Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/E1zJojnDnld6bELD5NQebCMiXRY.roa
File: E1zJojnDnld6bELD5NQebCMiXRY.roa (raw, json)
Hash identifier: l+2H+pE3grrK7NWkwZwgexzaP9kGOA8QqApCT3L+ww4=
Subject key identifier: 13:5C:C9:A2:39:C3:9E:57:7A:6C:42:C3:E4:D4:1E:6C:23:22:5D:16
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 0186515C0E173076F1CA7521C6A5FCDC8C94
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/E1zJojnDnld6bELD5NQebCMiXRY.roa
Signing time: Tue 14 Feb 2023 19:17:12 +0000
ROA not before: Tue 14 Feb 2023 19:17:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 263522
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:51:5c:0e:17:30:76:f1:ca:75:21:c6:a5:fc:dc:8c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Feb 14 19:17:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=135cc9a239c39e577a6c42c3e4d41e6c23225d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9b:0d:92:aa:85:9e:b2:52:b3:9b:84:a7:72:
77:fa:bf:58:8e:96:3e:61:b2:e6:13:26:70:05:23:
15:60:78:97:19:b9:a7:3c:db:68:ef:3c:b4:d2:d4:
49:31:07:81:c0:69:a9:5a:d1:67:2e:ec:84:eb:41:
29:27:83:87:19:b6:59:7f:85:03:0a:48:39:1d:b1:
e5:b0:68:32:be:2a:42:f7:9d:d7:4b:fd:a2:cc:34:
a7:5a:d9:cf:f7:c7:f8:ab:03:a7:22:c4:c9:7b:b7:
a4:73:71:a2:ad:ee:8c:f5:67:98:0c:2b:9d:47:5c:
1d:79:5c:89:30:3d:cb:2b:b0:5c:11:db:4a:25:77:
f4:73:f9:77:f1:83:61:6b:e6:e0:9d:46:ce:f6:6a:
3a:2d:c8:76:b1:f7:1a:0e:96:cf:44:b0:af:a5:3d:
f4:a8:95:55:24:b6:94:02:52:4d:73:8f:b2:e9:c3:
3d:6f:55:a3:a4:86:6a:d2:73:55:48:dd:11:98:59:
b7:6d:61:a6:b1:6a:d8:9e:ac:a4:21:e8:c9:49:e6:
c7:4f:90:4d:3c:dc:40:97:c2:26:6b:2a:8a:e3:d1:
3f:06:fc:55:28:40:27:b6:99:13:db:c0:fc:12:ce:
5f:5d:ae:14:e6:52:55:a6:de:d7:f2:4e:61:e9:be:
8a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5C:C9:A2:39:C3:9E:57:7A:6C:42:C3:E4:D4:1E:6C:23:22:5D:16
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/E1zJojnDnld6bELD5NQebCMiXRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:4e:cf:21:cc:75:6a:ff:bd:b8:19:af:3a:a2:e9:74:9a:22:
c2:95:e0:5f:47:08:fd:95:87:02:ef:04:07:2a:1d:52:bf:c1:
12:c6:49:2b:89:a9:51:95:94:02:be:91:0c:0e:61:41:ab:2a:
6e:c1:cc:8b:e8:6d:47:ae:89:25:0c:8a:9f:c9:bc:55:83:a5:
e4:af:3a:42:63:6c:df:63:48:e8:8d:e7:39:c0:7e:b2:a9:e4:
7d:ea:89:55:5c:b9:ee:69:1b:3b:3f:5b:50:36:2f:d1:09:90:
a5:7f:2a:0e:ef:47:08:bc:46:bd:85:d6:37:25:31:f0:c6:d0:
b3:17:52:68:70:4f:0d:33:41:17:ec:dc:df:e1:d0:ae:fe:2c:
68:f0:12:b0:ad:5a:91:94:4e:25:a8:eb:60:1a:6c:0e:b7:ba:
5b:01:a5:83:f0:7b:f1:cf:8e:a0:c5:19:9d:62:a4:a4:53:8c:
33:e7:f0:58:4d:0d:3d:f1:91:95:bd:41:c2:50:df:08:c1:0b:
48:f3:ef:b8:4c:22:f9:1f:93:41:a3:ea:25:53:d9:f6:36:64:
51:68:d2:49:cb:4e:f0:cc:35:53:f3:ad:a4:16:93:6e:85:87:
8e:5a:c6:c4:74:f4:11:eb:a1:ff:46:09:1c:fa:89:ce:80:71:
12:8f:ff:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-fra.rpki-client.org