Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/4ac9cd-a7a2-4a06-bd58-39240dcda9b3/1/dRaGJ8lsO45DjXMBq1JI-LQyooE.roa
File: dRaGJ8lsO45DjXMBq1JI-LQyooE.roa (raw, json)
Hash identifier: egO6OPDB47MRMxBl7T2cTP14iD9LeNePR/ZXeDkVOcw=
Subject key identifier: 75:16:86:27:C9:6C:3B:8E:43:8D:73:01:AB:52:48:F8:B4:32:A2:81
Certificate issuer: /CN=24762158ac29cb44f1b80acb04ff60bf3c20f96f
Certificate serial: 018571D72C34480E962AD213117348162714
Authority key identifier: 24:76:21:58:AC:29:CB:44:F1:B8:0A:CB:04:FF:60:BF:3C:20:F9:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHYhWKwpy0TxuArLBP9gvzwg-W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/4ac9cd-a7a2-4a06-bd58-39240dcda9b3/1/dRaGJ8lsO45DjXMBq1JI-LQyooE.roa
Signing time: Mon 02 Jan 2023 09:36:45 +0000
ROA not before: Mon 02 Jan 2023 09:36:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25133
IP address blocks: 91.105.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:2c:34:48:0e:96:2a:d2:13:11:73:48:16:27:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24762158ac29cb44f1b80acb04ff60bf3c20f96f
Validity
Not Before: Jan 2 09:36:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75168627c96c3b8e438d7301ab5248f8b432a281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8d:bc:a1:91:8a:a7:b0:1e:54:c7:00:59:4e:
1d:f8:fe:d2:0b:85:34:ee:26:d9:55:5e:04:40:e0:
d2:f8:34:57:ea:ad:b3:56:b5:bf:e1:78:2b:80:6a:
f8:e6:5c:1c:44:12:00:ce:ec:38:6e:72:08:2f:19:
a7:a1:bd:62:6a:f9:5d:c3:78:3b:99:76:a2:cc:21:
c3:f0:94:ff:b6:03:da:7f:f0:a7:59:cb:3f:62:27:
3c:01:4a:d6:e9:05:83:bd:69:88:a6:92:6b:b6:d6:
76:74:5c:44:11:03:2d:c7:2c:6e:bf:7b:29:bb:df:
7b:49:28:34:e0:d1:bf:21:93:5b:25:35:a3:4c:31:
ae:06:ad:d1:98:d1:13:e2:71:22:11:30:5b:84:53:
02:72:dc:3e:2b:c2:3e:98:2f:72:20:9b:27:38:1c:
24:66:06:9d:12:85:fe:80:35:9a:a2:9e:97:bc:5d:
9f:64:f2:5e:b4:6d:e8:4b:76:d7:f4:4f:41:c3:0e:
12:0a:41:28:c5:6e:02:5a:52:86:5d:fc:1b:2c:6e:
18:54:02:15:61:20:f6:af:ba:e9:19:ae:f8:70:d9:
d9:f0:fd:1a:ec:9e:45:f7:be:09:f8:4c:20:5e:5a:
4d:13:05:d5:31:2d:2f:99:60:9c:c0:e3:1c:c0:8f:
ef:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:16:86:27:C9:6C:3B:8E:43:8D:73:01:AB:52:48:F8:B4:32:A2:81
X509v3 Authority Key Identifier:
keyid:24:76:21:58:AC:29:CB:44:F1:B8:0A:CB:04:FF:60:BF:3C:20:F9:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHYhWKwpy0TxuArLBP9gvzwg-W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/4ac9cd-a7a2-4a06-bd58-39240dcda9b3/1/dRaGJ8lsO45DjXMBq1JI-LQyooE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/4ac9cd-a7a2-4a06-bd58-39240dcda9b3/1/JHYhWKwpy0TxuArLBP9gvzwg-W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.105.207.0/24
Signature Algorithm: sha256WithRSAEncryption
81:7b:44:ca:1c:5c:c4:1b:0f:77:95:35:46:c0:35:f4:46:08:
40:36:6f:d1:1e:08:e5:c9:f4:de:2d:57:1b:4a:8f:a1:a9:23:
5d:31:1a:aa:e8:82:3e:cf:15:17:b5:93:e8:4e:0f:db:44:91:
d3:00:f6:0b:16:a6:d1:f2:53:0b:74:fd:b3:8a:1d:c9:ce:8b:
6b:a6:50:0f:aa:fd:d5:8a:37:46:e3:b7:8f:94:99:95:4c:5d:
f5:5e:fb:ba:a1:6f:f9:2e:62:6a:cd:fc:92:1d:a0:59:66:28:
50:8a:7d:fe:42:54:64:25:b8:51:b9:8d:2a:82:81:07:0d:3f:
6a:1a:35:09:bf:0e:71:04:72:0a:58:8b:34:39:02:c1:6d:14:
44:22:c0:fc:d4:14:fe:f5:f6:b5:d3:81:76:00:48:4f:52:15:
6d:24:62:b2:d4:79:ba:9f:e4:8f:49:62:82:c0:28:2a:0a:d4:
6c:fc:03:ae:4b:28:b5:55:5f:9d:60:c3:94:3f:d7:7e:62:8e:
8c:f4:dc:43:a4:d8:4b:82:57:a0:0a:5a:85:73:50:93:f7:f3:
08:4c:81:16:04:07:b6:b3:72:ca:8c:42:ca:cd:3f:c3:f5:9f:
61:08:5e:05:14:74:63:55:b8:e5:76:2d:59:81:d4:66:5e:b6:
76:0a:5f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:43:04 2025 by rpki-client