Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c80f6b-d58e-477b-b980-4411012ab99e/1/_OFpBufMXRT1tVKyjIhT7UBDWvg.roa
File: _OFpBufMXRT1tVKyjIhT7UBDWvg.roa (raw, json)
Hash identifier: JFOZNEA7iL7tkpAVCoaxyawR3Wl2ooMsfpldQ5C89v8=
Subject key identifier: FC:E1:69:06:E7:CC:5D:14:F5:B5:52:B2:8C:88:53:ED:40:43:5A:F8
Certificate issuer: /CN=376d5f9458838fcf16cc2870225ee5f88ff94dca
Certificate serial: 0192EE585DA0290D93313B1D7E492A04A4D1
Authority key identifier: 37:6D:5F:94:58:83:8F:CF:16:CC:28:70:22:5E:E5:F8:8F:F9:4D:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N21flFiDj88WzChwIl7l-I_5Tco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c80f6b-d58e-477b-b980-4411012ab99e/1/_OFpBufMXRT1tVKyjIhT7UBDWvg.roa
Signing time: Sat 02 Nov 2024 19:27:01 +0000
ROA not before: Sat 02 Nov 2024 19:27:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197042
IP address blocks: 91.216.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ee:58:5d:a0:29:0d:93:31:3b:1d:7e:49:2a:04:a4:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=376d5f9458838fcf16cc2870225ee5f88ff94dca
Validity
Not Before: Nov 2 19:27:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fce16906e7cc5d14f5b552b28c8853ed40435af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:92:f3:fc:d6:ea:35:0e:46:68:90:3a:5d:e0:
cc:b6:70:bb:89:83:60:d2:2a:c6:d3:5c:b2:be:9d:
f9:47:02:10:e7:aa:df:45:59:32:29:c7:31:35:7e:
5f:aa:60:10:69:ee:50:e6:af:07:63:42:a2:16:0c:
e5:94:ec:df:22:a5:08:a7:87:94:b0:7c:2f:01:b5:
3e:1a:88:75:3f:4d:f4:de:f4:a9:a7:24:fd:4d:3e:
10:53:b1:d4:72:50:c0:b3:39:52:d0:de:93:6d:10:
20:b2:0c:95:0c:8f:8f:b7:6c:5b:3b:a5:ba:58:12:
61:9d:aa:70:b2:96:58:f5:01:2b:c9:73:c2:6e:01:
94:11:3e:84:eb:5b:75:cd:47:a0:44:a4:a9:e7:64:
7e:ec:7a:73:c4:43:bc:9c:86:38:36:31:f9:92:a1:
52:79:72:b2:23:7e:87:ae:0b:e1:8e:b4:98:b1:ab:
dd:40:74:90:8e:78:17:67:61:37:e2:04:c9:1f:9e:
2e:66:32:07:17:81:8c:36:25:be:8c:63:5d:30:20:
07:da:fa:1e:56:54:e0:20:0b:53:07:ca:27:f1:0b:
e8:cc:50:53:81:4d:9c:6c:a8:d0:41:d5:52:0b:a0:
f2:7a:1a:86:2f:95:96:67:67:9e:bc:84:d1:17:af:
e3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E1:69:06:E7:CC:5D:14:F5:B5:52:B2:8C:88:53:ED:40:43:5A:F8
X509v3 Authority Key Identifier:
keyid:37:6D:5F:94:58:83:8F:CF:16:CC:28:70:22:5E:E5:F8:8F:F9:4D:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N21flFiDj88WzChwIl7l-I_5Tco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c80f6b-d58e-477b-b980-4411012ab99e/1/_OFpBufMXRT1tVKyjIhT7UBDWvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c80f6b-d58e-477b-b980-4411012ab99e/1/N21flFiDj88WzChwIl7l-I_5Tco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.148.0/24
Signature Algorithm: sha256WithRSAEncryption
94:02:db:3a:6f:07:c0:d9:c7:70:86:0c:5c:86:5b:c5:22:e5:
b1:7f:de:eb:89:be:69:45:cc:81:8f:9e:25:fa:13:48:2c:3e:
cf:4d:af:45:8d:e7:35:cc:8e:0b:14:10:18:e6:78:dc:44:64:
10:88:e2:01:a0:9b:33:34:9a:34:24:67:4e:6f:c0:77:bf:7d:
b4:44:03:e4:0c:27:43:55:d1:a2:12:26:52:83:75:3e:79:20:
a5:a6:e1:c0:ea:c1:a6:11:94:da:00:c5:1a:3a:1a:4c:4c:34:
63:65:99:70:0e:38:54:94:f7:6f:6b:34:7b:b7:cb:0d:53:6d:
4c:46:e0:f4:47:d8:12:6e:83:5d:cf:bf:f7:9e:36:79:63:20:
a0:d5:99:5c:b5:49:7c:86:12:aa:53:e5:90:0f:30:d7:5d:47:
e8:04:dc:0a:21:ea:11:ee:ae:8b:26:45:e3:74:53:7a:69:17:
cf:e1:fe:ff:b4:c5:24:44:ff:59:46:99:8f:50:dd:29:97:5f:
6c:e3:0f:95:b0:e4:ff:0c:04:56:11:8f:99:8c:6b:57:55:f3:
b4:3f:27:8a:94:86:45:70:02:e6:54:f1:96:f5:c0:70:95:ed:
f4:39:b3:20:f3:9f:cc:37:1f:38:89:3b:31:dd:df:67:b9:44:
7c:bc:43:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:14:44 2024 by rpki-client on console.sobornost.net