Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/IJUUiWzz-YboD3JHtMFHr7x5JUI.roa
File: IJUUiWzz-YboD3JHtMFHr7x5JUI.roa (raw, json)
Hash identifier: vjlto4vBufzhQql5cT4UWGYpiz+2K14mFYNQ/mafchI=
Subject key identifier: 20:95:14:89:6C:F3:F9:86:E8:0F:72:47:B4:C1:47:AF:BC:79:25:42
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 0189B7471C13C4943293A1C2A8A1882BA38E
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/IJUUiWzz-YboD3JHtMFHr7x5JUI.roa
Signing time: Wed 02 Aug 2023 17:23:57 +0000
ROA not before: Wed 02 Aug 2023 17:23:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.147.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b7:47:1c:13:c4:94:32:93:a1:c2:a8:a1:88:2b:a3:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Aug 2 17:23:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=209514896cf3f986e80f7247b4c147afbc792542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:de:a1:26:86:d2:0f:22:d9:25:85:1e:71:6b:
15:82:f3:17:97:c7:95:5f:34:4c:2d:fa:b7:f5:51:
f8:b5:7f:56:af:2c:75:b8:da:05:05:85:ed:28:c1:
39:f3:8b:49:ca:f9:46:1b:7b:6b:8f:97:18:ac:35:
da:e8:59:e2:63:7d:45:28:9a:cd:d9:bc:3a:f9:8c:
f2:08:c9:62:cf:a6:b3:e0:ba:cc:ce:ed:cc:38:8b:
46:ef:d4:67:ab:0d:f0:aa:59:f3:cf:66:e4:ef:1b:
2c:ec:5c:4c:39:0b:3a:a4:33:22:c5:bf:02:c3:81:
ad:ca:85:c8:70:31:a2:a4:dd:c1:89:e1:c3:d2:84:
f2:c1:9f:09:e9:c2:bb:be:d7:8e:90:a5:c0:fe:d0:
65:bc:f9:fb:6e:fa:0b:91:76:16:d7:f2:81:34:ea:
de:f8:13:b1:15:c2:cb:d7:d7:c9:c8:de:dc:3c:5f:
e9:39:72:26:32:1b:ba:a3:e0:1f:e6:13:fe:db:16:
06:ef:1d:0c:e4:07:a4:45:d7:13:37:4b:ac:26:92:
c7:3d:04:93:fb:61:2d:19:6a:21:8f:18:4f:d3:aa:
74:51:d0:00:74:23:3e:3a:93:f8:3e:be:b8:4d:0d:
ea:0e:de:fa:d5:38:e5:94:7f:a2:15:00:f7:6d:47:
0f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:95:14:89:6C:F3:F9:86:E8:0F:72:47:B4:C1:47:AF:BC:79:25:42
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/IJUUiWzz-YboD3JHtMFHr7x5JUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.118.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:aa:79:31:71:f3:0e:a0:54:ba:ec:93:68:c5:1d:84:ac:e7:
26:6f:74:26:79:19:a3:55:93:3a:eb:0c:5a:cd:3d:83:80:e1:
00:29:8c:6d:a5:07:1b:c9:1b:73:c8:d2:8f:96:44:2c:d9:1c:
05:91:ac:19:5c:81:9c:d1:d8:07:0d:85:12:77:17:e2:cc:1f:
8f:01:61:9d:e0:b7:18:f1:a2:18:f7:89:ec:0b:53:51:f0:e3:
de:93:38:a0:9b:15:49:c3:b1:41:d2:45:c9:ed:b7:5d:8f:30:
c0:8f:f5:56:91:e6:d9:d7:5f:77:e7:3e:24:6b:89:88:bf:8d:
ff:f0:e6:bb:66:d6:64:9a:ee:3d:44:6b:67:a3:85:52:cb:ea:
87:fe:af:a6:5f:5d:24:61:cf:29:20:1d:10:0a:21:99:14:26:
8b:05:17:49:be:6d:66:40:4c:c4:87:ac:b7:0e:85:02:f6:1a:
87:ae:5e:4c:0c:93:f6:de:77:60:10:f5:44:59:56:a2:57:9d:
e8:86:60:2b:4b:08:70:ba:af:96:82:5f:c6:30:ce:10:0e:2e:
25:66:24:d0:f2:23:69:1c:67:76:cf:d1:1b:17:b5:8c:c7:e6:
eb:c5:b9:fa:aa:2f:3f:6a:57:b1:d5:89:d4:04:89:b3:a1:c3:
51:49:1e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:21 2025 by rpki-client