Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/zDiDdQidrsVi9EGom3KTj1C2EMU.roa
File: zDiDdQidrsVi9EGom3KTj1C2EMU.roa (raw, json)
Hash identifier: gTHzGIwoR29tUryXTFuhCmFlurDWmdDpwhItmXV0euE=
Subject key identifier: CC:38:83:75:08:9D:AE:C5:62:F4:41:A8:9B:72:93:8F:50:B6:10:C5
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 019425FD4C93295394D70722D03F40189734
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/zDiDdQidrsVi9EGom3KTj1C2EMU.roa
Signing time: Thu 02 Jan 2025 07:49:04 +0000
ROA not before: Thu 02 Jan 2025 07:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31742
IP address blocks: 91.208.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:4c:93:29:53:94:d7:07:22:d0:3f:40:18:97:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Jan 2 07:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc388375089daec562f441a89b72938f50b610c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ee:0c:5d:5a:3c:68:0d:29:77:69:b1:ea:23:
3c:cd:a2:0f:52:b2:2a:0c:e0:b7:e7:8e:88:ae:c9:
7d:32:2b:ec:b8:18:c0:b3:b1:ea:42:d7:9d:5e:ce:
07:63:c8:84:c2:9f:54:a1:70:19:db:44:aa:b1:b2:
30:2d:37:d4:5f:73:08:f2:63:c3:19:8e:fe:e8:a5:
59:7f:7b:b9:48:0c:2c:88:90:d4:c6:ee:8d:90:b5:
97:aa:8d:96:ac:c8:5e:60:31:a9:60:18:e2:99:55:
7e:08:b0:28:f5:10:9e:55:6d:9f:47:33:65:02:e8:
f2:b6:4c:2f:a4:7a:72:eb:cd:0c:d5:76:31:db:e7:
9c:69:d0:89:7c:dd:ed:55:4e:c0:b6:81:59:3b:8f:
15:1a:f7:37:39:8f:f9:ae:cf:16:02:66:3b:25:93:
c4:d9:fd:f1:f4:2d:83:89:c8:04:1f:d8:09:ad:db:
36:4d:4a:97:77:54:e1:ea:14:1f:31:57:ac:da:e2:
29:7a:95:43:fc:78:f7:45:f8:8d:4a:dd:77:2d:b2:
94:a1:b8:89:26:a8:9d:e7:22:dc:9a:fb:94:39:a3:
ab:3f:63:f2:72:86:b1:44:11:d3:16:8b:d1:a8:27:
41:67:5e:05:fe:48:98:a7:48:94:12:c9:1f:16:db:
07:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:38:83:75:08:9D:AE:C5:62:F4:41:A8:9B:72:93:8F:50:B6:10:C5
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/zDiDdQidrsVi9EGom3KTj1C2EMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.114.0/24
Signature Algorithm: sha256WithRSAEncryption
46:c3:a0:43:90:5f:1d:5b:c7:fb:09:73:46:75:b6:20:be:d2:
35:62:b0:00:e4:89:7d:b5:2b:5a:7e:fe:6d:63:ae:65:39:61:
5a:66:8a:fa:67:b7:f7:74:9d:cf:1b:88:77:b1:cd:45:85:62:
e7:49:24:20:b8:d1:33:a4:d3:2c:42:35:6c:b2:5c:95:4c:25:
7c:e0:31:14:fb:a8:1a:c3:be:c4:9e:49:ff:fe:de:b2:c1:18:
fe:75:3d:22:57:22:7b:f3:71:85:5e:41:f5:7e:33:92:82:51:
6b:87:72:8c:eb:fc:60:56:47:e2:35:30:ee:c0:36:97:be:83:
4e:1b:15:96:d8:4b:3e:93:13:54:2d:45:f3:36:60:38:90:14:
40:92:1c:1b:05:ad:3b:a6:20:62:6b:04:4b:26:36:a8:be:0d:
5b:88:ae:f7:9f:c4:d0:fd:f6:ab:98:f8:c7:9b:8b:2f:b2:b8:
1c:1e:14:c4:c2:03:79:b9:f8:fd:d5:86:f7:de:b4:06:ea:8c:
51:2e:f1:b1:52:39:73:ca:74:f4:2f:99:27:a0:40:e7:20:8f:
a2:3d:4a:68:84:13:84:62:0f:84:63:5e:6a:c9:a4:8c:14:34:
12:d4:2f:79:c2:c4:5f:2d:65:be:cb:c7:68:f5:00:fc:e4:e0:
36:03:34:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:51:59 2025 by rpki-client