Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/72500f-05f5-426b-88ce-c62a23af3f67/1/O5yGV6NuRKRx9UgBTjh5QWQf6JQ.roa
File: O5yGV6NuRKRx9UgBTjh5QWQf6JQ.roa (raw, json)
Hash identifier: Ys99IYADlpIc+0PKcWuxB9gkhe4d6OQMhm5h4vBRocw=
Subject key identifier: 3B:9C:86:57:A3:6E:44:A4:71:F5:48:01:4E:38:79:41:64:1F:E8:94
Certificate issuer: /CN=fb50683383f8f3836633f4d4230ada73ccb215cd
Certificate serial: 01856C13777E56C5B3E793CB9BD26679B97A
Authority key identifier: FB:50:68:33:83:F8:F3:83:66:33:F4:D4:23:0A:DA:73:CC:B2:15:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-1BoM4P484NmM_TUIwrac8yyFc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/72500f-05f5-426b-88ce-c62a23af3f67/1/O5yGV6NuRKRx9UgBTjh5QWQf6JQ.roa
Signing time: Sun 01 Jan 2023 06:44:53 +0000
ROA not before: Sun 01 Jan 2023 06:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 91.241.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:77:7e:56:c5:b3:e7:93:cb:9b:d2:66:79:b9:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb50683383f8f3836633f4d4230ada73ccb215cd
Validity
Not Before: Jan 1 06:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b9c8657a36e44a471f548014e387941641fe894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:20:da:28:2e:ae:03:f2:bd:66:e2:39:f6:1d:
88:c1:ac:80:0a:a0:cb:49:0c:18:55:02:2e:09:92:
35:cb:51:87:84:cd:a3:b6:22:4d:ac:17:84:67:90:
d3:23:70:b1:5f:f7:58:03:04:74:70:ce:1a:5e:1b:
a6:b6:9f:fd:10:95:3d:c4:bf:e5:78:bf:9d:28:c7:
0f:f6:4d:d0:19:13:c1:60:99:93:7b:71:46:97:60:
67:d1:8e:f5:ed:fd:48:e2:a4:33:23:6e:39:54:23:
ce:40:d9:67:1d:62:b3:74:28:e9:56:5b:c8:eb:e6:
07:0c:41:4c:4b:dc:95:8e:86:22:79:ce:d8:b8:da:
f2:50:ff:17:b6:6b:62:20:ef:7d:81:c8:1f:59:f1:
9a:80:a4:78:21:5b:a6:98:b7:2a:de:a1:2c:7a:92:
56:37:7a:b6:fe:2f:34:60:df:42:c9:cf:c2:4a:65:
e2:3f:06:d5:aa:3e:23:5b:92:d1:39:86:62:23:c3:
9f:4f:69:dc:82:25:57:9e:5e:87:7e:cb:38:32:50:
c2:33:59:d5:19:0e:0b:b2:fa:67:3e:71:e4:53:14:
18:a0:0e:0b:46:aa:84:d5:94:40:fc:71:e9:9e:3e:
b5:3c:11:7b:73:22:23:03:38:00:70:7e:84:e6:02:
76:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9C:86:57:A3:6E:44:A4:71:F5:48:01:4E:38:79:41:64:1F:E8:94
X509v3 Authority Key Identifier:
keyid:FB:50:68:33:83:F8:F3:83:66:33:F4:D4:23:0A:DA:73:CC:B2:15:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-1BoM4P484NmM_TUIwrac8yyFc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/72500f-05f5-426b-88ce-c62a23af3f67/1/O5yGV6NuRKRx9UgBTjh5QWQf6JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/72500f-05f5-426b-88ce-c62a23af3f67/1/1-1BoM4P484NmM_TUIwrac8yyFc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.164.0/24
Signature Algorithm: sha256WithRSAEncryption
94:1f:61:49:ed:97:f0:c8:af:7c:5b:4d:a6:3d:23:d6:e2:8a:
b7:33:74:8c:68:d3:4f:d6:81:1a:f7:ab:1c:a2:78:10:05:c1:
0d:8f:e1:d7:9f:31:84:17:8c:ac:f4:74:f9:67:8f:c6:f8:d0:
d7:0d:c5:df:1f:f9:35:8e:64:e2:06:87:a1:37:1d:41:8e:a9:
2f:67:17:ff:2d:99:8e:1f:36:fd:07:99:4b:59:51:02:ac:ce:
56:e6:67:17:6a:ab:0b:1b:c3:f2:0f:94:e2:33:1b:ae:28:d4:
bc:a5:df:7f:fa:5c:c9:3d:06:6f:75:54:11:fa:34:5b:b4:8a:
cf:12:4f:02:fc:71:b6:7c:e2:3b:f1:10:f2:da:5a:3b:38:39:
94:71:17:30:e6:74:fb:ba:38:19:bd:34:83:b8:7c:1b:96:59:
88:fa:89:ae:3a:c0:77:57:0e:33:6d:e1:aa:68:6f:71:2a:ba:
30:96:a3:70:c7:0a:a8:23:ef:cd:36:6a:7a:05:13:c1:3f:b7:
c2:81:f7:6b:1c:82:79:77:9f:a5:7d:76:c6:28:c7:f0:c9:2e:
7a:50:c7:f5:82:08:0e:e0:60:23:c1:55:20:55:c2:21:95:3b:
97:a4:d5:c0:44:86:da:0a:ab:6b:18:1b:11:86:0e:f5:04:e8:
de:6d:55:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net