Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/ULALjGf-Di56jXarFwFngQb1HFs.roa
File: ULALjGf-Di56jXarFwFngQb1HFs.roa (raw, json)
Hash identifier: o/x2sIHCQy0Kkp3y+GZo17aIk6Civ7lYzAQAmfIk900=
Subject key identifier: 50:B0:0B:8C:67:FE:0E:2E:7A:8D:76:AB:17:01:67:81:06:F5:1C:5B
Certificate issuer: /CN=91bbc51e4541cfbb504ff5ef2a396df6a54b5e6d
Certificate serial: 0211F951
Authority key identifier: 91:BB:C5:1E:45:41:CF:BB:50:4F:F5:EF:2A:39:6D:F6:A5:4B:5E:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kbvFHkVBz7tQT_XvKjlt9qVLXm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/ULALjGf-Di56jXarFwFngQb1HFs.roa
Signing time: Sat 01 Jan 2022 01:01:33 +0000
ROA not before: Sat 01 Jan 2022 01:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203534
IP address blocks: 31.222.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34732369 (0x211f951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bbc51e4541cfbb504ff5ef2a396df6a54b5e6d
Validity
Not Before: Jan 1 01:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50b00b8c67fe0e2e7a8d76ab1701678106f51c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:33:59:74:f9:99:83:2c:94:24:9a:5c:54:85:
43:f7:9e:f5:9f:67:4a:80:2b:60:1f:6f:9e:a5:00:
3e:1f:97:fb:b6:2f:70:a0:30:b2:61:7b:f0:9e:4d:
b2:ab:b0:a7:29:35:cf:f9:35:c6:c1:67:b5:b0:09:
41:10:b5:81:50:e3:1a:14:d3:96:e2:41:31:fc:70:
29:95:fc:43:dd:98:84:3b:72:aa:94:10:f5:f6:88:
a1:23:c8:52:49:35:06:08:06:5f:04:9d:3d:20:13:
20:3f:5d:72:66:09:b8:cf:ee:1c:ce:27:f9:c6:0c:
76:ae:cb:55:a7:25:5b:ed:d8:b5:55:21:f9:38:77:
cb:b9:15:3e:e7:b2:59:a8:71:03:2a:9c:38:34:e0:
e0:20:c8:9f:72:b3:84:53:6b:66:0b:0b:50:09:9d:
ab:08:6c:ec:6a:aa:81:bc:97:2e:06:83:e0:f3:d8:
8e:0b:af:7a:99:15:8d:09:43:99:d5:f0:9f:b2:20:
f6:d4:ab:2d:f2:20:cf:b9:06:84:f6:32:aa:e7:61:
67:06:e1:ed:e4:ec:27:30:9f:3f:86:25:7f:47:5b:
40:74:65:f4:11:8f:aa:cb:ae:01:a3:91:67:28:d3:
64:0e:db:f2:93:a2:16:44:ce:26:48:fb:ee:22:a3:
4a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B0:0B:8C:67:FE:0E:2E:7A:8D:76:AB:17:01:67:81:06:F5:1C:5B
X509v3 Authority Key Identifier:
keyid:91:BB:C5:1E:45:41:CF:BB:50:4F:F5:EF:2A:39:6D:F6:A5:4B:5E:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kbvFHkVBz7tQT_XvKjlt9qVLXm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/ULALjGf-Di56jXarFwFngQb1HFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f7d8ba-7df6-44f4-a6fa-fd82f290431c/1/kbvFHkVBz7tQT_XvKjlt9qVLXm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.113.0/24
Signature Algorithm: sha256WithRSAEncryption
99:83:b9:42:71:1d:3a:a4:51:f8:5c:5d:b5:ba:66:0b:a5:96:
cc:c4:1a:c8:5e:7c:10:33:e1:c7:e6:df:49:51:57:ae:26:34:
43:8c:26:cd:37:1e:ad:cd:3b:18:db:8f:05:c9:34:b4:25:a6:
95:d1:d5:e4:bd:91:c1:95:80:e4:68:69:46:ee:19:f1:9a:af:
c1:72:b1:09:e1:1c:32:19:05:9e:dc:2d:21:08:4a:db:23:5b:
ee:4f:4c:03:26:89:06:6b:8d:c1:45:1d:c0:76:90:d7:bf:24:
7b:4b:93:61:85:33:f1:9e:2c:a7:13:5f:ca:b1:61:f1:62:12:
0c:1c:e3:f0:c7:b8:0b:27:b9:e3:48:ff:88:cc:4c:4e:fd:63:
c2:6e:b1:93:0d:58:ce:c3:cb:ac:ba:92:fc:a0:33:a5:a5:34:
66:c1:15:5f:6d:96:0f:14:83:a3:09:91:27:eb:b0:08:40:1c:
0e:b8:a1:ce:77:1a:14:e3:a1:da:99:0a:3e:0c:e8:e3:77:81:
93:9e:61:c6:b9:4a:ed:02:64:ca:dc:40:07:e9:cd:fb:44:9e:
d6:d1:7e:5a:75:f9:d4:f4:88:5e:48:93:8c:19:76:ae:05:81:
15:e9:5f:8a:33:a0:b6:ff:b0:22:ca:ba:d4:e6:ce:c5:d7:82:
9f:e1:39:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:04 2023 by rpki-client on console.sobornost.net