Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/Z7WQLysLOr9KTXHt3eRvtbiWeZo.roa
File: Z7WQLysLOr9KTXHt3eRvtbiWeZo.roa (raw, json)
Hash identifier: fdaTiSBPfJFKIhyYKXlfKo3BVE4saxPRnib+dEXPrFo=
Subject key identifier: 67:B5:90:2F:2B:0B:3A:BF:4A:4D:71:ED:DD:E4:6F:B5:B8:96:79:9A
Certificate issuer: /CN=0e3c9ee1be3308fd6bd4a7c7ac2b9d910089b779
Certificate serial: 019422FC37B7B1335E200DE479D74D58EA4A
Authority key identifier: 0E:3C:9E:E1:BE:33:08:FD:6B:D4:A7:C7:AC:2B:9D:91:00:89:B7:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Djye4b4zCP1r1KfHrCudkQCJt3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/Z7WQLysLOr9KTXHt3eRvtbiWeZo.roa
Signing time: Wed 01 Jan 2025 17:49:02 +0000
ROA not before: Wed 01 Jan 2025 17:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199034
IP address blocks: 91.202.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:37:b7:b1:33:5e:20:0d:e4:79:d7:4d:58:ea:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3c9ee1be3308fd6bd4a7c7ac2b9d910089b779
Validity
Not Before: Jan 1 17:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67b5902f2b0b3abf4a4d71eddde46fb5b896799a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:86:e8:6c:f1:3c:ea:8a:23:58:25:07:82:
ee:bb:de:20:ea:da:0b:d7:26:8b:2a:3f:bb:e6:03:
f1:5a:99:54:9a:6e:db:c0:75:57:2d:cf:08:8b:60:
fe:a7:58:61:9f:eb:ae:72:c4:95:c7:26:2e:e6:48:
43:48:3d:44:cb:ae:99:a8:1c:2b:ad:eb:b1:36:92:
02:3c:cb:df:a1:5c:76:3b:ff:0e:fc:eb:f6:5c:79:
d3:a1:10:30:e3:bb:a9:c8:04:df:fb:d0:df:5c:98:
06:51:7d:7d:64:e6:c9:c3:34:ed:f3:6c:39:b6:86:
45:5a:00:2c:d0:4d:79:90:33:6c:93:ba:cd:2c:16:
b1:8c:b6:03:d0:85:ea:bc:8c:5e:85:77:1a:99:ef:
bd:e3:95:2b:bb:9f:f5:36:69:f9:d1:4b:3f:f8:66:
37:5f:4d:43:5b:f1:e2:fe:0d:f7:53:46:52:ad:ce:
d9:2f:f7:d0:6e:15:38:20:27:b3:05:57:4f:58:f7:
76:84:0f:11:5d:09:de:81:68:30:1f:c4:a5:59:90:
8f:49:07:97:be:99:91:72:ef:31:5a:11:a0:e6:be:
59:98:7c:95:fe:de:7f:4a:0a:b8:bc:06:09:8a:56:
0e:c7:b7:cd:84:5c:99:f3:fe:95:88:80:32:65:9e:
be:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B5:90:2F:2B:0B:3A:BF:4A:4D:71:ED:DD:E4:6F:B5:B8:96:79:9A
X509v3 Authority Key Identifier:
keyid:0E:3C:9E:E1:BE:33:08:FD:6B:D4:A7:C7:AC:2B:9D:91:00:89:B7:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Djye4b4zCP1r1KfHrCudkQCJt3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/Z7WQLysLOr9KTXHt3eRvtbiWeZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/Djye4b4zCP1r1KfHrCudkQCJt3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.177.0/24
Signature Algorithm: sha256WithRSAEncryption
78:88:24:44:30:f1:af:cc:ec:f3:79:93:1b:9e:21:88:74:95:
2b:a4:e3:2c:b3:bf:c7:77:0e:97:48:45:a4:13:6e:fa:b2:57:
6f:17:e3:63:dd:ef:08:2d:2f:e3:cd:b3:06:b2:6c:27:57:1a:
33:5e:d6:11:c6:3a:b7:6b:0b:cf:2b:da:14:f4:26:42:a2:30:
df:aa:ed:f5:3e:db:e1:c0:5c:e1:52:29:0a:4a:19:c3:fb:52:
87:8c:19:e7:09:63:b4:55:c9:a3:df:d1:c3:dc:e7:38:68:fb:
cd:fc:f9:88:1f:3a:3a:d2:8e:8d:55:d3:de:71:74:ff:50:a8:
a7:f3:64:1e:9a:49:57:78:30:ca:be:61:0d:f6:02:c1:ad:95:
9d:ce:9a:e1:93:9b:81:b8:18:ce:42:60:50:f3:46:de:8e:46:
26:60:fd:bb:d4:89:1a:fa:ac:16:a0:c3:fb:8d:bf:a2:c3:98:
94:73:4d:97:64:2a:1d:dc:e3:0b:8f:6f:e7:03:26:86:34:73:
c1:15:8f:11:30:a3:26:ef:6f:e2:df:55:c4:ba:bf:9e:91:c8:
44:fb:67:31:f1:e9:4a:e7:c0:61:80:55:d4:85:10:0b:ea:d2:
d0:f3:42:d6:b7:ef:32:c0:ba:46:11:34:96:f6:c5:6b:7c:ae:
99:37:ec:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:55 2025 by rpki-client