Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/03598f-2a33-455c-8599-e0d7a53adfa5/1/TciWkypV3a5IoIlFOMROQVqINKg.roa
File: TciWkypV3a5IoIlFOMROQVqINKg.roa (raw, json)
Hash identifier: QPKxJVC/8KR4dLf/gDoPSWhHo3Bae1aB1Ic0vMXN408=
Subject key identifier: 4D:C8:96:93:2A:55:DD:AE:48:A0:89:45:38:C4:4E:41:5A:88:34:A8
Certificate issuer: /CN=c101e1eaf9d0a501cd48c3ebb0e15da962308504
Certificate serial: 018570FBC1CDBAD5E3432072FB6E5B8DA6A7
Authority key identifier: C1:01:E1:EA:F9:D0:A5:01:CD:48:C3:EB:B0:E1:5D:A9:62:30:85:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQHh6vnQpQHNSMPrsOFdqWIwhQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/03598f-2a33-455c-8599-e0d7a53adfa5/1/TciWkypV3a5IoIlFOMROQVqINKg.roa
Signing time: Mon 02 Jan 2023 05:37:05 +0000
ROA not before: Mon 02 Jan 2023 05:37:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 91.242.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:c1:cd:ba:d5:e3:43:20:72:fb:6e:5b:8d:a6:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c101e1eaf9d0a501cd48c3ebb0e15da962308504
Validity
Not Before: Jan 2 05:37:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dc896932a55ddae48a0894538c44e415a8834a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:32:15:16:70:dc:14:91:bf:4f:f4:c1:13:2e:
3b:e2:f5:5b:47:2c:30:74:75:54:50:52:20:ae:f7:
da:39:2b:e4:fd:cf:2a:fd:0f:91:55:14:33:d6:02:
73:c1:60:37:77:f2:73:45:c4:08:1f:73:f5:d2:1f:
30:88:46:ac:a5:a0:af:87:73:91:79:6c:0e:77:a3:
a9:a1:03:0c:d2:b6:55:66:59:e0:a4:ad:7f:00:98:
64:f6:a8:0f:9d:b3:e8:fa:52:74:a1:2d:2d:98:8c:
40:02:a1:03:5f:98:33:6e:37:8e:4c:62:51:f9:c5:
4d:8f:f0:5d:fd:6c:4b:d3:09:d7:2b:91:d0:a2:5c:
29:34:7d:b6:d6:ce:85:47:5a:ba:75:c1:9a:2f:5c:
9c:69:b0:0c:da:29:32:20:e3:9f:7d:8a:e7:b6:b7:
10:a8:da:e7:22:c2:ed:22:f2:65:9d:eb:00:67:13:
07:b8:b5:12:b8:24:46:7f:70:e3:5e:e7:3c:26:e7:
d4:ca:8f:06:a7:01:20:20:a4:5e:24:25:0e:af:a4:
fd:9c:67:12:91:90:30:02:3a:98:24:3f:dd:48:fb:
78:eb:79:47:f0:df:ac:ce:e1:e1:33:e3:03:60:01:
7c:d7:18:e2:45:fd:1a:06:16:cb:40:90:80:dd:81:
9c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C8:96:93:2A:55:DD:AE:48:A0:89:45:38:C4:4E:41:5A:88:34:A8
X509v3 Authority Key Identifier:
keyid:C1:01:E1:EA:F9:D0:A5:01:CD:48:C3:EB:B0:E1:5D:A9:62:30:85:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQHh6vnQpQHNSMPrsOFdqWIwhQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/03598f-2a33-455c-8599-e0d7a53adfa5/1/TciWkypV3a5IoIlFOMROQVqINKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/03598f-2a33-455c-8599-e0d7a53adfa5/1/wQHh6vnQpQHNSMPrsOFdqWIwhQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.240.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c6:b3:db:fc:8d:2e:51:ca:b1:cc:1b:71:c0:27:ba:1a:48:
e4:50:b8:5e:d8:61:9a:41:2f:6b:59:0e:08:1a:87:05:c8:e4:
88:45:57:91:95:d6:2f:4f:5c:cb:c8:8a:1f:f5:6a:e1:70:c4:
0d:ec:cd:95:64:2a:a6:8a:2d:1f:39:55:b5:36:58:44:83:a5:
f9:b0:8b:3d:80:0c:49:ff:f5:c9:6f:92:ad:1a:57:f7:92:c7:
bc:6f:58:3d:41:d7:d1:aa:ae:da:d8:81:55:20:de:31:24:17:
39:0f:29:70:79:86:f5:1e:c7:27:02:76:e5:cd:7e:c7:7d:4f:
30:57:6e:95:41:93:6f:51:55:91:82:e4:27:89:41:70:28:70:
0a:c7:5e:16:a9:02:34:ed:35:59:a1:36:8f:27:73:ca:66:f7:
34:c0:ec:b8:11:ad:73:4f:a8:cf:a2:70:17:a9:12:9f:a2:33:
c2:a9:c2:79:fe:a4:c3:aa:2b:9c:95:1f:56:39:43:7d:18:3d:
da:3c:af:d4:33:5e:53:76:95:93:33:a4:5a:c0:fd:6b:c4:db:
86:7c:8a:4a:af:e1:cc:df:bc:3c:62:76:30:1c:25:16:45:19:
96:8a:95:22:e3:e6:cf:36:61:2d:f4:9a:5b:ff:6c:61:0b:2d:
5c:a3:70:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:44:32 2023 by rpki-client on console.sobornost.net