Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/8aSzldmpdY0GhobOKothlwmIsWU.roa
File: 8aSzldmpdY0GhobOKothlwmIsWU.roa (raw, json)
Hash identifier: 4rAEYgaPPzD3D8LwekpNDJlgQ5ATYWcXznSl1MN8R78=
Subject key identifier: F1:A4:B3:95:D9:A9:75:8D:06:86:86:CE:2A:8B:61:97:09:88:B1:65
Certificate issuer: /CN=9e090317adda08e323ebceed7d54565212742dba
Certificate serial: 01856EA6AE3890861F1E729B1429BD743FCC
Authority key identifier: 9E:09:03:17:AD:DA:08:E3:23:EB:CE:ED:7D:54:56:52:12:74:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngkDF63aCOMj687tfVRWUhJ0Lbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/8aSzldmpdY0GhobOKothlwmIsWU.roa
Signing time: Sun 01 Jan 2023 18:44:55 +0000
ROA not before: Sun 01 Jan 2023 18:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50599
IP address blocks: 91.236.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:ae:38:90:86:1f:1e:72:9b:14:29:bd:74:3f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e090317adda08e323ebceed7d54565212742dba
Validity
Not Before: Jan 1 18:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1a4b395d9a9758d068686ce2a8b61970988b165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:0a:74:db:ae:4c:7a:86:04:12:7e:82:13:
e1:e0:b3:05:15:b7:77:42:da:f3:be:05:0d:65:81:
cb:90:5a:be:1d:10:aa:43:98:e9:24:4d:7f:ea:71:
fa:16:45:32:ba:55:40:01:c0:85:e3:47:31:50:b9:
03:bb:54:79:3b:49:8e:a0:38:f8:12:2e:63:da:6f:
a5:f8:0d:a9:6f:a9:34:31:2b:66:c0:78:a6:f1:36:
bd:36:70:04:d0:ed:7e:cc:cb:5f:cb:39:00:4c:73:
72:65:eb:cc:6a:39:f3:d2:95:45:5e:8f:73:1d:ec:
7b:64:dc:cb:18:39:89:8e:10:48:24:ff:0f:bd:a8:
82:97:cf:9a:92:ce:2b:9a:fc:f5:5a:30:ae:9b:52:
be:ca:82:c2:31:7c:16:6e:15:53:72:90:9a:b6:70:
22:7f:2a:31:94:c7:99:34:68:d4:1f:c6:a6:b1:1e:
1d:32:72:d6:fb:e3:50:e2:74:2b:15:e0:40:c1:6a:
33:b3:b8:f5:ee:cc:ca:fa:08:9e:2b:a0:e5:47:c1:
46:57:96:6f:77:ba:74:e2:73:e4:68:3e:d0:22:70:
d6:5b:ed:a8:b6:a8:53:df:39:93:3f:aa:94:08:b2:
c0:c8:86:c2:4a:27:e5:d1:c9:d3:15:3b:ab:b9:49:
4f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A4:B3:95:D9:A9:75:8D:06:86:86:CE:2A:8B:61:97:09:88:B1:65
X509v3 Authority Key Identifier:
keyid:9E:09:03:17:AD:DA:08:E3:23:EB:CE:ED:7D:54:56:52:12:74:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngkDF63aCOMj687tfVRWUhJ0Lbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/8aSzldmpdY0GhobOKothlwmIsWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/ngkDF63aCOMj687tfVRWUhJ0Lbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.131.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:f8:35:ec:af:97:5c:d7:80:2c:8b:5a:cf:40:36:d3:6d:42:
16:35:e8:bd:7a:4c:8e:4f:6d:83:da:37:b7:13:e6:99:a1:46:
db:69:bc:d3:66:b9:34:4d:4e:eb:43:47:67:59:0f:7b:4c:27:
36:c2:b2:51:e3:6d:7a:d2:69:7e:9d:cd:19:e1:46:15:61:d7:
54:31:dd:17:10:3a:0f:4b:b8:00:58:8b:43:cd:a0:80:f8:3a:
22:e2:f6:b5:ce:b5:9c:ce:a5:fc:36:36:e6:ac:e9:5a:cd:6d:
07:2a:c4:75:6c:23:cb:7a:ea:cc:b0:7a:20:92:70:af:51:ac:
00:b9:76:fd:82:cb:44:8f:d6:ec:9d:47:1b:c4:93:65:c9:2d:
e1:b7:75:bf:af:23:93:2e:55:c6:98:c8:f8:f2:8c:2c:39:56:
d1:71:07:c4:fd:71:32:ad:e9:d2:82:a0:6f:d0:73:3a:f7:33:
5f:02:a7:c9:7e:05:b9:23:9a:62:9c:4a:fe:8b:00:3b:4e:0d:
11:77:a9:6a:e2:d2:ac:64:9d:4e:f6:c9:ec:59:93:95:4a:cd:
46:96:fa:c0:7d:4f:27:ae:4d:c1:42:df:2c:91:6a:0e:e0:95:
7e:82:c7:88:50:99:87:fb:67:06:be:6b:75:40:2f:ab:d8:e6:
39:fb:7c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:42 2024 by rpki-client on console-fra.rpki-client.org