Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/JeLgXdOtqEZyzvqE_aCGgYBMqbs.roa
File: JeLgXdOtqEZyzvqE_aCGgYBMqbs.roa (raw, json)
Hash identifier: jnmdNtD5JY18Bgpv9hD0zjMMhbFVz24XlGqmQUY0FIU=
Subject key identifier: 25:E2:E0:5D:D3:AD:A8:46:72:CE:FA:84:FD:A0:86:81:80:4C:A9:BB
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 0184732DAA40E5E0DBE74592A64666D70F11
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/JeLgXdOtqEZyzvqE_aCGgYBMqbs.roa
Signing time: Sun 13 Nov 2022 22:48:03 +0000
ROA not before: Sun 13 Nov 2022 22:48:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204729
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:73:2d:aa:40:e5:e0:db:e7:45:92:a6:46:66:d7:0f:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Nov 13 22:48:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25e2e05dd3ada84672cefa84fda08681804ca9bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:87:43:a4:c3:b9:bc:1e:04:1d:92:d6:c2:23:
a4:20:62:57:fe:e6:19:b2:b5:1e:a8:eb:9e:97:31:
c5:bd:8f:07:c2:af:69:c4:d6:f2:d2:05:40:9e:b4:
b1:9b:43:90:ce:cf:38:fd:5c:ce:39:38:49:8d:22:
d8:8a:9b:e7:d8:0e:a4:b0:ad:fc:b9:b7:fa:52:72:
d8:e0:b4:90:ff:39:b6:75:f9:5f:66:48:b1:d4:f2:
0a:fd:13:12:cc:b1:2d:70:6a:83:6b:e7:39:7e:d7:
e0:35:3c:d2:07:fa:5c:68:5f:ad:32:a4:dc:34:df:
c8:c8:ae:5f:ff:23:c4:e5:70:ff:dc:dc:e5:e6:8f:
04:b7:a1:dc:a1:b5:4d:0f:24:46:3f:e3:27:bb:99:
ef:4c:55:c1:25:6e:0c:ae:0a:79:e7:d8:e7:07:81:
b0:8e:5e:ea:4a:8d:11:b9:97:c0:a5:fa:6f:fc:c7:
df:58:50:eb:51:11:7f:36:26:86:3f:93:8d:27:44:
f0:f3:05:a8:1b:b0:16:b8:1d:1e:2e:91:82:0c:48:
18:4c:c6:ce:53:18:1c:73:d1:db:b6:0a:53:9e:ce:
b4:89:6d:cb:92:a1:80:78:05:be:2d:f8:d5:8d:3e:
b4:6c:d3:ef:64:cd:98:3e:28:2a:00:b5:59:1a:f5:
ff:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E2:E0:5D:D3:AD:A8:46:72:CE:FA:84:FD:A0:86:81:80:4C:A9:BB
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/JeLgXdOtqEZyzvqE_aCGgYBMqbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
35:08:ce:60:85:05:88:17:9c:a1:12:04:69:ce:b4:6c:0b:19:
05:9c:ca:1c:c2:dc:5e:49:4e:50:a3:f3:4f:6d:b2:18:3d:eb:
37:21:1d:96:e9:11:e3:74:82:e1:3c:9b:70:d9:bc:23:2a:13:
af:d0:c7:3f:f0:b1:c1:e2:37:f5:4b:17:ce:bc:80:47:ae:d1:
b7:a0:b3:f9:7b:67:56:40:83:ef:cf:e3:1c:cc:97:6a:77:d7:
1f:35:30:02:15:60:46:d0:06:a4:42:58:d3:ae:18:2f:d6:ff:
29:e4:51:d8:b2:ba:57:f1:9a:12:73:d9:6a:d9:d5:b5:99:6b:
e0:00:35:fc:34:0c:d0:c0:25:4e:88:14:b6:89:55:0c:b2:59:
01:5d:d1:f3:c5:c1:e0:c2:71:b4:3d:64:d9:1d:d2:ae:e9:c9:
56:3f:68:02:19:f5:e9:1b:b6:41:d6:f9:7b:b8:81:94:cd:ca:
b0:92:35:82:80:30:87:e3:c9:b5:b7:59:e3:07:c9:4f:0a:33:
e9:a9:f4:18:44:5a:15:fd:42:ef:d5:e8:a4:bf:a7:ce:71:27:
b6:a8:92:6e:9f:7a:f9:14:f4:37:d0:9f:7d:70:df:74:cc:f5:
10:28:18:f4:ad:05:d8:63:9a:60:e2:c4:5a:cf:93:28:92:c4:
e7:9c:dd:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-fra.rpki-client.org