Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/mOMofnwSDO1E_H1bLJd1El5aHMU.roa
File: mOMofnwSDO1E_H1bLJd1El5aHMU.roa (raw, json)
Hash identifier: sehcH5h49oZDTQIRRZYvpCR3qhsCb+BcFwEIEdp5jcU=
Subject key identifier: 98:E3:28:7E:7C:12:0C:ED:44:FC:7D:5B:2C:97:75:12:5E:5A:1C:C5
Certificate issuer: /CN=1b12120c351c14eec22109f603249fcdac1d3321
Certificate serial: 0195A3CBAFAD3F8BE0578CF4227B8CC22A70
Authority key identifier: 1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/mOMofnwSDO1E_H1bLJd1El5aHMU.roa
Signing time: Mon 17 Mar 2025 11:09:49 +0000
ROA not before: Mon 17 Mar 2025 11:09:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13335
IP address blocks: 91.206.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a3:cb:af:ad:3f:8b:e0:57:8c:f4:22:7b:8c:c2:2a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b12120c351c14eec22109f603249fcdac1d3321
Validity
Not Before: Mar 17 11:09:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98e3287e7c120ced44fc7d5b2c9775125e5a1cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:24:22:73:5e:ee:30:c9:c7:09:f5:62:bc:4a:
51:e1:bb:9e:19:9a:8a:ac:33:bf:00:e4:69:a4:2b:
2d:9f:e1:bf:d6:68:c9:82:76:74:17:30:f7:df:fe:
49:05:76:27:f4:11:8d:1a:5a:52:c5:ff:31:b6:4c:
c8:99:37:61:89:50:53:73:a1:7e:e3:cd:ad:ba:61:
86:31:89:a2:d7:62:ed:cc:4f:1f:74:9a:d5:fc:56:
46:92:04:0c:56:df:9d:13:59:d3:46:eb:12:53:11:
93:07:b7:fe:b8:9e:68:05:6b:e3:bd:d6:23:28:bd:
4b:07:8a:77:26:ac:64:16:e6:f0:93:b1:7d:3a:49:
e6:f7:62:cf:7d:2e:da:93:7c:ff:71:9f:00:ce:85:
55:04:80:20:c1:37:af:f5:4d:66:14:19:67:48:49:
25:f2:6e:88:e4:52:12:70:d1:dc:1d:ee:b4:b1:76:
ad:fc:eb:7b:45:36:00:b4:91:dc:fc:26:8b:0d:36:
84:61:f6:c8:2e:5e:0a:d4:38:ef:93:f5:57:05:e4:
d7:2e:5f:da:79:84:aa:8a:0e:ba:93:e6:9b:38:01:
a7:fd:27:81:c2:31:ee:1e:2c:51:e2:b6:f0:8d:2d:
9a:01:82:6f:03:b8:c7:8e:81:1f:06:21:a8:8b:96:
a4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E3:28:7E:7C:12:0C:ED:44:FC:7D:5B:2C:97:75:12:5E:5A:1C:C5
X509v3 Authority Key Identifier:
keyid:1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/mOMofnwSDO1E_H1bLJd1El5aHMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.71.0/24
Signature Algorithm: sha256WithRSAEncryption
75:76:d5:0a:19:04:ba:52:8c:ac:ef:07:85:62:7c:fc:33:10:
37:a5:86:fd:52:d1:2d:f0:f0:72:a1:aa:bc:2c:42:4f:9d:74:
b1:ac:85:8b:2d:ee:ad:76:a5:0a:2c:ef:18:da:1f:65:9a:cb:
59:88:db:74:14:c1:bf:4b:2c:f1:35:4f:82:49:1a:88:e2:ff:
aa:14:a8:18:80:71:1c:3f:4d:a2:57:83:21:50:9e:65:5b:9e:
b9:77:a2:5d:90:7d:51:93:84:b4:9f:21:86:ca:b9:ed:d5:31:
0b:4b:07:42:2b:c8:1c:83:90:da:64:8f:ae:c2:76:4e:2a:07:
62:e0:29:3b:96:ed:1f:c9:78:6e:07:c8:27:82:74:b8:2c:85:
f1:7c:24:13:d3:07:8e:5c:9d:8a:f8:32:a0:f7:84:53:2a:31:
b5:84:bc:7f:d5:5a:29:57:0e:e5:74:51:2f:cf:77:75:71:8d:
82:c9:c3:cc:f1:99:e9:51:16:43:9d:90:1c:3f:66:86:0e:a7:
61:51:63:9a:86:4e:fd:b2:12:32:c7:52:b9:0d:77:16:57:5a:
17:b5:47:b8:45:c4:f6:e5:d7:b8:ff:99:a7:93:58:5b:d2:08:
bf:88:30:9b:d6:af:a8:28:e0:56:9a:7a:a1:49:50:35:23:9d:
be:a6:18:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:07:08 2025 by rpki-client