Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/3c91a8-080b-4e5a-b8c3-74afc3043b78/1/ttg5VkQmE-CT_UTENF07n7R2sRQ.roa
File: ttg5VkQmE-CT_UTENF07n7R2sRQ.roa (raw, json)
Hash identifier: lKSbwZMZC4wBO8BqdScrx370SDVIcLXaY1lpku8KmlA=
Subject key identifier: B6:D8:39:56:44:26:13:E0:93:FD:44:C4:34:5D:3B:9F:B4:76:B1:14
Certificate issuer: /CN=3725f754004edbe30ab8cafeef9f7132cb0c2417
Certificate serial: 01942067C74D300B90EC778C5815898E87FA
Authority key identifier: 37:25:F7:54:00:4E:DB:E3:0A:B8:CA:FE:EF:9F:71:32:CB:0C:24:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NyX3VABO2-MKuMr-759xMssMJBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/3c91a8-080b-4e5a-b8c3-74afc3043b78/1/ttg5VkQmE-CT_UTENF07n7R2sRQ.roa
Signing time: Wed 01 Jan 2025 05:47:39 +0000
ROA not before: Wed 01 Jan 2025 05:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15404
IP address blocks: 91.244.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:c7:4d:30:0b:90:ec:77:8c:58:15:89:8e:87:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3725f754004edbe30ab8cafeef9f7132cb0c2417
Validity
Not Before: Jan 1 05:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b6d83956442613e093fd44c4345d3b9fb476b114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e9:af:ed:59:8e:96:b5:8b:61:b3:91:96:32:
2f:5b:64:b2:0f:7e:d5:3a:da:b7:03:4b:ab:66:f7:
7b:b8:81:1c:07:ca:60:0a:19:8b:4e:25:fe:02:13:
a2:5d:b5:39:7c:c8:d2:36:82:29:a4:eb:8b:71:1f:
0a:7e:9e:be:0a:00:a6:d0:42:15:64:6c:de:d7:c1:
a6:53:c0:9f:ad:92:5c:58:bb:b0:c1:56:90:0e:f1:
dd:8d:d5:13:79:c2:49:60:04:5a:b0:a1:4b:5f:5e:
56:3c:bd:8d:dc:ec:2e:b3:00:c7:36:b6:de:38:12:
91:3d:17:fe:7f:85:f7:5f:27:3e:31:a3:15:27:5d:
e3:f8:04:7e:63:30:27:29:c8:18:35:36:8b:8a:33:
bf:f9:b8:be:23:84:67:40:c0:8d:66:a8:82:ff:56:
20:69:2b:b6:8a:33:09:d5:80:65:39:de:56:b9:a0:
62:28:47:60:85:48:09:53:c5:b0:bb:81:b2:bd:db:
9a:78:88:2d:d7:57:4b:f2:d5:94:d1:0c:b9:02:7c:
7a:b7:9f:dc:40:33:c4:3a:7d:f3:42:6e:36:c3:18:
66:bb:b6:6e:15:37:7b:3e:8e:96:83:bb:0c:d1:13:
02:78:22:b9:a7:4d:a5:c0:07:79:f3:f6:16:e5:8d:
70:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D8:39:56:44:26:13:E0:93:FD:44:C4:34:5D:3B:9F:B4:76:B1:14
X509v3 Authority Key Identifier:
keyid:37:25:F7:54:00:4E:DB:E3:0A:B8:CA:FE:EF:9F:71:32:CB:0C:24:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NyX3VABO2-MKuMr-759xMssMJBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/3c91a8-080b-4e5a-b8c3-74afc3043b78/1/ttg5VkQmE-CT_UTENF07n7R2sRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/3c91a8-080b-4e5a-b8c3-74afc3043b78/1/NyX3VABO2-MKuMr-759xMssMJBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.125.0/24
Signature Algorithm: sha256WithRSAEncryption
16:3e:16:80:19:cc:73:9f:23:74:61:cb:6b:5a:24:80:e2:c3:
59:c9:73:4c:cc:c4:28:be:54:ac:9b:92:92:c7:7d:3e:92:28:
7f:65:0d:fa:d5:cd:64:7e:62:79:22:8a:81:56:ad:b2:e7:46:
77:2a:e8:5a:11:55:f5:7c:66:3d:b7:86:5a:e1:e2:d1:4a:c5:
d7:7c:5a:dd:66:33:d6:0f:bc:06:c6:ee:2d:6d:35:af:f3:d0:
0e:4e:cf:06:77:f0:99:52:22:96:8e:db:23:05:17:19:b5:f4:
9d:b8:ae:22:d2:29:95:a7:db:5e:a2:5b:db:19:0c:85:a0:a7:
1c:e9:52:04:9a:28:a9:70:c1:d0:d4:b7:07:af:06:62:15:e7:
9c:d6:93:90:38:d8:0f:ae:94:e8:5e:09:df:91:46:a5:2d:0a:
3a:f8:42:12:56:ac:45:76:1b:8e:96:ad:ae:2a:22:96:37:dc:
30:c0:c2:f3:e1:20:61:52:13:6d:c2:4b:f7:25:5c:7d:cc:1b:
97:a4:eb:ac:63:bd:b6:b6:1b:dd:99:d5:87:42:0a:60:71:3d:
23:91:47:a5:d0:25:a2:46:a9:51:4d:bb:52:be:73:9c:2f:c9:
ac:17:4b:83:ad:10:7b:74:dd:90:31:c5:bb:0a:cc:e3:26:44:
19:c6:88:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:39 2025 by rpki-client