Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/tWTqWBuvt6yYni-PRvBGmQVA0GA.roa
File: tWTqWBuvt6yYni-PRvBGmQVA0GA.roa (raw, json)
Hash identifier: z7JhDJwaDD9fo+WjFtMxwtGTTFISVw2SSuyptbyCde4=
Subject key identifier: B5:64:EA:58:1B:AF:B7:AC:98:9E:2F:8F:46:F0:46:99:05:40:D0:60
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 093D21E1
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/tWTqWBuvt6yYni-PRvBGmQVA0GA.roa
Signing time: Sat 01 Jan 2022 09:53:05 +0000
ROA not before: Sat 01 Jan 2022 09:53:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208578
IP address blocks: 91.188.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155001313 (0x93d21e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Jan 1 09:53:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b564ea581bafb7ac989e2f8f46f046990540d060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7e:fb:f1:0d:ee:be:eb:bd:24:b6:b6:24:bd:
38:03:31:e4:40:58:c6:bd:b5:a2:84:f8:ce:27:af:
10:51:0f:0c:02:d2:29:ff:d0:13:83:b2:93:ce:37:
31:af:58:e9:85:77:10:c3:ac:eb:11:83:1d:b4:d0:
f8:1a:69:79:bc:52:dc:09:de:da:d7:34:68:18:0a:
54:e5:5c:39:5c:6e:f9:80:8a:5b:33:de:7e:50:66:
7a:19:81:79:bf:48:c6:2a:9a:90:0a:6a:ff:62:46:
ea:9e:bb:07:65:d3:9a:79:39:56:84:70:50:07:b4:
1a:eb:a9:26:bc:f0:b3:5e:bb:ab:02:e4:66:b2:88:
84:a0:e4:58:0a:9b:ac:a4:8f:48:46:2b:a4:bf:f4:
af:df:6e:e2:c8:02:c1:d3:b3:39:7b:6d:83:a3:ca:
19:3d:bd:ac:5c:2e:b5:55:ae:a5:6e:9e:11:53:2a:
b7:90:8f:d6:d1:42:60:bd:ad:84:c6:df:cf:eb:87:
c5:10:4b:88:a5:ff:02:fa:c4:a4:5e:01:fb:05:83:
7d:b7:96:3f:f3:eb:dd:66:16:1a:76:f8:75:95:33:
69:42:3b:da:13:b3:69:f5:69:3e:d7:ef:5f:b5:29:
c8:7d:9f:56:38:1a:d7:55:48:0b:1f:74:2f:a9:70:
65:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:64:EA:58:1B:AF:B7:AC:98:9E:2F:8F:46:F0:46:99:05:40:D0:60
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/tWTqWBuvt6yYni-PRvBGmQVA0GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.253.0/24
Signature Algorithm: sha256WithRSAEncryption
19:f2:c9:1d:6e:b9:72:77:2e:fe:f6:d1:c9:55:31:d5:2a:00:
1d:30:eb:09:cb:bf:3f:3d:7f:6a:44:6d:7a:d7:1a:5d:67:1b:
c4:0f:8c:43:a3:e6:fa:7d:f1:50:cf:bd:38:0f:92:3e:de:02:
ec:82:f3:51:73:9e:c0:5b:ee:b2:20:b4:82:fb:6d:28:db:7f:
91:c7:cd:e5:0c:74:1d:16:d1:51:14:d3:a2:a4:a1:3a:69:e3:
f8:be:7e:59:1b:e3:3e:cf:6a:23:b7:35:1d:81:6d:9e:c6:dd:
87:19:31:a6:34:ef:b8:2b:89:ae:c8:e6:70:da:d9:ea:5d:70:
d7:36:49:93:2d:09:4d:5d:89:a2:1e:84:ba:f8:e8:73:1e:f9:
a8:3f:42:e0:61:b1:76:8c:ad:2d:7f:28:97:d9:30:97:bb:ad:
c4:7b:21:ff:a3:c1:d9:cd:ad:75:5d:9c:71:d3:fa:8c:9f:44:
d5:7a:fa:f0:4c:1a:7b:72:f9:ab:e5:bf:5f:f8:bf:9d:01:b3:
13:a3:87:82:b2:9f:38:5c:2d:c5:56:61:38:b9:5e:5a:2d:fd:
93:6c:1d:7c:22:51:ed:d3:c1:7b:46:17:d7:05:e5:f3:65:80:
b1:6b:74:c8:3f:c0:41:44:57:3e:26:32:e1:97:2e:c4:43:45:
5c:82:60:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-fra.rpki-client.org