Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/aTbC65zWLUM3rX02owKMyeLgK2g.roa
File: aTbC65zWLUM3rX02owKMyeLgK2g.roa (raw, json)
Hash identifier: MMivAVGie6U2lHovqiTCA0ph8NAIu1ZFeK/TDEHnrGk=
Subject key identifier: 69:36:C2:EB:9C:D6:2D:43:37:AD:7D:36:A3:02:8C:C9:E2:E0:2B:68
Certificate issuer: /CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Certificate serial: 14A79429
Authority key identifier: 04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/aTbC65zWLUM3rX02owKMyeLgK2g.roa
Signing time: Thu 24 Feb 2022 14:47:39 +0000
ROA not before: Thu 24 Feb 2022 14:47:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59450
IP address blocks: 91.197.32.0/24 maxlen: 24
91.197.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346526761 (0x14a79429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Validity
Not Before: Feb 24 14:47:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6936c2eb9cd62d4337ad7d36a3028cc9e2e02b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:1e:0d:c6:cb:11:99:3d:00:b7:dd:1f:7f:
ef:e4:b3:96:71:4a:22:0c:0c:6c:dd:2f:35:2b:a2:
3c:6e:5e:55:e6:13:c8:0e:0b:88:ac:ec:0e:a9:9e:
f4:e9:f5:07:18:09:fd:57:11:0c:3b:75:73:12:2c:
28:5f:f3:0a:a1:2f:21:44:8a:2b:c5:06:e4:42:51:
63:e4:75:e5:65:87:75:72:fa:2e:94:7f:a9:3f:59:
a2:ef:40:bb:af:09:b2:2e:f7:2f:7d:79:8c:ee:a4:
94:ab:6c:82:ab:d3:dc:3b:8d:76:b1:8e:e4:d6:9c:
93:ee:4e:8a:29:ff:5f:f3:82:95:43:31:85:9f:27:
e5:ac:32:86:f2:5d:03:57:73:ec:9c:63:3b:c5:54:
4f:76:0e:50:c4:63:9d:dd:9c:38:91:43:b5:ad:56:
2b:31:8f:45:33:7f:8a:10:06:e0:20:4e:b1:fc:2d:
9f:bf:e8:0a:cb:47:92:f7:6d:81:c7:4e:52:33:10:
19:4a:83:2b:d0:3a:57:8f:fa:8c:cb:31:7e:a6:f9:
b1:45:40:53:d5:f5:94:e0:29:f5:3a:f9:83:ee:00:
95:da:3e:6e:83:1f:cf:84:66:b6:c1:9b:1c:b4:0d:
ab:10:e6:8e:a0:e4:eb:0c:fe:e1:18:24:fd:ee:8d:
3e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:36:C2:EB:9C:D6:2D:43:37:AD:7D:36:A3:02:8C:C9:E2:E0:2B:68
X509v3 Authority Key Identifier:
keyid:04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/aTbC65zWLUM3rX02owKMyeLgK2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/BNm8gopWawavTXZd-12lvB12xyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.32.0/22
Signature Algorithm: sha256WithRSAEncryption
47:a4:68:53:d0:69:6c:58:31:65:63:f6:42:cd:22:4a:b6:c5:
d9:92:53:07:3c:d2:c0:9b:a5:56:c5:7e:56:8e:fb:7e:3c:dc:
71:3a:f6:e3:50:e8:3d:b7:74:51:5f:16:a6:b8:13:6d:1f:06:
78:e1:5a:35:c6:38:6f:cb:0a:8d:87:64:2f:e6:bb:59:b2:31:
cb:88:83:8e:6a:8a:67:52:d0:30:c2:d9:54:2d:51:80:e3:b3:
59:c7:32:ba:39:27:15:fb:43:79:56:25:8c:97:3c:22:ac:5d:
1b:9e:1e:4c:80:41:a9:c0:4c:71:69:24:fb:57:30:31:28:c7:
0b:a8:84:61:8e:70:b8:96:58:1a:ce:71:d4:1a:f4:44:a5:6d:
49:39:6e:5e:16:90:fd:26:37:6e:c1:35:07:17:2c:13:01:4c:
18:76:9d:07:f2:8f:a5:b1:92:f5:0b:bd:f4:4b:de:3d:c4:94:
8e:aa:8c:bd:4c:1a:82:17:c8:90:86:7c:bd:29:d5:9b:de:7f:
6b:aa:02:a0:af:db:26:ae:e7:de:ca:48:40:6d:61:d6:fa:a0:
97:99:22:6c:9d:c0:65:0b:8b:a7:bb:4c:8a:62:04:24:7a:1d:
6f:e5:5f:14:14:1b:77:2a:83:11:e3:82:43:1b:82:78:ab:f8:
4b:d1:6f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:49 2025 by rpki-client