Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/aj5iwKg-JHMsGTGswW5iRM9RyZ8.roa
File: aj5iwKg-JHMsGTGswW5iRM9RyZ8.roa (raw, json)
Hash identifier: ju38ARGy2M/ZRxarTyKGVCYNOGR+IPj0hgHQlYrGxzM=
Subject key identifier: 6A:3E:62:C0:A8:3E:24:73:2C:19:31:AC:C1:6E:62:44:CF:51:C9:9F
Certificate issuer: /CN=598bb15fc46c2c6b2036a1c65d404b3667cb4a74
Certificate serial: 3FD97C
Authority key identifier: 59:8B:B1:5F:C4:6C:2C:6B:20:36:A1:C6:5D:40:4B:36:67:CB:4A:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WYuxX8RsLGsgNqHGXUBLNmfLSnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/aj5iwKg-JHMsGTGswW5iRM9RyZ8.roa
Signing time: Sat 01 Jan 2022 02:51:08 +0000
ROA not before: Sat 01 Jan 2022 02:51:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202636
IP address blocks: 91.246.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4184444 (0x3fd97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=598bb15fc46c2c6b2036a1c65d404b3667cb4a74
Validity
Not Before: Jan 1 02:51:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a3e62c0a83e24732c1931acc16e6244cf51c99f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:11:b1:d7:e1:aa:46:18:80:4d:07:c3:52:07:
7c:19:39:04:cd:ce:e7:6a:c7:a8:cd:a4:fd:d1:19:
18:88:3d:36:09:ad:40:96:84:0f:16:3d:8b:04:dc:
ad:b7:83:cb:df:37:bc:0c:dd:75:6f:41:a7:93:4e:
de:41:6f:48:fe:4d:39:f8:0b:ba:66:d5:ff:29:b3:
b7:e3:0a:22:29:37:a9:55:31:fa:62:25:00:91:31:
fe:ae:a8:e2:e9:7c:6f:b3:08:72:43:67:66:82:fe:
ab:18:21:c0:ba:b9:f3:c1:86:e2:58:bf:34:48:5c:
66:53:0a:9f:04:a2:3e:5c:77:63:73:51:bd:8a:aa:
51:92:8a:8e:ae:39:21:b6:d2:56:e3:98:1f:49:96:
f0:e6:33:e3:9b:44:5d:bb:a6:38:df:ae:0f:dd:ac:
a6:ec:8a:cb:10:b5:cc:04:ba:84:cc:85:8e:98:59:
b6:1a:3d:21:dc:9f:e3:71:5d:77:75:eb:4b:65:ef:
57:71:91:88:cc:18:8d:df:51:2c:9c:af:06:ce:e0:
aa:a7:61:57:31:86:0e:9d:a6:92:48:d2:06:ad:44:
29:db:81:ad:80:57:cb:3c:68:52:d2:dd:aa:14:b1:
bf:f6:a6:c8:b9:a0:7e:5d:66:37:42:ca:87:cd:2a:
08:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3E:62:C0:A8:3E:24:73:2C:19:31:AC:C1:6E:62:44:CF:51:C9:9F
X509v3 Authority Key Identifier:
keyid:59:8B:B1:5F:C4:6C:2C:6B:20:36:A1:C6:5D:40:4B:36:67:CB:4A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WYuxX8RsLGsgNqHGXUBLNmfLSnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/aj5iwKg-JHMsGTGswW5iRM9RyZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/e45be0-6d1e-48c7-b14b-4d051737bff2/1/WYuxX8RsLGsgNqHGXUBLNmfLSnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.52.0/24
Signature Algorithm: sha256WithRSAEncryption
57:50:61:e8:c6:d1:07:36:89:94:f5:2a:b2:d4:35:96:63:4e:
6a:e2:3c:73:2d:69:97:61:1e:35:75:4f:73:2f:39:6f:56:12:
49:49:6f:2b:85:91:ce:9a:93:18:e6:2f:8e:59:cb:bc:7d:31:
bf:18:96:7c:5c:92:11:c8:85:0b:0d:cb:9d:cf:9b:38:02:63:
7f:7e:bc:12:21:53:66:25:82:ca:77:bb:d2:b5:d6:01:f8:78:
e3:89:88:1f:46:bd:0a:b6:60:a6:a4:9a:7d:e4:e4:ce:43:6e:
e7:3a:31:44:9f:68:fc:5d:d5:da:8e:d9:77:e9:03:5d:0c:95:
4e:6d:b7:ee:14:32:2d:80:16:ce:0d:66:b0:17:21:6e:99:d9:
47:f3:32:34:1d:33:b2:7d:58:23:ca:5c:b5:c0:4e:bb:a6:cd:
ed:3c:99:36:99:88:a6:96:08:91:28:e5:54:85:92:ab:42:bb:
5a:a1:66:96:64:88:ef:3d:9b:95:9e:b5:6a:e9:61:11:c9:c5:
00:d8:69:93:30:05:b7:12:82:c5:92:c6:fc:03:6d:ae:0a:23:
be:4d:07:5e:5c:65:22:de:2e:00:2b:60:f8:fd:e8:16:61:21:
4a:05:c0:dd:28:25:ff:e4:62:23:cc:57:16:91:86:cd:04:af:
23:72:f1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:36:54 2025 by rpki-client