Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/5xLAc53x67SdDbEuZVKuiDXHPKg.roa
File: 5xLAc53x67SdDbEuZVKuiDXHPKg.roa (raw, json)
Hash identifier: 3bTxupc7/F9q4TjtsH01feMtR1v4Pvp4gfAdfdmh08Q=
Subject key identifier: E7:12:C0:73:9D:F1:EB:B4:9D:0D:B1:2E:65:52:AE:88:35:C7:3C:A8
Certificate issuer: /CN=a92cc80cdccec196009c0a56b13cf205152bab33
Certificate serial: 018CC86EF19C5A7F7A6AB9DD37C569B7C70F
Authority key identifier: A9:2C:C8:0C:DC:CE:C1:96:00:9C:0A:56:B1:3C:F2:05:15:2B:AB:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qSzIDNzOwZYAnApWsTzyBRUrqzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/5xLAc53x67SdDbEuZVKuiDXHPKg.roa
Signing time: Tue 02 Jan 2024 04:29:23 +0000
ROA not before: Tue 02 Jan 2024 04:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197883
IP address blocks: 91.208.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6e:f1:9c:5a:7f:7a:6a:b9:dd:37:c5:69:b7:c7:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92cc80cdccec196009c0a56b13cf205152bab33
Validity
Not Before: Jan 2 04:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e712c0739df1ebb49d0db12e6552ae8835c73ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ef:71:67:9e:f0:34:dc:03:27:35:bc:3a:ab:
8a:9e:24:8b:9d:89:c1:b9:a8:c8:bb:b8:f4:12:bc:
a3:1b:d4:3e:e1:68:c9:22:9c:c9:8e:c5:63:fa:8e:
b2:e8:a8:03:70:95:3a:4d:11:f4:c1:73:df:09:08:
d5:bd:11:0f:77:98:c6:10:a9:b6:79:ff:d0:c5:a8:
dd:fd:e1:4c:61:d6:02:52:7e:bb:9f:e8:ad:0b:7e:
ec:5d:e6:7d:c5:54:79:29:54:e8:fc:32:73:a6:68:
3c:f4:64:bc:de:3b:0d:e4:2e:01:c3:1f:f6:b8:2b:
41:75:64:d1:60:c7:cd:d4:fb:ed:6b:2d:69:bd:57:
16:a5:ff:b0:e4:08:13:45:29:33:77:f9:d1:dc:06:
48:bf:5f:79:8c:16:f4:ea:fe:94:9e:4b:1d:06:06:
67:54:53:20:59:d7:76:33:62:33:51:4c:bf:eb:2d:
88:df:d0:ca:2c:16:c7:4c:a2:f3:4e:ff:b2:13:2b:
64:9b:ae:68:8b:1c:44:2f:6c:66:f1:6f:9f:81:10:
41:92:fd:98:42:84:be:7f:52:cd:7a:20:1b:65:74:
de:f8:e5:68:a4:b7:20:f8:27:ee:36:ce:a8:e1:1e:
b0:50:99:2d:17:0e:ce:51:d0:34:2d:7a:37:62:73:
69:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:12:C0:73:9D:F1:EB:B4:9D:0D:B1:2E:65:52:AE:88:35:C7:3C:A8
X509v3 Authority Key Identifier:
keyid:A9:2C:C8:0C:DC:CE:C1:96:00:9C:0A:56:B1:3C:F2:05:15:2B:AB:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qSzIDNzOwZYAnApWsTzyBRUrqzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/5xLAc53x67SdDbEuZVKuiDXHPKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/qSzIDNzOwZYAnApWsTzyBRUrqzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.85.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b4:2c:f3:6a:ad:4f:b8:22:0a:48:37:12:6a:f2:98:d2:d4:
87:ec:0a:23:c1:10:a7:ab:29:90:3a:70:b8:52:f0:08:5c:8f:
92:de:ec:fb:96:2b:c7:fc:26:61:07:36:ea:c8:c8:3b:48:c2:
43:fb:f9:b1:26:a0:40:85:be:66:de:43:2c:0a:33:b0:ce:82:
99:6a:a7:b9:ba:28:07:60:34:b8:ff:9e:bd:a4:df:85:3a:30:
46:ef:20:6b:61:15:3a:d5:cf:ca:99:9e:28:99:41:dd:c5:d2:
21:af:1f:11:12:bd:2a:5e:fc:65:de:c0:c5:c3:ae:73:e4:bb:
54:a8:2f:be:dd:ee:88:dd:dc:ce:66:3b:94:bc:b9:f4:c9:c9:
f0:ce:64:b5:34:f0:4e:57:92:ff:ad:76:d2:56:25:f5:cc:87:
cc:7b:19:65:b4:5e:c5:c6:1e:44:cd:64:e0:bf:95:b8:16:83:
23:54:67:bd:08:5d:25:8b:30:3f:c8:df:8c:b1:29:6a:f4:50:
b7:c9:bf:bc:fb:f7:ff:20:e3:88:9e:0c:41:46:38:3c:ff:b7:
c4:1e:3f:2b:93:6c:01:df:ed:9c:c6:ea:49:58:6e:dc:63:ff:
9e:92:80:71:8a:64:44:45:6f:b9:56:8f:45:fe:74:b4:bb:97:
f0:33:34:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:03 2025 by rpki-client