Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/WMxlYQTNCFKZ91woT-tbC4G_mdo.roa
File: WMxlYQTNCFKZ91woT-tbC4G_mdo.roa (raw, json)
Hash identifier: TkaNe/C50oT5dxlHxTV23cWdZtLO3z1541WgBwcvSDg=
Subject key identifier: 58:CC:65:61:04:CD:08:52:99:F7:5C:28:4F:EB:5B:0B:81:BF:99:DA
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 09B17E34
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/WMxlYQTNCFKZ91woT-tbC4G_mdo.roa
Signing time: Thu 17 Feb 2022 14:32:16 +0000
ROA not before: Thu 17 Feb 2022 14:32:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 91.188.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162627124 (0x9b17e34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Feb 17 14:32:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58cc656104cd085299f75c284feb5b0b81bf99da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cb:99:77:39:fa:68:06:60:d8:94:76:50:e4:
4a:e5:b0:62:09:63:be:9f:53:9f:7f:28:3b:45:8c:
95:9d:da:58:d7:50:a0:11:9e:fb:40:55:64:f7:ab:
b1:29:12:41:f7:54:28:42:2f:79:c2:21:c1:81:b7:
8b:8f:f2:37:33:3b:d4:c8:8d:1c:dd:38:89:41:fd:
05:23:6b:51:40:2b:50:13:8d:8f:62:f5:1d:9a:58:
02:24:60:49:f4:11:40:00:96:f5:d6:dc:0b:de:bb:
79:18:26:f1:49:4a:1e:d4:58:b8:a8:54:d1:47:39:
22:57:40:82:c6:49:82:af:f4:87:e7:18:f2:62:18:
83:c4:2e:9c:ed:19:54:88:70:5b:6c:a9:c3:7c:0e:
af:4e:b9:31:cb:5f:f0:f4:68:3d:a5:03:79:7c:87:
b9:ae:87:2b:49:6f:58:6d:4e:3d:4c:cc:01:6f:be:
fc:b7:f1:1e:eb:65:db:61:5c:7e:78:51:47:41:22:
2f:65:4c:c9:d4:44:84:70:88:65:3b:26:96:e7:f8:
50:d6:14:00:3a:b4:b7:85:d9:ec:d1:4b:6d:4c:46:
d8:4c:73:f1:f1:ea:82:97:09:46:2d:15:e7:06:ea:
02:6c:1c:52:65:b4:c4:d9:fa:28:13:d4:4b:24:70:
46:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CC:65:61:04:CD:08:52:99:F7:5C:28:4F:EB:5B:0B:81:BF:99:DA
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/WMxlYQTNCFKZ91woT-tbC4G_mdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.255.0/24
Signature Algorithm: sha256WithRSAEncryption
42:8f:d7:e9:3f:b1:33:b3:6f:9a:e8:c4:d0:7d:2d:da:05:ee:
38:11:ce:96:95:0e:1b:d0:78:b9:78:56:9a:a6:74:82:44:a7:
b0:31:b6:f4:7b:69:97:eb:1c:ae:55:aa:02:96:8f:ff:8d:69:
f7:a2:a6:37:3f:c6:e4:b9:37:26:ed:4a:6b:af:e8:f4:27:f8:
6c:d3:c8:c9:ee:50:23:7c:e3:dd:42:64:76:e3:cb:32:d7:6b:
17:a2:e7:56:61:79:7b:a5:70:47:00:c3:2e:9f:a8:29:2c:87:
97:b9:d5:8c:47:76:7c:4e:87:6a:63:fc:64:a7:1e:c8:e4:fa:
ed:19:fd:f4:d9:56:c4:eb:43:2b:6c:63:37:09:eb:f8:55:c4:
46:65:90:1f:cb:6d:f2:3b:af:df:2a:e5:58:5b:36:8d:29:7c:
c1:78:84:b8:32:e5:cd:12:c2:f6:36:64:27:8c:64:07:ae:62:
2a:00:cf:2b:1d:65:64:ed:62:3c:dc:bf:d6:01:5f:f4:d8:c3:
0f:12:1c:9b:02:82:0a:01:0a:c0:02:72:70:05:08:18:6a:ec:
55:71:ca:7d:cf:9b:6c:d1:9c:02:a6:34:49:54:4a:c8:5d:5b:
57:d8:b1:2f:13:0b:b7:a8:26:79:f6:ee:42:d9:1f:ad:94:f4:
ed:95:44:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org