Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/768e6f-9444-4633-825d-6010261eee91/1/y-skr6zm8JkOsENGM6EX5ELvuNY.roa
File: y-skr6zm8JkOsENGM6EX5ELvuNY.roa (raw, json)
Hash identifier: RolvU91kdDGXyXQTiWlH29LqDy74GWMgN737rcCKBZI=
Subject key identifier: CB:EB:24:AF:AC:E6:F0:99:0E:B0:43:46:33:A1:17:E4:42:EF:B8:D6
Certificate issuer: /CN=ba71f98150538eee69deed2d532312aa29d7c721
Certificate serial: AC2D38
Authority key identifier: BA:71:F9:81:50:53:8E:EE:69:DE:ED:2D:53:23:12:AA:29:D7:C7:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unH5gVBTju5p3u0tUyMSqinXxyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/768e6f-9444-4633-825d-6010261eee91/1/y-skr6zm8JkOsENGM6EX5ELvuNY.roa
Signing time: Sat 01 Jan 2022 02:51:00 +0000
ROA not before: Sat 01 Jan 2022 02:51:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 91.246.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11283768 (0xac2d38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba71f98150538eee69deed2d532312aa29d7c721
Validity
Not Before: Jan 1 02:51:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbeb24aface6f0990eb0434633a117e442efb8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:81:52:48:d6:ce:83:27:65:43:91:73:cc:
f5:b3:5a:1d:a1:30:99:0b:eb:63:13:26:d9:a4:b7:
ff:de:cc:8a:56:1d:37:1e:6a:45:0c:75:25:cc:69:
63:2c:3f:56:43:a8:5d:0e:c2:d6:e9:90:4c:eb:67:
cc:af:67:37:05:dd:eb:5f:15:ba:f9:84:c5:ab:02:
e9:59:92:30:ee:7e:40:ea:ee:c8:4d:27:3b:57:f5:
17:23:2d:93:ab:d7:3d:12:dc:c2:e4:ad:81:03:8a:
8c:a4:26:40:27:13:3c:81:17:c2:ed:d5:ef:ab:46:
08:f9:88:8b:e3:09:6b:fd:8d:c3:2e:8f:81:43:95:
c6:9c:b5:08:85:32:ea:0a:5f:15:bf:f5:d5:b3:73:
0d:00:47:96:ce:17:62:fe:28:14:5c:61:08:54:9c:
a3:f6:17:42:51:85:5b:b5:09:17:5e:48:5e:15:e6:
7d:74:aa:74:0b:3a:d6:c7:20:7a:72:db:e8:8a:97:
9d:3d:ba:7c:0b:c3:91:32:3b:e9:00:cf:9d:0f:58:
65:54:9f:4f:98:3a:82:59:9c:ea:0f:c9:11:6e:cd:
b0:48:b2:9e:8c:df:0c:fe:e8:9b:b1:35:a2:a1:f4:
a0:20:ac:b6:04:f5:d9:f7:45:94:1a:56:d5:58:90:
44:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EB:24:AF:AC:E6:F0:99:0E:B0:43:46:33:A1:17:E4:42:EF:B8:D6
X509v3 Authority Key Identifier:
keyid:BA:71:F9:81:50:53:8E:EE:69:DE:ED:2D:53:23:12:AA:29:D7:C7:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unH5gVBTju5p3u0tUyMSqinXxyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/768e6f-9444-4633-825d-6010261eee91/1/y-skr6zm8JkOsENGM6EX5ELvuNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/768e6f-9444-4633-825d-6010261eee91/1/unH5gVBTju5p3u0tUyMSqinXxyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.53.0/24
Signature Algorithm: sha256WithRSAEncryption
67:32:aa:74:2f:de:62:05:52:91:45:0c:d3:7d:8a:57:e0:64:
bf:5f:de:6a:b0:ce:68:11:04:1f:a4:80:e2:87:cd:5b:5f:6d:
d4:8c:e4:1b:e6:7f:c3:cd:bf:55:0e:8b:99:03:a4:35:d7:74:
97:b4:64:9a:08:31:be:47:d5:5f:00:a7:25:49:07:88:4b:31:
4b:03:7b:5c:49:33:57:44:8a:5f:e7:7b:76:59:3b:c3:ce:76:
81:79:37:8d:1f:87:b9:a5:df:1e:d7:c8:73:74:f0:00:63:c4:
75:b5:fa:4a:e1:0d:74:25:01:f4:8f:19:a8:cd:41:61:7c:3d:
c6:6d:14:23:99:c7:b4:c7:51:9d:5d:eb:8b:22:7a:4f:e0:f7:
02:30:e3:aa:d3:2f:97:3c:b0:7e:fe:fe:ba:a9:70:57:97:24:
d6:4e:c0:0a:84:59:1e:6e:40:66:6b:1a:90:f0:29:30:50:c9:
aa:7c:fe:cf:54:5d:9c:25:c7:3f:c0:02:be:2d:84:f9:58:9f:
db:4c:d8:52:9d:98:90:83:38:23:e9:3c:86:0a:cd:de:a6:75:
90:f9:8f:8e:83:9e:88:a2:fb:5f:0d:75:98:ff:5d:20:07:3a:
52:f5:09:b9:0b:27:33:e1:b1:c8:60:62:13:a4:41:a3:97:58:
d2:da:f2:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 00:32:54 2025 by rpki-client