Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/2W83qhPrVeT0ZBOGqzAyh11jqS4.roa
File: 2W83qhPrVeT0ZBOGqzAyh11jqS4.roa (raw, json)
Hash identifier: nMU/AsGlDwVQqnZ4iKRGkAD06J73vEEF7NUQRjWCaME=
Subject key identifier: D9:6F:37:AA:13:EB:55:E4:F4:64:13:86:AB:30:32:87:5D:63:A9:2E
Certificate issuer: /CN=459ad2ece3e5911093d964753b656459c9bc05a7
Certificate serial: 0194221FCAD6D75AF0E05FEC756093E7BF80
Authority key identifier: 45:9A:D2:EC:E3:E5:91:10:93:D9:64:75:3B:65:64:59:C9:BC:05:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZrS7OPlkRCT2WR1O2VkWcm8Bac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/2W83qhPrVeT0ZBOGqzAyh11jqS4.roa
Signing time: Wed 01 Jan 2025 13:48:16 +0000
ROA not before: Wed 01 Jan 2025 13:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8220
IP address blocks: 91.212.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:ca:d6:d7:5a:f0:e0:5f:ec:75:60:93:e7:bf:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=459ad2ece3e5911093d964753b656459c9bc05a7
Validity
Not Before: Jan 1 13:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d96f37aa13eb55e4f4641386ab3032875d63a92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cf:e5:9e:ba:c5:dc:6a:54:f9:17:6d:83:f5:
04:8b:c7:3f:b8:a6:7d:b9:f5:f0:0b:f4:c0:3a:c5:
13:39:cd:a1:b9:14:aa:e6:4b:fb:cf:2f:96:63:6b:
43:50:d0:d1:57:40:1e:44:dc:cd:2c:e5:2d:b7:6d:
f8:38:e6:c8:2f:19:da:34:7e:12:eb:e1:e1:7d:79:
66:f2:b2:d6:cc:9d:e9:e8:41:10:68:e4:4b:78:6c:
92:05:42:47:bb:35:66:a2:8c:37:7e:af:6d:3a:09:
e4:9f:06:1a:6d:75:e6:1c:ce:7a:96:7c:b6:22:f4:
ef:45:89:21:9e:3b:27:47:97:46:44:19:89:dc:79:
50:e2:f6:1a:f8:90:55:13:54:a6:6b:28:de:ee:6d:
7a:f1:4c:af:f4:91:58:69:f8:c5:07:b7:4d:0d:69:
fd:8e:99:48:e9:15:35:29:6b:c3:5c:f5:49:2a:a1:
ce:99:59:9e:93:a6:3d:fa:94:6f:c7:cd:d2:e7:1b:
94:a8:25:52:b3:b1:a7:2d:b1:74:cc:17:4f:8b:a6:
c0:c3:30:c0:4f:ca:ce:55:f5:4e:b7:38:76:e0:a6:
8c:6e:c6:72:06:79:69:6f:05:3f:37:c3:16:8d:34:
6e:24:76:33:73:4c:d0:a9:40:01:55:a3:e2:5d:3a:
2f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6F:37:AA:13:EB:55:E4:F4:64:13:86:AB:30:32:87:5D:63:A9:2E
X509v3 Authority Key Identifier:
keyid:45:9A:D2:EC:E3:E5:91:10:93:D9:64:75:3B:65:64:59:C9:BC:05:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZrS7OPlkRCT2WR1O2VkWcm8Bac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/2W83qhPrVeT0ZBOGqzAyh11jqS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/RZrS7OPlkRCT2WR1O2VkWcm8Bac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.43.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:56:3d:28:11:9e:59:82:f9:94:37:e0:b8:53:8b:7a:4a:ca:
c9:6d:db:e3:55:c6:b9:11:9c:6a:80:85:8b:e4:41:a4:d5:86:
d1:7d:73:48:7f:43:b8:ca:43:c6:4f:6f:90:85:b5:63:b6:f4:
13:e1:b5:8c:35:f3:d6:1b:7b:1b:22:db:7b:ff:50:ff:a9:81:
16:5f:48:8c:1a:c8:d4:78:e4:b9:2f:0c:46:22:33:e6:bc:b5:
2c:c9:65:14:6f:bf:00:ed:e0:be:21:84:70:e5:38:2e:f3:78:
72:80:c6:1a:70:87:38:97:1b:87:95:26:52:15:81:32:a7:73:
ec:40:43:f3:72:16:22:65:ab:4d:42:25:18:1a:cb:6e:23:30:
d6:fb:87:86:5f:a2:0f:f0:4e:a9:1a:3a:c0:6c:8e:53:ca:0d:
16:08:a5:bb:f9:66:ad:0a:dc:29:c2:92:95:4e:bf:7b:36:52:
80:d8:ed:09:d7:04:c0:20:33:0b:26:7a:9d:af:78:d2:40:97:
4e:d6:93:68:09:db:05:9e:50:6f:d5:69:0a:57:92:50:f1:c7:
e7:15:a0:48:ba:97:f1:f1:81:5f:c2:18:2c:d8:f3:33:53:d6:
58:59:30:a6:8f:81:47:0f:88:75:dd:7c:8a:22:8a:64:45:0a:
0b:3e:94:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:27:39 2025 by rpki-client