Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/f309c9-230a-41e2-bf27-6613aeaa60de/1/3FsMoOLTnwYjhFSXgRZ9IU5f8h0.roa
File: 3FsMoOLTnwYjhFSXgRZ9IU5f8h0.roa (raw, json)
Hash identifier: iKJ2LC/tMP+gF75dnNyI8Mobmllqxv0193HG5Ask3r4=
Subject key identifier: DC:5B:0C:A0:E2:D3:9F:06:23:84:54:97:81:16:7D:21:4E:5F:F2:1D
Certificate issuer: /CN=2ddeff4b8fc307544fec1fa99da2a6897df462b8
Certificate serial: 0193D42FF6D5B76A18143C1C913015516628
Authority key identifier: 2D:DE:FF:4B:8F:C3:07:54:4F:EC:1F:A9:9D:A2:A6:89:7D:F4:62:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ld7_S4_DB1RP7B-pnaKmiX30Yrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/f309c9-230a-41e2-bf27-6613aeaa60de/1/3FsMoOLTnwYjhFSXgRZ9IU5f8h0.roa
Signing time: Tue 17 Dec 2024 10:35:33 +0000
ROA not before: Tue 17 Dec 2024 10:35:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 196954
IP address blocks: 91.194.132.0/23 maxlen: 23
91.239.92.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d4:2f:f6:d5:b7:6a:18:14:3c:1c:91:30:15:51:66:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ddeff4b8fc307544fec1fa99da2a6897df462b8
Validity
Not Before: Dec 17 10:35:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc5b0ca0e2d39f062384549781167d214e5ff21d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e1:70:82:61:f3:7d:af:4a:a6:2e:6c:29:0c:
72:ee:f7:8c:df:c7:81:d7:f2:9a:25:93:a8:da:bb:
e9:5c:eb:03:c7:21:4e:1f:af:87:3b:dc:89:f3:a1:
68:5b:4a:9c:9f:57:aa:2c:9d:e1:cf:50:b2:2f:41:
f8:d8:23:57:c3:25:aa:2c:19:86:1a:0d:33:ee:99:
df:63:17:e0:0e:c3:ef:1e:fb:44:53:d6:0a:b3:b1:
28:07:32:0a:c7:d5:1b:13:92:0c:14:c9:6c:5b:15:
93:81:8b:f4:50:7e:4f:2e:9d:14:66:08:6b:fb:ce:
40:5d:b9:16:46:e6:89:a1:f5:d2:0c:9d:a7:22:b3:
c3:bd:a5:d3:52:9d:0e:7d:b1:22:61:7a:7d:9f:86:
88:eb:69:54:34:18:65:fd:8c:d7:ed:1d:05:34:32:
16:ca:bc:14:d6:1d:c7:40:70:a6:a9:3b:f4:e4:f9:
e4:a6:05:83:f7:af:cb:e4:a6:27:c2:2f:df:44:c8:
05:81:d6:0e:e9:da:8a:ff:bb:21:97:25:da:85:fb:
ea:ac:98:c5:bc:cf:93:cd:7d:f8:d2:fb:a7:5b:31:
e8:56:c7:25:e3:21:21:e7:0c:3c:ad:cd:6a:c0:45:
29:8a:27:b2:c3:71:3d:cb:07:96:27:bb:e9:1c:2a:
27:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:5B:0C:A0:E2:D3:9F:06:23:84:54:97:81:16:7D:21:4E:5F:F2:1D
X509v3 Authority Key Identifier:
keyid:2D:DE:FF:4B:8F:C3:07:54:4F:EC:1F:A9:9D:A2:A6:89:7D:F4:62:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ld7_S4_DB1RP7B-pnaKmiX30Yrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f309c9-230a-41e2-bf27-6613aeaa60de/1/3FsMoOLTnwYjhFSXgRZ9IU5f8h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f309c9-230a-41e2-bf27-6613aeaa60de/1/Ld7_S4_DB1RP7B-pnaKmiX30Yrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.132.0/23
91.239.92.0/23
Signature Algorithm: sha256WithRSAEncryption
04:21:b6:06:04:d3:38:c9:26:e7:9d:34:88:87:9d:83:18:24:
08:09:4e:1e:3b:07:88:c0:0b:e9:a6:a9:cb:22:13:a1:6a:ff:
7e:92:51:db:48:75:3a:9d:58:d8:8f:2b:96:71:a6:6a:3e:f4:
42:db:ef:f7:58:95:4b:23:6a:ca:18:13:1f:f1:eb:d3:80:e0:
99:c2:05:af:73:5b:0f:e5:01:24:d3:38:95:71:ca:2c:0a:a9:
9e:5c:a8:aa:12:92:10:0e:2e:ae:5c:64:96:46:2c:af:0f:44:
ea:8c:a3:c3:48:51:6a:68:30:05:a9:9d:6d:d8:b2:de:33:17:
02:a0:2a:9a:55:da:a2:22:5b:75:1c:13:93:df:fb:cf:12:9d:
31:3d:df:24:de:81:82:2d:d9:19:dc:85:58:44:08:01:88:dd:
84:98:2e:e5:ec:b0:23:a3:99:fb:71:29:d0:89:6a:ed:8a:6d:
5d:b9:e1:98:30:d2:98:21:50:22:3a:ea:6b:38:ab:2c:4d:93:
ed:a1:fc:4e:5a:54:8a:c0:dd:fa:11:9f:5b:f3:62:c2:1a:2f:
d9:8c:31:47:15:54:44:cb:25:7d:d7:b0:9d:c4:eb:2d:aa:f8:
57:c0:e9:19:36:38:0b:06:ad:82:08:a9:ec:f6:96:d7:1c:9d:
46:53:10:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:16 2024 by rpki-client on console.sobornost.net