Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/40f1bb-e868-479c-a515-7b47b5ba6aed/1/qXl4jwnWS6fT7fi7aRJruMPIjTU.roa
File: qXl4jwnWS6fT7fi7aRJruMPIjTU.roa (raw, json)
Hash identifier: hVk4bl2TjMCPDL3B7M7nEJEF/32rMzR9Nz8xZY7y+j4=
Subject key identifier: A9:79:78:8F:09:D6:4B:A7:D3:ED:F8:BB:69:12:6B:B8:C3:C8:8D:35
Certificate issuer: /CN=e58ff73925a23692847ed92bc66613fd47068dcf
Certificate serial: 0192E1C2A116A4B7A5B565A1D19475E00AE5
Authority key identifier: E5:8F:F7:39:25:A2:36:92:84:7E:D9:2B:C6:66:13:FD:47:06:8D:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Y_3OSWiNpKEftkrxmYT_UcGjc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/40f1bb-e868-479c-a515-7b47b5ba6aed/1/qXl4jwnWS6fT7fi7aRJruMPIjTU.roa
Signing time: Thu 31 Oct 2024 08:48:01 +0000
ROA not before: Thu 31 Oct 2024 08:48:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42723
IP address blocks: 91.193.80.0/22 maxlen: 22
194.28.64.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e1:c2:a1:16:a4:b7:a5:b5:65:a1:d1:94:75:e0:0a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e58ff73925a23692847ed92bc66613fd47068dcf
Validity
Not Before: Oct 31 08:48:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a979788f09d64ba7d3edf8bb69126bb8c3c88d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:1b:b3:96:5d:a8:e1:74:cf:06:f5:28:a3:72:
8f:14:6b:72:b1:86:3a:51:99:8b:93:14:23:11:cc:
38:f4:95:8c:45:47:49:57:29:90:b3:06:f8:6b:4c:
f0:75:b1:0b:a8:c1:2a:b8:ed:e4:1d:09:7b:fc:65:
fb:67:d3:82:69:79:a2:0b:a7:2d:8c:f4:4d:d8:69:
28:fe:ef:62:a1:9b:4d:2a:24:86:f8:ae:4b:2c:88:
f3:67:bd:3a:5d:33:5d:14:43:96:55:66:02:80:c2:
f8:78:7f:18:92:25:6a:4b:00:1b:f9:9f:3d:77:c4:
0b:49:aa:49:32:fc:b1:8b:ae:d8:91:ad:93:e0:bd:
b0:fd:81:1a:40:63:04:f8:bb:fb:32:c3:da:7d:50:
9c:70:04:a9:fa:28:88:06:69:e9:29:4f:0c:3c:a0:
20:20:1f:73:df:86:f7:ac:27:d0:f1:06:0a:0e:a4:
6c:67:5c:16:0b:23:6e:b3:5e:b4:52:80:43:9c:d2:
89:e0:9e:9d:4d:8c:10:44:3c:bc:09:96:1d:90:01:
73:bc:9c:39:37:79:2d:af:2e:b6:a2:04:fa:b8:8b:
a5:12:7c:16:f4:1f:91:71:11:81:e1:53:0b:fd:6c:
77:4c:a1:b6:a8:4d:dd:cf:9d:02:f0:20:f6:1c:f1:
f0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:79:78:8F:09:D6:4B:A7:D3:ED:F8:BB:69:12:6B:B8:C3:C8:8D:35
X509v3 Authority Key Identifier:
keyid:E5:8F:F7:39:25:A2:36:92:84:7E:D9:2B:C6:66:13:FD:47:06:8D:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Y_3OSWiNpKEftkrxmYT_UcGjc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/40f1bb-e868-479c-a515-7b47b5ba6aed/1/qXl4jwnWS6fT7fi7aRJruMPIjTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/40f1bb-e868-479c-a515-7b47b5ba6aed/1/5Y_3OSWiNpKEftkrxmYT_UcGjc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.80.0/22
194.28.64.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:af:75:39:04:5b:d7:a3:f2:5e:7c:e0:39:ab:2b:db:8c:4f:
d3:01:7d:48:3c:89:61:5a:e2:5a:82:75:44:00:1c:57:46:dc:
be:c2:b1:bd:1d:28:9f:1b:cc:51:dd:f3:01:68:fd:ef:ad:5d:
74:96:c1:4b:b5:6f:03:0d:3b:c8:b8:9a:85:9b:f6:dd:78:66:
79:89:08:56:83:74:d0:d1:47:0c:bf:4f:85:d0:e1:50:8a:4e:
0e:ba:dd:71:3c:88:c6:cc:56:4d:49:e4:b9:e3:91:c8:dc:41:
94:0f:9c:5e:b3:31:be:a1:db:6e:4f:09:30:64:db:52:c6:de:
87:b6:f0:31:3e:69:7d:73:03:3f:30:17:d2:29:b2:a8:22:7a:
f0:5a:a3:06:ff:00:78:01:03:6e:af:19:a2:e5:0b:ad:24:d5:
14:1b:88:91:04:88:d5:d0:bc:9c:95:23:ac:b7:a7:54:4d:03:
64:23:0f:51:60:1a:14:6c:ed:a6:ff:25:9f:a1:d3:ec:6a:12:
8b:5f:85:4b:84:bb:e5:7a:e2:11:32:18:87:da:a9:28:ab:8f:
07:fe:1b:ff:80:1b:a0:4a:ce:31:95:b9:66:eb:8a:eb:6a:4b:
ec:b8:e0:e2:3c:26:85:3f:81:cf:98:b6:01:4a:d8:0d:2f:33:
ff:e0:ac:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:43 2024 by rpki-client on console.sobornost.net