Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/djclzzPckUbxpiPz0aT2KIeq3vg.roa
File: djclzzPckUbxpiPz0aT2KIeq3vg.roa (raw, json)
Hash identifier: qMAON/McMcYGiRAj8ZSkjcUFapaBDpY0uWQQ678R//0=
Subject key identifier: 76:37:25:CF:33:DC:91:46:F1:A6:23:F3:D1:A4:F6:28:87:AA:DE:F8
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 01942521C566ADB7868F8C5C79BA2D6A5886
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/djclzzPckUbxpiPz0aT2KIeq3vg.roa
Signing time: Thu 02 Jan 2025 03:49:17 +0000
ROA not before: Thu 02 Jan 2025 03:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206150
IP address blocks: 91.200.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:c5:66:ad:b7:86:8f:8c:5c:79:ba:2d:6a:58:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Jan 2 03:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=763725cf33dc9146f1a623f3d1a4f62887aadef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:90:05:0d:88:2c:28:2f:76:5c:49:50:da:b0:
37:1a:b0:8e:62:2b:4b:52:ab:c7:c4:99:f7:07:ed:
4f:37:76:6b:cf:58:69:7d:e6:e5:39:16:dc:16:5d:
7f:ec:3c:90:38:92:fa:42:9f:20:7f:9e:71:3d:b8:
b2:85:27:38:b9:f2:48:09:10:dc:26:a6:03:1f:52:
9c:89:3b:cd:13:71:84:35:0f:13:8b:88:9f:5c:ff:
1a:73:3e:94:21:29:d8:a0:80:45:d6:d5:66:3e:e5:
23:b1:20:2c:1b:cd:de:7c:e8:dd:97:87:41:89:57:
b3:11:72:cf:a6:c5:da:de:c6:f2:9a:fe:20:d6:43:
ea:e8:ef:76:17:33:b6:d3:c1:6f:1d:f7:e5:d1:a6:
99:d0:82:e3:1c:bc:a9:3f:fa:a4:dc:95:ce:de:6a:
07:e4:80:91:3f:93:84:e5:94:a5:97:19:2e:ee:84:
33:8d:1a:36:47:21:e1:02:3b:9c:6c:7c:ca:be:67:
0e:5f:da:a3:81:89:b2:36:35:e9:37:45:35:b0:a4:
67:89:f5:c3:ae:12:87:ab:6e:06:82:c0:9e:42:ed:
7c:d0:7e:61:90:cc:71:0b:5c:55:d0:ab:e3:b8:72:
44:df:d7:13:c1:dc:02:73:d3:c8:b1:8e:db:03:2c:
c9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:37:25:CF:33:DC:91:46:F1:A6:23:F3:D1:A4:F6:28:87:AA:DE:F8
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/djclzzPckUbxpiPz0aT2KIeq3vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.56.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:96:ec:ef:e4:25:1e:65:ae:ed:16:42:f5:08:50:48:cc:ac:
90:0a:b8:85:21:a2:17:bb:1a:f7:b5:fc:0a:65:1d:71:d4:ec:
ad:7d:c4:17:08:af:15:a1:48:c1:cd:08:e7:e5:b3:ec:b3:7c:
dc:0d:cf:e7:ba:27:3e:41:3e:f5:b9:df:a9:f7:ca:41:ce:5f:
19:75:59:fd:6a:4a:ee:9b:1f:5f:31:99:47:bb:d4:16:18:42:
a0:06:57:31:a0:3a:3f:ef:52:74:86:cf:48:2a:5e:91:7e:e3:
c5:39:cf:c6:5f:aa:ab:9d:7f:44:fe:13:aa:4f:0a:c8:36:59:
bd:1d:41:46:1a:bb:5f:44:ad:9b:90:02:a4:7d:d8:2d:60:f8:
58:65:e7:9b:fc:ac:a3:9f:fc:78:06:80:af:86:2f:c3:38:0d:
a0:cf:93:24:fc:ee:94:61:7f:1f:69:a9:3a:df:2f:2e:5a:ad:
35:4f:4b:a3:b7:0a:ec:9d:fd:f3:f5:70:27:5a:45:84:fa:6e:
ec:19:99:51:60:8c:40:bd:43:d0:4e:e1:98:1b:88:37:3e:47:
64:0f:3d:d0:65:ec:3e:92:dd:61:f1:3d:51:e7:cb:e8:8d:59:
80:ae:ed:bd:ea:3a:77:01:6d:c8:e4:59:01:d4:71:a1:fc:70:
f2:df:1f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:53 2025 by rpki-client