Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/255149-8c4b-4cd8-919f-77bb532228b4/1/CSbGjCXmK9UWJwCqqtP52mpkEZo.roa
File: CSbGjCXmK9UWJwCqqtP52mpkEZo.roa (raw, json)
Hash identifier: HDe3hmHgKivdkcNxJ239FXFnBgk23yy7rz9ifS4T1O4=
Subject key identifier: 09:26:C6:8C:25:E6:2B:D5:16:27:00:AA:AA:D3:F9:DA:6A:64:11:9A
Certificate issuer: /CN=738e893dcd347f7dab5f70d351f8fce1deaa65d1
Certificate serial: 01907340B3F7000A9CC111E40F2552626F2B
Authority key identifier: 73:8E:89:3D:CD:34:7F:7D:AB:5F:70:D3:51:F8:FC:E1:DE:AA:65:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c46JPc00f32rX3DTUfj84d6qZdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/255149-8c4b-4cd8-919f-77bb532228b4/1/CSbGjCXmK9UWJwCqqtP52mpkEZo.roa
Signing time: Tue 02 Jul 2024 11:42:18 +0000
ROA not before: Tue 02 Jul 2024 11:42:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51924
IP address blocks: 91.220.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:40:b3:f7:00:0a:9c:c1:11:e4:0f:25:52:62:6f:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=738e893dcd347f7dab5f70d351f8fce1deaa65d1
Validity
Not Before: Jul 2 11:42:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0926c68c25e62bd5162700aaaad3f9da6a64119a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:90:f1:91:eb:28:eb:3a:d5:b4:a8:a1:63:
1f:ad:10:95:4d:0a:bb:33:09:15:39:38:81:1d:dc:
81:c0:48:6a:c3:47:6b:3e:ce:97:3f:7c:3e:e2:c9:
ad:b0:48:67:82:7c:36:29:33:6d:4e:3a:0e:6c:e9:
3f:96:90:01:5b:9c:db:67:da:39:2a:73:4e:71:8b:
93:a1:fc:d9:73:fe:eb:55:00:93:00:7d:f0:ee:b0:
33:96:e1:72:90:c1:46:b1:1b:1f:c0:9d:17:4e:5d:
02:21:5e:79:6e:a9:29:41:8d:a4:62:f2:a0:2b:55:
ad:4c:2e:07:0a:ea:9e:a4:2a:a1:59:64:47:6f:d8:
38:57:64:a6:cd:a6:46:99:1a:b9:c4:2a:67:32:ec:
47:da:0e:76:8f:c7:ef:5e:34:99:b7:36:ac:bf:4e:
71:07:83:cf:51:71:a2:d9:fe:11:ee:ba:dd:83:98:
14:b5:26:8b:a9:68:37:1b:53:a0:ee:10:06:43:9e:
78:95:ae:9c:5c:9a:14:37:cb:a4:27:be:72:9f:a2:
1b:2e:a6:1a:b9:e6:58:58:25:be:a1:55:b5:c7:9e:
0f:35:47:b5:54:4f:2b:56:06:ed:ce:71:06:60:ee:
7b:06:a3:0c:6f:2f:39:fa:c5:bc:53:9d:8a:f8:b8:
c6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:26:C6:8C:25:E6:2B:D5:16:27:00:AA:AA:D3:F9:DA:6A:64:11:9A
X509v3 Authority Key Identifier:
keyid:73:8E:89:3D:CD:34:7F:7D:AB:5F:70:D3:51:F8:FC:E1:DE:AA:65:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c46JPc00f32rX3DTUfj84d6qZdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/255149-8c4b-4cd8-919f-77bb532228b4/1/CSbGjCXmK9UWJwCqqtP52mpkEZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/255149-8c4b-4cd8-919f-77bb532228b4/1/c46JPc00f32rX3DTUfj84d6qZdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.187.0/24
Signature Algorithm: sha256WithRSAEncryption
38:53:84:17:51:36:6f:a8:48:47:b1:98:d3:1c:92:e6:44:9d:
91:87:6d:df:1d:de:35:7f:9e:6e:53:41:44:10:65:ec:cd:4e:
b2:b7:2b:b5:31:89:68:c8:fe:ef:4f:3b:96:72:8e:7d:55:28:
22:c0:c8:43:41:6f:29:87:53:26:fe:74:d5:14:9f:38:a4:12:
55:61:d7:c1:35:ce:c1:b6:9b:42:85:b3:40:15:2f:2c:8a:60:
0c:bd:e5:02:48:70:f5:fb:af:2a:7f:c2:43:26:ac:2d:0d:b6:
c0:1e:54:ce:73:11:25:0c:47:a2:bd:2a:d6:c9:57:39:26:74:
56:cb:7e:77:7f:b0:89:0c:4e:73:bb:55:40:2d:eb:84:df:bc:
86:7f:b1:f3:07:70:38:24:cb:57:e1:0f:dd:ce:12:cf:e1:fb:
9b:c2:58:db:a1:eb:5d:cb:a4:59:cd:39:1c:40:b3:f1:37:49:
bb:2a:1d:dd:28:3d:19:65:1e:df:ba:8d:4b:e3:ba:30:f8:d5:
b2:28:32:4e:2d:d5:c6:b7:f0:01:29:36:71:22:fd:bc:6d:93:
de:4c:d4:12:8d:3b:54:10:02:db:3f:e6:43:25:46:6c:fa:c8:
5c:39:5a:4b:bb:cf:77:20:02:8e:45:05:33:dc:3b:e2:18:03:
9a:65:57:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBzQLP3AAqcwRHkDyVSYm8rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczOGU4OTNkY2QzNDdmN2RhYjVmNzBkMzUxZjhmY2UxZGVh
YTY1ZDEwHhcNMjQwNzAyMTE0MjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTI2YzY4YzI1ZTYyYmQ1MTYyNzAwYWFhYWQzZjlkYTZhNjQxMTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0qQ8ZHrKOs61bSooWMfrRCVTQq7
MwkVOTiBHdyBwEhqw0drPs6XP3w+4smtsEhngnw2KTNtTjoObOk/lpABW5zbZ9o5
KnNOcYuTofzZc/7rVQCTAH3w7rAzluFykMFGsRsfwJ0XTl0CIV55bqkpQY2kYvKg
K1WtTC4HCuqepCqhWWRHb9g4V2SmzaZGmRq5xCpnMuxH2g52j8fvXjSZtzasv05x
B4PPUXGi2f4R7rrdg5gUtSaLqWg3G1Og7hAGQ554la6cXJoUN8ukJ75yn6IbLqYa
ueZYWCW+oVW1x54PNUe1VE8rVgbtznEGYO57BqMMby85+sW8U52K+LjGYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAkmxowl5ivVFicAqqrT+dpqZBGaMB8GA1UdIwQY
MBaAFHOOiT3NNH99q19w01H4/OHeqmXRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzQ2SlBjMDBmMzJyWDNEVFVmajg0ZDZxWmRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yNTUxNDktOGM0Yi00Y2Q4LTkxOWYt
NzdiYjUzMjIyOGI0LzEvQ1NiR2pDWG1LOVVXSndDcXF0UDUybXBrRVpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yNTUxNDktOGM0Yi00Y2Q4LTkxOWYtNzdiYjUzMjIyOGI0
LzEvYzQ2SlBjMDBmMzJyWDNEVFVmajg0ZDZxWmRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9y7MA0G
CSqGSIb3DQEBCwUAA4IBAQA4U4QXUTZvqEhHsZjTHJLmRJ2Rh23fHd41f55uU0FE
EGXszU6ytyu1MYloyP7vTzuWco59VSgiwMhDQW8ph1Mm/nTVFJ84pBJVYdfBNc7B
tptChbNAFS8simAMveUCSHD1+68qf8JDJqwtDbbAHlTOcxElDEeivSrWyVc5JnRW
y353f7CJDE5zu1VALeuE37yGf7HzB3A4JMtX4Q/dzhLP4fubwljboetdy6RZzTkc
QLPxN0m7Kh3dKD0ZZR7fuo1L47ow+NWyKDJOLdXGt/ABKTZxIv28bZPeTNQSjTtU
EALbP+ZDJUZs+shcOVpLu893IAKORQUz3DviGAOaZVdk
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:59 2024 by rpki-client on console.sobornost.net