Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WrCO38D-HCO_zI4UOvUPeC1VMVg.roa
File: WrCO38D-HCO_zI4UOvUPeC1VMVg.roa (raw, json)
Hash identifier: 26u9i20DIBjz8Gf164OYNhWOexNFkpk3V+iDG+A3/bo=
Subject key identifier: 5A:B0:8E:DF:C0:FE:1C:23:BF:CC:8E:14:3A:F5:0F:78:2D:55:31:58
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 01825E3EFF4D7F36579CA647DBC4918380D9
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WrCO38D-HCO_zI4UOvUPeC1VMVg.roa
Signing time: Tue 02 Aug 2022 11:09:23 +0000
ROA not before: Tue 02 Aug 2022 11:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 91.147.124.0/22 maxlen: 24
91.147.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5e:3e:ff:4d:7f:36:57:9c:a6:47:db:c4:91:83:80:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Aug 2 11:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ab08edfc0fe1c23bfcc8e143af50f782d553158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:20:4a:bc:9a:aa:18:3c:60:68:b8:da:84:fb:
c6:9f:96:05:64:bc:b8:06:a8:45:35:a0:36:a6:bc:
3e:27:76:0c:0b:ac:30:b0:ae:a6:ad:1a:e9:f5:eb:
ba:21:7c:fb:5b:95:4e:dc:ee:92:a5:b6:60:e9:65:
81:61:1e:42:0b:c5:16:43:6e:85:c8:e7:aa:59:6e:
ab:e5:07:44:e1:9e:29:f2:85:d0:37:72:dd:ee:9c:
45:b6:79:f2:79:d1:9b:ce:92:cb:a7:89:6a:85:b5:
a5:07:d5:09:fb:97:c0:a8:00:92:7e:85:dd:f6:43:
37:6b:c7:8b:ba:60:3a:a1:2f:67:26:a3:02:6f:96:
20:ee:23:d8:62:0d:a0:9b:00:1d:6c:32:3d:02:eb:
36:49:fd:11:17:ab:af:60:cc:f8:9b:88:3f:66:a1:
08:d4:27:68:0d:9a:2e:7f:c2:4a:c6:cd:f8:b0:89:
fa:b7:5d:1f:37:cc:c4:da:41:75:4e:3f:f9:a7:b8:
d4:19:16:f9:5a:7f:41:87:d9:29:67:82:c4:7e:2f:
b4:60:06:c4:9f:cf:03:cf:5b:af:6f:72:47:06:17:
d2:8e:33:6a:91:f3:d5:6f:3d:2f:3a:df:e6:82:31:
67:04:b6:4b:b0:d7:a2:a8:1d:74:34:43:9c:c2:5a:
d1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B0:8E:DF:C0:FE:1C:23:BF:CC:8E:14:3A:F5:0F:78:2D:55:31:58
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WrCO38D-HCO_zI4UOvUPeC1VMVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.120.0/21
Signature Algorithm: sha256WithRSAEncryption
da:68:15:a2:14:55:71:c1:35:64:90:a7:bb:a9:75:e8:9e:74:
1b:d0:a5:a6:15:63:28:5e:4b:ad:26:a2:0a:7a:b3:aa:b6:e1:
ab:df:0e:aa:53:3b:1b:b7:58:dd:b4:f4:b7:b8:2f:fc:49:7e:
14:63:ef:13:7d:40:bc:a8:62:39:ca:0f:7f:b8:d8:6a:bb:78:
89:d4:be:5a:5f:08:1a:25:80:c6:7d:f6:4f:e0:2b:a6:3f:ae:
64:72:ac:a8:fe:1a:9e:3d:d8:44:89:fe:78:26:07:5e:3b:4f:
9f:8f:76:9c:f3:5d:bc:d7:43:ed:b9:8e:2f:69:47:36:75:2f:
90:ef:0d:5e:e6:92:32:bd:72:05:1a:72:80:44:28:31:96:68:
72:f0:81:35:5c:4b:9a:fe:af:bb:df:33:48:19:c4:4b:96:08:
a5:b7:cc:a5:0c:aa:bc:41:e1:cd:63:d9:7e:47:4c:b5:3f:62:
2f:21:99:9f:cd:ae:2d:06:55:d4:53:d9:f0:c4:87:d9:2b:ac:
92:06:87:d3:71:90:2f:d4:1c:44:f1:69:4d:05:8b:03:9c:46:
38:80:db:2c:24:89:e0:0d:dd:76:66:4f:1b:97:83:ca:9f:00:
06:3d:1b:28:3f:5a:8b:b9:09:f6:b4:4d:3a:5c:5c:7b:97:18:
14:02:8e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:33 2025 by rpki-client