Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/B-5_egLdEl752iv9qxYdq8eosj8.roa
File: B-5_egLdEl752iv9qxYdq8eosj8.roa (raw, json)
Hash identifier: Cdvp7KAkC+/9T90gVhhsMGICo5DVTrNIRp6EnoCK4JA=
Subject key identifier: 07:EE:7F:7A:02:DD:12:5E:F9:DA:2B:FD:AB:16:1D:AB:C7:A8:B2:3F
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 019421B25B30E767E3D8E94ACB35D8315B99
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/B-5_egLdEl752iv9qxYdq8eosj8.roa
Signing time: Wed 01 Jan 2025 11:48:44 +0000
ROA not before: Wed 01 Jan 2025 11:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200082
IP address blocks: 91.221.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:5b:30:e7:67:e3:d8:e9:4a:cb:35:d8:31:5b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 1 11:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07ee7f7a02dd125ef9da2bfdab161dabc7a8b23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ff:3f:63:e7:ff:a6:32:5c:51:2a:99:d9:f7:
4f:aa:82:17:f2:ef:8c:ac:4e:7b:36:13:db:b1:7e:
e8:92:6a:ff:9f:11:cb:d5:9a:27:bf:f4:c9:bd:71:
4b:25:a4:29:14:0a:51:cc:33:c9:7e:1e:e9:b9:ac:
70:8f:3e:7e:3e:4f:c5:8e:01:69:bf:26:af:1e:94:
e8:3c:3d:0d:61:1f:08:46:01:09:8e:15:1d:0d:8f:
e8:fc:7b:f2:1b:b0:57:d2:e7:02:a5:a1:64:55:6f:
5e:f7:91:e0:89:88:f3:5f:b9:aa:fc:23:28:41:09:
53:d3:ba:e7:09:ac:16:11:cc:24:83:14:bc:dd:55:
71:8b:43:2b:a8:94:23:71:44:c6:0e:24:5c:64:34:
67:d1:c7:70:a6:bb:d9:7c:4c:8e:2a:34:cc:99:b1:
a2:ca:9d:df:08:96:44:49:b1:8c:4b:25:ef:19:dd:
20:1d:7f:7f:6c:ec:30:06:ab:c3:e1:e2:cb:b4:8d:
02:00:54:d8:f0:99:8c:66:7e:2a:93:95:5c:ee:70:
50:aa:b0:79:44:80:a8:99:89:2d:a8:ea:4a:75:43:
b9:cd:fb:b9:55:c3:08:57:67:63:2b:54:b9:2a:e0:
fd:bd:a7:e3:ef:88:cd:68:03:03:da:6c:c0:65:30:
51:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EE:7F:7A:02:DD:12:5E:F9:DA:2B:FD:AB:16:1D:AB:C7:A8:B2:3F
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/B-5_egLdEl752iv9qxYdq8eosj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.117.0/24
Signature Algorithm: sha256WithRSAEncryption
83:42:6a:51:20:8f:eb:e7:22:a5:b1:f7:9c:82:03:0b:02:6f:
4e:9a:9c:3d:ee:51:b0:fd:32:60:bd:99:7e:7f:a6:5d:51:20:
da:79:14:2d:6c:b9:2b:1d:d5:e7:d3:19:3e:41:bf:e0:ff:28:
fc:40:3a:f2:48:ec:84:1b:36:b0:9a:da:2f:14:bc:3b:66:5d:
c6:f3:6e:dc:2e:0e:ba:e9:f0:e6:10:55:6e:fb:70:ae:4c:19:
d0:55:ae:dd:47:ef:86:a3:30:a6:b2:2a:17:41:0b:54:15:3a:
5d:5c:62:9b:ed:3e:ab:c8:f1:b4:6b:56:d2:00:bb:7f:91:d6:
95:08:17:f3:4f:18:4d:82:26:4c:7b:b0:a2:9d:90:ef:a3:33:
78:33:d4:87:48:e5:74:17:a3:ff:90:32:96:80:eb:0e:82:63:
1d:52:52:2b:61:2d:73:51:cf:80:c7:73:32:2f:db:f0:d8:1b:
4a:ec:db:ab:3a:6a:e1:00:e2:5e:3c:0c:94:e5:2a:80:50:82:
a0:a9:2c:a4:5d:b6:49:4d:e2:2d:0a:27:52:87:67:45:bf:16:
9f:bc:53:3a:b7:2c:43:7d:a5:87:3a:10:7a:74:ac:07:29:0a:
da:7e:a0:37:f1:f2:76:a1:ca:91:76:44:d5:90:9d:20:b5:25:
5a:db:9a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:39:58 2025 by rpki-client