Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa
File: Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa (raw, json)
Hash identifier: oXnG95uJE4GWCusPMitN/8TOoOTM8j2qb4pX4QMQ5u0=
Subject key identifier: 05:BC:F4:6C:14:1B:EC:EB:C1:51:DC:DD:51:4D:9F:47:46:93:1D:6D
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 01942826064C828F5C3983C284CC63C13473
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa
Signing time: Thu 02 Jan 2025 17:52:48 +0000
ROA not before: Thu 02 Jan 2025 17:52:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43180
IP address blocks: 91.230.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:06:4c:82:8f:5c:39:83:c2:84:cc:63:c1:34:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Jan 2 17:52:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=05bcf46c141becebc151dcdd514d9f4746931d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:97:b8:ca:01:8d:50:7b:32:09:9e:a0:0c:b9:
b2:2e:41:32:0e:6f:df:31:e1:d7:41:13:b5:37:05:
37:76:3c:ea:53:2a:a0:bc:c6:5a:fa:a4:eb:e9:33:
7e:25:94:33:36:a0:79:22:3c:40:10:46:18:cc:16:
94:21:79:86:63:d5:19:26:bc:d9:b6:54:24:ef:f8:
45:f8:70:18:cb:4b:37:83:2c:65:a4:97:12:42:37:
2f:a8:82:fd:a8:e6:6c:2a:25:f7:b2:f0:e9:f2:46:
ea:97:4c:2a:6f:6e:5c:4c:89:0d:45:46:57:de:47:
3e:8c:01:f3:84:18:8c:35:42:e0:2b:96:e6:59:24:
92:ca:e7:89:a8:53:90:df:40:c9:79:8d:50:6f:90:
e3:c2:18:30:24:59:84:4a:cb:74:ce:52:78:95:84:
78:0d:02:53:f4:f9:94:d7:73:6a:d1:8c:ec:c7:ef:
41:b8:96:12:12:b8:82:cb:d6:0e:30:8a:0a:2f:11:
aa:7e:cc:b8:bd:01:e1:2f:ec:f4:8a:61:33:a9:c3:
ae:c9:90:73:4c:9a:7e:dd:2a:f5:fc:d0:e7:07:b3:
2f:16:66:6c:ba:43:4b:2f:e2:b9:0a:49:59:fb:f1:
cc:2e:04:b9:41:5e:97:8a:d2:f3:3f:66:4a:aa:43:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BC:F4:6C:14:1B:EC:EB:C1:51:DC:DD:51:4D:9F:47:46:93:1D:6D
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.121.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:0c:57:c7:16:c8:eb:f5:6d:92:36:56:d9:76:6f:35:7d:a3:
7b:2c:4b:ab:d5:91:22:94:43:d0:e5:67:ea:83:ed:64:61:fe:
75:b5:f0:54:77:7a:12:b1:59:b4:a4:a3:32:40:1e:f8:ac:af:
74:3f:26:05:b2:0e:56:27:8f:80:fd:df:d4:15:b9:fd:36:53:
29:fe:1a:a4:26:79:07:9e:7c:6f:6d:f0:f6:26:02:04:2f:95:
5d:58:fe:8f:6f:9b:67:e1:b1:cf:63:fa:5d:15:e5:df:4f:df:
e7:d4:9b:c4:99:89:ca:b2:af:74:c6:75:9c:4e:5c:ca:02:72:
28:18:e1:ff:1c:a6:3d:27:7b:ef:f8:91:9a:32:a5:6e:26:f0:
0b:0f:8d:59:e9:67:3e:e3:fe:10:f0:ab:fc:fe:e0:b8:2a:c7:
54:fa:09:f2:6a:50:dd:23:d2:26:a1:9c:e6:a6:93:09:4c:a2:
e2:41:b6:81:d1:17:2e:13:d0:8b:a1:17:5c:41:12:c1:7d:b8:
77:a8:81:db:fd:1c:43:84:b0:d5:f3:72:09:f7:23:26:dc:fa:
11:a8:ce:5b:08:c5:59:e6:e9:e1:f1:b5:00:50:23:ae:04:5f:
5f:56:80:18:c2:86:50:11:c5:f4:e1:00:cc:2b:22:04:62:a9:
ae:cf:ad:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:35 2025 by rpki-client