Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5c0b4a-2da4-43a5-9289-1937bde8cd6f/1/_sJ1gEKp9zcUkmdoEUiL1Hgw__4.roa
File: _sJ1gEKp9zcUkmdoEUiL1Hgw__4.roa (raw, json)
Hash identifier: QNXdCikQmuLlbojTN81QhJiEfrR2COSucqfmF6ZaSHQ=
Subject key identifier: FE:C2:75:80:42:A9:F7:37:14:92:67:68:11:48:8B:D4:78:30:FF:FE
Certificate issuer: /CN=9a918b80cbb32737a46b244869a6ad5509543fa1
Certificate serial: 019423D6A99C6C834ED73E429A13AFB5B237
Authority key identifier: 9A:91:8B:80:CB:B3:27:37:A4:6B:24:48:69:A6:AD:55:09:54:3F:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpGLgMuzJzekayRIaaatVQlUP6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/5c0b4a-2da4-43a5-9289-1937bde8cd6f/1/_sJ1gEKp9zcUkmdoEUiL1Hgw__4.roa
Signing time: Wed 01 Jan 2025 21:47:38 +0000
ROA not before: Wed 01 Jan 2025 21:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51347
IP address blocks: 91.247.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:a9:9c:6c:83:4e:d7:3e:42:9a:13:af:b5:b2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a918b80cbb32737a46b244869a6ad5509543fa1
Validity
Not Before: Jan 1 21:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fec2758042a9f7371492676811488bd47830fffe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c1:ed:e1:f6:72:56:ea:a3:0f:51:5c:07:ff:
6e:ba:90:ec:9a:7c:91:52:67:52:fb:b8:59:81:f3:
93:f2:02:57:31:32:4c:e2:c9:22:48:9a:85:da:88:
d4:8a:27:fe:a6:55:b8:7f:6c:b5:9b:2a:31:8f:67:
91:e6:88:7c:8e:00:ca:d4:36:d3:a7:99:a8:d3:99:
df:1c:d0:98:cd:a7:d2:4e:ce:20:00:db:f0:06:59:
df:a4:e8:54:1c:c6:90:33:93:6b:22:cc:d6:26:d5:
b9:c1:73:ff:29:0e:ad:1f:27:85:76:45:09:59:0b:
f1:fd:c9:16:91:33:21:66:b8:4d:eb:73:b6:f9:4b:
67:9c:9a:70:b3:35:f8:83:29:15:98:3c:2c:d3:bb:
dc:d6:28:8d:26:0c:55:42:61:93:b2:17:21:47:f4:
80:6e:69:45:11:3a:82:d1:b3:32:86:78:47:94:80:
ee:d6:3f:8c:82:ee:41:67:1e:7b:17:b8:33:45:8c:
1e:61:93:94:69:f0:42:f5:0c:4c:96:7e:3e:6b:59:
c4:b9:94:94:a8:1b:f8:e7:84:df:a9:89:3a:40:fd:
7f:d7:72:64:34:3d:73:b0:4f:31:95:85:dd:1a:a1:
9e:90:28:a1:74:b9:50:1b:c8:b7:94:02:92:b3:8b:
e9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C2:75:80:42:A9:F7:37:14:92:67:68:11:48:8B:D4:78:30:FF:FE
X509v3 Authority Key Identifier:
keyid:9A:91:8B:80:CB:B3:27:37:A4:6B:24:48:69:A6:AD:55:09:54:3F:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpGLgMuzJzekayRIaaatVQlUP6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5c0b4a-2da4-43a5-9289-1937bde8cd6f/1/_sJ1gEKp9zcUkmdoEUiL1Hgw__4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5c0b4a-2da4-43a5-9289-1937bde8cd6f/1/mpGLgMuzJzekayRIaaatVQlUP6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.72.0/24
Signature Algorithm: sha256WithRSAEncryption
46:dc:88:62:78:6b:5b:5f:40:97:d2:58:cf:af:bc:07:9c:d2:
d4:87:9f:42:74:60:d1:39:31:c9:06:6b:8c:4a:45:a9:bd:f1:
b1:b6:4c:d4:a9:a2:a0:bb:41:d9:b2:f3:1b:e9:e7:82:db:a8:
33:c3:49:a0:32:db:12:8a:2b:51:d6:ce:a2:7d:b3:1a:b6:84:
69:4a:a0:f1:6f:07:1f:32:22:31:5c:91:f7:68:c9:6d:fc:b2:
c9:53:96:70:1d:a1:ad:11:08:ff:8e:8a:4c:e0:c0:b9:b6:07:
44:33:a4:a7:8d:45:2b:d4:8c:f3:36:1f:0c:da:fb:66:dd:e6:
55:a4:77:d9:3b:94:70:fe:73:87:52:30:f8:9c:8c:62:97:6d:
bb:82:98:8d:79:e6:d4:fa:be:c7:73:84:93:cb:61:e5:19:63:
68:6e:bb:06:e6:4f:5a:96:91:c3:8f:ed:a1:55:a4:f1:32:44:
62:77:ad:16:2c:5c:f9:08:f6:04:e8:87:ca:6d:a8:d0:f8:20:
8e:e4:95:98:c4:33:d3:11:38:5d:0a:68:92:11:4b:a0:1a:d2:
db:1d:10:40:30:3f:ec:80:42:af:e2:da:46:28:bb:9a:81:79:
be:03:fb:84:66:80:1a:26:b1:c1:ee:4a:85:1e:5c:b3:dc:c3:
bf:ae:d9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:40:43 2025 by rpki-client