Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/37d93c-aa71-46d8-a54c-43d796147d3c/1/UQlY6x51RiLKxG1DdOh_qOehJbc.roa
File: UQlY6x51RiLKxG1DdOh_qOehJbc.roa (raw, json)
Hash identifier: A1UWpKOkE56L9eAxWqXUTVRXdtJMt+hMhWKDo90PosY=
Subject key identifier: 51:09:58:EB:1E:75:46:22:CA:C4:6D:43:74:E8:7F:A8:E7:A1:25:B7
Certificate issuer: /CN=064aba015d2b652cb489da4bd992d14be07673c7
Certificate serial: B55C2E
Authority key identifier: 06:4A:BA:01:5D:2B:65:2C:B4:89:DA:4B:D9:92:D1:4B:E0:76:73:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bkq6AV0rZSy0idpL2ZLRS-B2c8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/37d93c-aa71-46d8-a54c-43d796147d3c/1/UQlY6x51RiLKxG1DdOh_qOehJbc.roa
Signing time: Sat 01 Jan 2022 07:00:09 +0000
ROA not before: Sat 01 Jan 2022 07:00:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 91.242.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11885614 (0xb55c2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064aba015d2b652cb489da4bd992d14be07673c7
Validity
Not Before: Jan 1 07:00:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=510958eb1e754622cac46d4374e87fa8e7a125b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:55:d0:88:ba:af:6a:f4:63:0f:7c:4a:a8:c9:
1a:08:b0:86:d2:5f:c5:ac:14:4e:31:a8:2e:5f:ae:
29:98:dd:f4:15:45:fb:7e:8b:94:49:3c:86:0b:63:
26:f3:62:c7:64:b8:4b:09:2f:a6:fb:e6:b2:5d:87:
2b:67:01:0b:58:e8:a4:d1:a0:fc:38:fe:9c:df:6f:
5d:b1:d7:db:86:75:2d:33:ab:4b:86:ee:bc:d1:62:
96:d9:2b:9b:67:7f:b2:68:e3:37:43:b0:94:5a:0f:
7c:f0:81:08:4c:dd:b7:77:00:5a:05:20:d7:0f:24:
0a:1e:4f:3d:8f:30:4f:7b:3e:b3:9b:0c:19:bf:52:
5d:6a:7e:b1:3a:2f:ae:5b:08:dd:f7:9b:2c:74:32:
5b:9a:b9:25:c0:11:ac:03:10:71:80:e6:52:00:cd:
be:64:92:3b:64:94:cf:bb:30:43:23:2f:75:9c:cc:
85:12:ef:62:57:82:17:22:bd:75:9a:87:4a:56:af:
35:a6:b0:18:ea:f6:ea:1b:84:0d:9e:9a:0d:35:54:
c8:f2:73:e4:8d:21:d5:65:74:da:cc:78:c2:8f:29:
8f:2e:85:2a:2c:58:d7:52:0d:90:69:6e:f7:b5:7c:
49:c7:7e:cb:bc:ff:82:d9:cd:92:64:31:b3:7c:2a:
e7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:09:58:EB:1E:75:46:22:CA:C4:6D:43:74:E8:7F:A8:E7:A1:25:B7
X509v3 Authority Key Identifier:
keyid:06:4A:BA:01:5D:2B:65:2C:B4:89:DA:4B:D9:92:D1:4B:E0:76:73:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bkq6AV0rZSy0idpL2ZLRS-B2c8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/37d93c-aa71-46d8-a54c-43d796147d3c/1/UQlY6x51RiLKxG1DdOh_qOehJbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/37d93c-aa71-46d8-a54c-43d796147d3c/1/Bkq6AV0rZSy0idpL2ZLRS-B2c8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e9:5c:2a:18:27:14:b1:4c:9d:4d:f3:49:2a:42:c2:4c:ae:
86:fe:87:74:3d:56:a3:86:3f:7c:93:07:15:8d:91:99:82:0b:
28:db:97:07:c3:66:24:87:fd:84:62:da:dd:1b:df:1a:06:5c:
5d:af:8f:fd:15:36:a7:f3:0d:a6:07:44:e6:b5:e6:f1:28:7c:
d4:c5:ba:67:42:05:78:8a:6a:df:08:79:de:fd:ab:2f:61:8b:
89:ff:20:68:57:3c:89:e8:87:60:10:95:54:3f:e3:b2:f1:95:
5a:a1:90:bd:1a:0b:60:04:1d:bf:67:83:f1:a4:ce:4d:72:16:
e9:54:d8:59:ab:dc:2f:ec:6c:00:85:be:dd:3a:ba:c1:58:fa:
cb:7e:53:62:63:0c:dc:56:79:15:e5:da:34:84:18:ba:cf:d1:
c3:e8:fe:97:e3:92:b2:94:81:64:9e:b4:e4:95:cf:1e:3b:6f:
7a:ba:67:82:03:66:bd:26:42:82:b1:17:a7:33:4e:b4:56:e1:
c7:f1:7a:be:81:97:1a:e1:ac:d9:76:1a:5a:41:21:9c:d6:47:
dc:c1:a8:16:dc:04:17:89:5a:23:e8:12:75:b2:5b:41:c0:e1:
1f:b0:a7:53:68:65:46:67:b2:51:40:00:d5:4c:15:b7:0c:d8:
b8:79:b2:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:22 2025 by rpki-client