64:4d:81:8e:83:
6b:46:ca:10:3a:f0:bf:da:83:61:7b:18:a3:c5:9c:ff:91:93:
a6:ca:b3:e1:f6:1b:e9:5c:3d:5a:b5:1e:86:84:f3:5b:b1:13:
8b:12:fe:c9:13:8c:d6:6e:cc:db:36:9c:85:30:18:88:e1:39:
c9:af:ed:aa:e2:69:14:f4:c4:f4:c9:c9:e5:e2:f9:c9:bc:9f:
c7:b2:9a:f2:c2:0f:86:21:5c:18:c0:d3:2c:28:b7:2a:73:df:
35:a3:6e:b5:b8:10:50:05:71:dc:d8:1e:d3:e0:3b:f0:a8:40:
3d:d9:56:93:35:59:68:4d:86:a9:83:58:f5:42:dd:f7:8b:b3:
78:60:5c:38:67:e6:7b:18:f4:ac:60:2a:80:d4:c8:c8:7d:1b:
3b:0d:2d:bd:a8:74:81:fa:fb:8e:6e:15:eb:fe:88:d6:e9:90:
f5:b2:6b:ac:50:a5:50:f4:e4:89:5c:44:48:e4:a4:6e:23:6f:
f1:b2:ca:73:ce:f8:22:90:13:e4:db:4b:85:df:dc:19:8f:96:
6f:c0:14:f9:a4:fe:70:34:a8:35:3e:ff:cd:9c:c0:0f:e5:f8:
d5:5f:86:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-fra.rpki-client.org