Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/1fc53e-78f4-4230-ab19-c75eef8b6e82/1/KVgcTzUHu_bILUrFzkyI8tJuwjc.roa
File: KVgcTzUHu_bILUrFzkyI8tJuwjc.roa (raw, json)
Hash identifier: 9Q7tviULqWT4jQ5isNJLqBOMflIA9/VHu4HYe6cLYPU=
Subject key identifier: 29:58:1C:4F:35:07:BB:F6:C8:2D:4A:C5:CE:4C:88:F2:D2:6E:C2:37
Certificate issuer: /CN=9f740b2d865dd989fc4b556854712cb1efc5f3d2
Certificate serial: 0185ED6B093FDBE41D3D3C6BC49318892021
Authority key identifier: 9F:74:0B:2D:86:5D:D9:89:FC:4B:55:68:54:71:2C:B1:EF:C5:F3:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n3QLLYZd2Yn8S1VoVHEsse_F89I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/1fc53e-78f4-4230-ab19-c75eef8b6e82/1/KVgcTzUHu_bILUrFzkyI8tJuwjc.roa
Signing time: Thu 26 Jan 2023 09:31:32 +0000
ROA not before: Thu 26 Jan 2023 09:31:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48882
IP address blocks: 91.224.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:6b:09:3f:db:e4:1d:3d:3c:6b:c4:93:18:89:20:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f740b2d865dd989fc4b556854712cb1efc5f3d2
Validity
Not Before: Jan 26 09:31:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29581c4f3507bbf6c82d4ac5ce4c88f2d26ec237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:68:f7:81:a0:23:7f:51:9f:8f:cd:c3:aa:65:
c7:d5:f9:bf:54:df:68:1f:9d:a3:f6:29:ca:92:b5:
4d:69:d3:11:50:17:c1:70:24:aa:38:72:2a:cf:3b:
b1:ac:79:a4:ec:c5:77:ef:5d:90:f4:b3:27:d5:3f:
bb:3e:3a:26:93:7c:78:0a:81:9c:27:9a:b3:4b:9a:
15:21:95:f0:dd:0e:05:54:38:d0:9e:af:a5:c4:ed:
84:44:95:1f:8e:bc:0c:11:21:50:6e:02:15:38:1b:
9b:5b:ef:77:03:eb:29:c9:5c:3f:02:d4:4d:98:c6:
b7:c6:77:0b:60:99:d2:bb:28:d9:5b:ca:fa:06:fc:
43:76:56:d0:f2:0e:1e:79:53:d4:e7:09:10:fc:c4:
8d:aa:9f:5c:ae:a9:e3:09:1c:ef:1c:5b:44:b3:83:
31:ac:0f:96:00:cb:8d:ac:5a:f6:e7:69:be:02:99:
50:df:b2:c4:8a:50:a7:a6:06:93:ee:c1:51:f1:bd:
f6:08:5c:64:04:46:6b:e8:bb:2e:3d:ea:1e:52:fd:
06:dc:47:19:71:fc:72:45:e5:28:fe:84:03:37:54:
7e:c5:02:51:af:90:6a:3e:51:22:e7:58:1f:27:bf:
ad:f7:12:95:6c:ef:d2:2b:ff:e7:1f:07:e0:af:da:
9d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:58:1C:4F:35:07:BB:F6:C8:2D:4A:C5:CE:4C:88:F2:D2:6E:C2:37
X509v3 Authority Key Identifier:
keyid:9F:74:0B:2D:86:5D:D9:89:FC:4B:55:68:54:71:2C:B1:EF:C5:F3:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n3QLLYZd2Yn8S1VoVHEsse_F89I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/1fc53e-78f4-4230-ab19-c75eef8b6e82/1/KVgcTzUHu_bILUrFzkyI8tJuwjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/1fc53e-78f4-4230-ab19-c75eef8b6e82/1/n3QLLYZd2Yn8S1VoVHEsse_F89I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.140.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:40:fe:33:66:a0:86:3c:e3:f7:d4:64:1d:4b:66:d9:ab:d8:
43:68:f3:76:5c:ad:8e:09:07:ba:33:6f:dd:60:a5:f8:01:d6:
8b:54:04:75:0b:4f:6d:83:a7:a0:0a:c9:09:99:cb:75:39:13:
88:1b:b9:50:1e:b8:6c:8e:67:38:86:20:c9:81:c7:29:f0:e6:
e7:de:92:53:96:88:a4:b8:db:aa:7b:77:c6:0f:eb:17:af:97:
ff:2c:c8:34:ab:18:10:17:9b:49:7d:8c:cb:a6:64:b2:35:b4:
ef:7f:40:69:88:ee:71:65:d1:a6:78:78:c2:f6:ab:a6:56:ff:
8f:f0:7a:bd:b6:c0:2a:fb:f2:b0:a0:25:ae:ef:5b:14:be:26:
2f:0e:98:4d:9a:7a:ef:95:79:2e:1c:53:fe:35:3b:1c:e1:d8:
e9:99:0f:ac:f8:58:6c:21:d2:52:e1:a5:df:68:f4:de:a4:90:
69:29:cd:ec:aa:d0:e2:e1:2d:de:ce:05:c4:e7:35:fc:89:17:
fc:47:f9:47:44:2c:7f:2a:bc:27:e5:6d:6b:3b:37:f6:4a:dc:
a6:66:85:3b:19:d9:f7:69:f3:d9:33:1f:30:41:20:3d:8c:e5:
0e:38:f3:5d:b0:48:bc:79:7b:07:ec:f9:e6:3a:a3:2b:9c:f4:
29:41:9e:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net