Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/e_4AVt8nvnzUlDrD6JgBJFORpdY.roa
File: e_4AVt8nvnzUlDrD6JgBJFORpdY.roa (raw, json)
Hash identifier: HCDfHKkaeK/vPqOu3akqjbxnPcDkSwMdJREXxki0vMk=
Subject key identifier: 7B:FE:00:56:DF:27:BE:7C:D4:94:3A:C3:E8:98:01:24:53:91:A5:D6
Certificate issuer: /CN=9bae428ee8cd4604c1fbc141278ef0d75376282a
Certificate serial: 0193D9B16C9E96DAA83F417A644EA61C5FC2
Authority key identifier: 9B:AE:42:8E:E8:CD:46:04:C1:FB:C1:41:27:8E:F0:D7:53:76:28:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m65CjujNRgTB-8FBJ47w11N2KCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/e_4AVt8nvnzUlDrD6JgBJFORpdY.roa
Signing time: Wed 18 Dec 2024 12:15:03 +0000
ROA not before: Wed 18 Dec 2024 12:15:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61213
IP address blocks: 91.123.48.0/20 maxlen: 20
91.123.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d9:b1:6c:9e:96:da:a8:3f:41:7a:64:4e:a6:1c:5f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bae428ee8cd4604c1fbc141278ef0d75376282a
Validity
Not Before: Dec 18 12:15:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bfe0056df27be7cd4943ac3e89801245391a5d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:b6:ba:cb:0d:4b:e4:b9:c4:27:3f:fd:dc:
62:19:df:69:c1:e8:6b:19:65:c5:cc:5a:37:76:7f:
17:9a:33:85:19:86:72:74:79:bb:c0:17:b7:48:c9:
61:f1:75:8d:2c:d1:3d:ab:8e:e0:5b:69:24:93:49:
04:b2:32:7e:0a:19:3e:fa:bd:bf:3d:27:ad:d4:3d:
af:84:e4:e7:3c:c1:7a:59:c9:dc:7d:79:1b:3c:30:
d3:e9:4d:54:b2:2e:7a:15:57:73:9f:0b:6c:fb:77:
61:cd:02:cd:3d:1e:fb:9c:23:08:91:a0:f3:b7:c4:
40:58:e5:42:67:d5:58:73:76:25:ea:e3:b9:9a:60:
a6:0a:d8:dd:63:76:8e:91:9f:aa:fd:53:33:98:3a:
93:70:33:1d:27:87:e4:b1:36:54:d5:7f:45:85:94:
a3:0f:60:24:bb:51:3c:0f:59:85:b2:d2:ac:59:c5:
06:a8:ef:37:20:4d:25:41:cc:40:ec:1a:97:36:f5:
8f:3c:db:4f:44:ef:23:5a:05:fe:95:3b:4d:e3:fd:
21:6e:ef:8a:23:04:04:f7:c5:d7:af:d5:89:05:b0:
0d:f8:eb:b4:bc:b0:c1:33:be:82:72:fa:b6:0c:57:
4c:93:e1:3d:33:f1:39:f0:c9:26:ae:8a:7c:b9:11:
6b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:FE:00:56:DF:27:BE:7C:D4:94:3A:C3:E8:98:01:24:53:91:A5:D6
X509v3 Authority Key Identifier:
keyid:9B:AE:42:8E:E8:CD:46:04:C1:FB:C1:41:27:8E:F0:D7:53:76:28:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m65CjujNRgTB-8FBJ47w11N2KCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/e_4AVt8nvnzUlDrD6JgBJFORpdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/m65CjujNRgTB-8FBJ47w11N2KCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.123.48.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:a0:8a:14:66:16:13:55:19:81:f1:c3:2b:89:6d:cd:8c:63:
2a:35:8c:61:b5:72:ee:8d:cb:21:cd:96:33:cf:d3:cf:a5:54:
aa:30:3a:fc:da:37:6a:85:ea:07:65:de:80:f2:ba:9c:32:e7:
8a:01:bc:11:3d:8d:90:33:78:16:b0:42:d6:ee:5d:dd:32:3b:
21:10:67:27:6f:a0:b3:1f:23:3a:98:dc:0f:bf:e2:04:86:1b:
09:67:16:b7:31:ae:12:8a:cc:ef:4a:33:4e:03:9c:69:d7:34:
9f:81:eb:3e:1b:00:78:aa:5c:1c:32:d9:2d:a1:4a:07:56:41:
cb:dd:87:40:8a:7c:de:1a:fc:93:f1:82:63:f3:ca:4a:13:6e:
22:29:ed:2f:ed:f0:ae:80:09:a8:94:5a:d2:56:c9:e8:e7:f2:
b3:6b:db:04:bc:24:79:bc:26:c8:6f:cb:73:34:86:91:95:1f:
72:83:b5:8b:1e:6f:6b:ea:39:21:88:12:da:3f:2a:4a:dd:15:
94:cb:e8:8b:9e:97:38:6b:7d:63:3d:ea:fe:b0:c9:f5:39:00:
b9:91:a0:fb:2e:8b:22:54:8b:23:9b:c6:d7:94:33:75:b9:8a:
09:1f:7c:ef:f0:85:65:ed:eb:bc:f9:23:97:4f:63:bd:47:7f:
7a:22:91:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:36 2024 by rpki-client on console.sobornost.net