Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/Q-jmcrvB_2XUasGRC3tc-7_xJN4.roa
File: Q-jmcrvB_2XUasGRC3tc-7_xJN4.roa (raw, json)
Hash identifier: WjaL3Gkr6Tk6qTUOG4zHPun9WbrD1d80dVH2ja+UGTU=
Subject key identifier: 43:E8:E6:72:BB:C1:FF:65:D4:6A:C1:91:0B:7B:5C:FB:BF:F1:24:DE
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0313A656
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/Q-jmcrvB_2XUasGRC3tc-7_xJN4.roa
Signing time: Sat 01 Jan 2022 07:53:54 +0000
ROA not before: Sat 01 Jan 2022 07:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.199.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51619414 (0x313a656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jan 1 07:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43e8e672bbc1ff65d46ac1910b7b5cfbbff124de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4a:d9:b7:00:04:7a:89:4d:11:99:f9:16:7c:
6e:b2:8f:93:df:25:e1:d3:eb:0d:bf:fb:86:c5:52:
c4:fe:f9:ed:a7:37:3a:ed:69:52:ab:e8:83:6b:fa:
55:e4:39:b5:56:e5:2f:f2:15:b9:a8:a5:a9:31:69:
c7:96:0c:64:40:4f:7a:63:6e:3d:80:a0:16:78:e7:
be:38:e2:9c:fd:e2:d8:16:33:76:f7:74:ff:2d:22:
8e:4b:57:bb:c5:cb:a9:9c:8a:2f:d8:8e:88:46:73:
e6:34:77:7e:90:21:52:4d:66:12:3e:84:e1:49:90:
4d:4c:e6:f5:09:1b:39:87:7f:cd:36:30:fe:89:54:
cd:9d:ff:a1:b3:09:bd:7a:53:d8:1c:0c:36:82:a3:
24:24:2a:cf:2b:cb:73:89:eb:4f:ae:99:04:e0:6f:
da:68:57:6b:22:18:2c:84:36:3e:fd:bd:d2:2a:83:
91:09:58:28:69:25:7b:ef:0f:02:bb:10:36:bc:99:
46:92:e4:87:c3:df:f8:10:f6:8e:14:b6:90:5d:a6:
7e:10:24:2e:b0:bd:da:4c:19:49:04:d0:41:78:e6:
4e:2b:59:b4:5f:99:75:9b:05:4a:af:1e:df:9b:4a:
05:3d:1d:da:c3:a2:69:a6:54:68:e8:b7:3c:d8:e1:
ee:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E8:E6:72:BB:C1:FF:65:D4:6A:C1:91:0B:7B:5C:FB:BF:F1:24:DE
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/Q-jmcrvB_2XUasGRC3tc-7_xJN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:62:17:6b:51:10:59:01:64:6c:a4:db:3f:41:36:9b:bf:34:
93:3d:34:5c:23:b0:72:c2:c4:aa:04:96:80:82:ba:f7:fa:07:
6c:a6:2c:3f:14:0a:73:31:91:72:96:e5:03:ab:b6:d5:eb:e0:
bc:30:e3:e4:17:2d:1a:42:4c:9e:0d:5f:95:5c:55:c6:d7:84:
d6:15:2d:3e:50:c6:3d:f7:58:6e:78:10:23:53:fa:2b:e7:56:
a4:df:74:c7:81:75:55:a0:4f:6c:6d:81:f5:b6:37:53:64:66:
ee:35:99:3a:17:87:93:be:49:15:90:6b:07:de:eb:4a:bc:47:
18:34:53:a7:2e:2c:34:86:66:60:df:77:4b:33:b4:a0:40:6d:
68:82:46:b4:c0:04:83:ed:63:0f:1b:55:6b:11:97:6a:05:ef:
39:f9:b6:25:f8:79:ce:18:3f:0f:8a:b6:5d:ba:cb:98:07:d8:
69:db:54:a7:87:6c:c4:64:c0:1f:d4:3d:f2:be:c8:ec:87:43:
18:e8:d0:bd:a5:f9:cd:e2:9f:f4:ea:4a:a3:fa:4a:ac:08:69:
56:97:d2:c5:2f:54:d1:10:5f:67:d6:98:69:07:bc:56:97:71:
e0:3c:4f:12:23:1e:e0:a7:93:7e:69:da:f1:6b:49:9d:3b:1f:
f2:b3:6c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:51 2025 by rpki-client