Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/05o_JIFR9yoPNa7vhXwuFHyYn-E.roa
File: 05o_JIFR9yoPNa7vhXwuFHyYn-E.roa (raw, json)
Hash identifier: Xjc+SipXyfD5MdgwrPIcQTTQ/64STOrCMRbwXXpuDJI=
Subject key identifier: D3:9A:3F:24:81:51:F7:2A:0F:35:AE:EF:85:7C:2E:14:7C:98:9F:E1
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 018CC7266496FD82BECA3F0D34C25E319E76
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/05o_JIFR9yoPNa7vhXwuFHyYn-E.roa
Signing time: Mon 01 Jan 2024 22:30:31 +0000
ROA not before: Mon 01 Jan 2024 22:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57899
IP address blocks: 91.236.134.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:64:96:fd:82:be:ca:3f:0d:34:c2:5e:31:9e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jan 1 22:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d39a3f248151f72a0f35aeef857c2e147c989fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b7:2f:09:ce:1e:c6:87:bc:ce:77:a0:7c:4a:
79:6d:e0:fb:1b:d7:b0:de:f9:f0:75:a0:8d:3a:99:
92:6d:2d:18:1a:dc:56:22:6d:c1:1b:aa:3a:69:98:
46:4e:2f:eb:4f:fb:bb:75:fd:99:6c:64:3d:49:d4:
8d:f3:3e:de:ba:3f:62:9d:76:31:88:84:a7:05:c1:
75:ac:56:1a:0c:0e:55:b0:d2:77:0e:93:41:b8:ea:
bb:48:5d:55:4b:df:b6:42:d1:15:ad:ba:5d:c7:07:
f3:81:b8:c3:6f:1a:02:6d:3e:42:0a:e4:d4:28:fb:
be:b7:5b:f8:98:a9:ea:4f:ed:7b:fb:b9:f0:73:51:
db:05:63:d3:16:f4:8e:87:71:66:0d:0d:9a:e5:12:
5e:3d:e2:10:3e:8b:2d:13:68:5a:f8:67:f6:5a:dc:
7c:7c:e8:5f:a9:b5:43:f1:90:d2:dd:78:c4:de:9c:
6e:95:d5:f7:d5:90:b4:89:b7:dd:c4:bb:fe:5f:37:
d7:3a:5f:84:f2:62:a6:83:f2:ef:09:04:09:db:64:
bc:c7:81:fc:eb:31:86:ae:06:68:c6:f4:75:0e:4b:
a1:a1:ac:51:e2:ca:7b:8a:55:9d:5a:0b:4a:d7:db:
fd:99:47:59:a9:bc:28:dc:2b:dc:fb:40:aa:f1:5e:
aa:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9A:3F:24:81:51:F7:2A:0F:35:AE:EF:85:7C:2E:14:7C:98:9F:E1
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/05o_JIFR9yoPNa7vhXwuFHyYn-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.134.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:b8:58:82:03:83:fa:23:87:b3:77:92:92:42:31:cc:8e:28:
20:b6:3c:67:46:95:04:bf:90:a4:e0:f6:ae:75:18:15:ee:9b:
c6:47:57:00:f9:68:37:ef:21:57:c6:b2:74:c4:98:3b:b5:1b:
5e:8d:5f:88:0e:61:95:46:50:b5:56:fc:bd:2a:8c:83:e7:1f:
4a:42:2a:89:ee:f8:d6:8d:79:67:91:f5:1f:ff:7d:62:d5:80:
2c:98:05:8b:3f:d6:af:e0:1a:40:16:5d:db:43:8a:44:63:52:
1d:e0:2f:78:e9:d2:f9:2b:f2:2f:01:81:70:6e:1a:75:93:2a:
c1:e3:7a:f3:ca:2a:7d:42:dd:62:01:2a:3e:81:b1:cc:99:0b:
d6:03:87:02:51:03:cc:75:6b:a6:60:15:77:6b:82:40:e1:e8:
4c:c4:ae:86:29:c0:6e:a2:83:02:e6:c4:f6:99:1e:3d:83:56:
7b:63:3c:fe:38:b1:71:3e:ea:0b:dd:72:e0:bb:06:75:39:b6:
8e:e9:3d:15:05:73:f2:69:1b:29:ba:f8:a9:fb:1f:d9:ba:f2:
9d:2d:40:47:b0:80:7f:67:e9:f6:ce:0c:f8:52:96:10:25:3d:
05:4f:8c:3d:3e:51:db:34:21:74:02:48:45:25:48:e5:28:ba:
6e:0e:07:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:55:31 2025 by rpki-client