Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/UpBonziBULI1IwO_A_3ee6oKz60.roa
File: UpBonziBULI1IwO_A_3ee6oKz60.roa (raw, json)
Hash identifier: tDYAPaxq/SFhrHQIwSW8S3ChpUeiIT1zhzAwhc0Vwts=
Subject key identifier: 52:90:68:9F:38:81:50:B2:35:23:03:BF:03:FD:DE:7B:AA:0A:CF:AD
Certificate issuer: /CN=8a5a08f41c373027e081b5c1ca8a800bf1855d9f
Certificate serial: 01958E85A6CC7286FF32D4B5EE50989E237B
Authority key identifier: 8A:5A:08:F4:1C:37:30:27:E0:81:B5:C1:CA:8A:80:0B:F1:85:5D:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iloI9Bw3MCfggbXByoqAC_GFXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/UpBonziBULI1IwO_A_3ee6oKz60.roa
Signing time: Thu 13 Mar 2025 08:01:18 +0000
ROA not before: Thu 13 Mar 2025 08:01:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44094
IP address blocks: 91.207.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:85:a6:cc:72:86:ff:32:d4:b5:ee:50:98:9e:23:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a08f41c373027e081b5c1ca8a800bf1855d9f
Validity
Not Before: Mar 13 08:01:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5290689f388150b2352303bf03fdde7baa0acfad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:e2:ed:56:16:68:6b:05:87:44:d8:5c:e7:
f8:2d:58:13:5f:28:dc:f1:c2:38:ab:37:ee:95:e7:
32:75:80:e2:dd:ee:d2:0f:e0:4e:32:9c:81:c6:f5:
79:d8:2a:fa:f1:5e:06:94:12:55:2a:d0:c8:96:ce:
7d:dc:57:71:92:84:54:80:7f:c8:ba:6d:3a:46:3f:
06:86:28:ed:2f:2a:7d:84:4c:64:d5:fb:27:f1:66:
2c:fd:f9:ce:14:9e:34:51:3f:00:1c:db:fe:f3:9e:
6b:de:b8:d3:24:50:fe:17:ef:e7:a4:be:ea:4b:3d:
cf:8a:56:a7:53:9b:0c:08:a8:22:18:74:4c:bb:26:
cb:d6:6b:84:47:e8:83:96:4e:ec:3b:65:e6:07:74:
90:7e:e4:24:8a:5f:fe:49:e6:61:13:34:90:a7:3e:
c0:25:b1:73:1c:a7:81:c8:fe:3c:a6:16:f1:43:fb:
79:bb:a8:c6:14:67:9e:e1:af:bd:cf:7b:19:b6:b9:
7a:e4:36:d0:c4:aa:c4:f1:a1:83:53:bc:7e:b3:97:
30:05:ee:2c:aa:91:97:b3:3b:1a:e0:9c:fa:8a:6a:
fd:02:15:31:9b:93:f2:19:f3:33:29:fb:52:ce:52:
13:01:30:3f:32:fc:b2:44:a5:d8:de:32:8a:ad:31:
ba:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:90:68:9F:38:81:50:B2:35:23:03:BF:03:FD:DE:7B:AA:0A:CF:AD
X509v3 Authority Key Identifier:
keyid:8A:5A:08:F4:1C:37:30:27:E0:81:B5:C1:CA:8A:80:0B:F1:85:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iloI9Bw3MCfggbXByoqAC_GFXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/UpBonziBULI1IwO_A_3ee6oKz60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/iloI9Bw3MCfggbXByoqAC_GFXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.183.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e1:f2:6f:7a:25:22:80:8d:e8:01:fd:8d:17:71:9b:59:a7:
c6:10:dd:87:75:af:9d:26:82:1f:f3:14:e9:b9:95:43:c9:fc:
bf:d0:a8:0b:d9:47:ac:a1:3d:07:08:8e:57:1e:d5:0c:31:2c:
f1:49:4a:d0:54:5a:e6:63:50:4e:79:59:97:3e:5f:e7:a0:c1:
04:92:13:6e:a5:b3:9b:28:bd:ae:7c:1a:39:0a:27:1a:75:b5:
6a:f8:dd:dc:4b:39:21:a3:a5:84:8f:3c:80:23:6b:45:f3:46:
89:27:4f:bb:4d:57:ac:25:e1:13:f3:95:30:63:f8:af:2c:e5:
36:82:a4:c7:c2:55:55:91:06:40:e6:dc:4e:75:6d:01:b2:79:
b7:07:51:d5:91:ad:96:68:e3:71:72:f7:28:a0:14:05:64:d9:
6c:ff:e7:ce:e1:93:62:22:95:c1:49:ce:2d:5c:97:b7:07:8b:
94:5e:43:f5:d5:28:56:87:54:dd:75:2e:83:79:f8:09:87:19:
0a:34:cc:4c:66:4c:e3:ec:06:5f:0b:2f:55:b1:8c:97:52:c6:
26:82:47:57:55:58:e1:ce:5c:1f:c0:9d:4e:ba:80:e2:b4:fd:
74:92:b3:e2:a0:75:dc:ae:c5:4c:d9:8a:79:f6:82:19:97:94:
45:22:af:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:03:11 2025 by rpki-client