Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/a507cd-a377-4821-b9d2-24a3004aca54/1/ljJZMiaT6FdB6Pmjd5Ls1E4kfFY.roa
File: ljJZMiaT6FdB6Pmjd5Ls1E4kfFY.roa (raw, json)
Hash identifier: PFVU1DM4Ppsf4/y2stiD0SyuW0PsYpr/LwrfVqXNIYE=
Subject key identifier: 96:32:59:32:26:93:E8:57:41:E8:F9:A3:77:92:EC:D4:4E:24:7C:56
Certificate issuer: /CN=0b0d3768a8efc3b7068801cbbee9eb56fe6d001c
Certificate serial: 0A9D3127
Authority key identifier: 0B:0D:37:68:A8:EF:C3:B7:06:88:01:CB:BE:E9:EB:56:FE:6D:00:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cw03aKjvw7cGiAHLvunrVv5tABw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/a507cd-a377-4821-b9d2-24a3004aca54/1/ljJZMiaT6FdB6Pmjd5Ls1E4kfFY.roa
Signing time: Sat 01 Jan 2022 08:56:32 +0000
ROA not before: Sat 01 Jan 2022 08:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28788
IP address blocks: 91.206.246.0/23 maxlen: 23
194.88.236.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178073895 (0xa9d3127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b0d3768a8efc3b7068801cbbee9eb56fe6d001c
Validity
Not Before: Jan 1 08:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=963259322693e85741e8f9a37792ecd44e247c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5c:64:60:06:7b:24:80:37:34:f8:7b:e4:01:
0e:56:6b:ae:8f:bf:36:e1:cb:17:3f:7f:a3:59:29:
9d:19:62:11:07:f4:80:dc:79:42:82:10:3b:e4:cc:
89:04:ae:76:dc:24:9d:7e:6b:bb:2a:79:93:2b:a3:
8f:46:75:71:f6:21:f5:a9:0f:a4:fb:08:65:ba:d5:
c3:61:e1:f2:3c:75:b7:be:0c:4a:09:c4:4b:91:5c:
11:68:d6:5e:c3:bd:8a:a8:31:e2:ea:f2:1f:94:68:
15:24:1b:5b:b9:27:39:75:c7:24:ab:57:b1:f9:b5:
31:81:90:eb:bb:82:82:aa:1c:66:16:f0:7d:21:25:
42:03:12:16:06:11:93:5b:e1:50:e3:3c:d5:79:e2:
70:9b:c8:2b:26:2e:72:0c:2a:b5:62:77:a0:8f:8c:
87:69:c5:33:8e:62:27:68:49:d2:f2:81:40:76:cc:
8e:7d:41:bc:aa:3b:d3:13:42:93:14:7e:a8:d8:2d:
7e:32:24:3a:c1:e9:d5:dc:a0:51:87:0e:e4:fd:ea:
43:01:c2:b2:d9:b6:88:f1:12:38:f4:5c:1d:0b:54:
6a:e7:26:bb:8b:09:38:35:d6:f5:a7:41:3e:1d:e9:
0d:cf:c9:87:7e:b8:59:b1:09:79:2f:46:2d:f3:72:
23:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:32:59:32:26:93:E8:57:41:E8:F9:A3:77:92:EC:D4:4E:24:7C:56
X509v3 Authority Key Identifier:
keyid:0B:0D:37:68:A8:EF:C3:B7:06:88:01:CB:BE:E9:EB:56:FE:6D:00:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cw03aKjvw7cGiAHLvunrVv5tABw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/a507cd-a377-4821-b9d2-24a3004aca54/1/ljJZMiaT6FdB6Pmjd5Ls1E4kfFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/a507cd-a377-4821-b9d2-24a3004aca54/1/Cw03aKjvw7cGiAHLvunrVv5tABw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.246.0/23
194.88.236.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:64:30:36:00:15:b1:a0:ae:bc:84:91:4e:7f:5b:31:0e:ee:
e6:f1:80:33:84:a1:3b:c8:f7:44:36:fd:ff:18:b5:ef:ad:c4:
90:1f:36:f8:ba:68:d8:07:e9:78:ad:3b:8e:4e:40:52:81:36:
01:c5:89:8e:a2:26:52:a6:a7:90:0f:02:af:a4:ac:67:c2:43:
f8:e3:75:55:45:bd:94:26:d9:61:53:0a:7e:bc:46:5e:54:2d:
2e:e4:ee:66:65:f4:40:6f:29:02:1a:32:c5:c8:9c:1a:95:b7:
4a:cf:30:a6:82:53:f5:68:d9:9d:e3:0f:0a:6c:9c:b8:8d:f5:
d1:1c:cb:2b:01:1a:f3:a3:22:7d:20:a1:48:12:09:db:3c:71:
bf:f4:ad:30:6d:f8:b1:4f:ae:c7:19:94:26:ce:ae:f7:f4:8f:
d6:4c:8b:d4:d4:63:e9:6e:7e:40:7f:1d:97:46:c2:22:66:db:
93:6a:c6:97:ca:50:4c:c5:2d:28:c8:5d:45:d3:8c:93:69:fc:
b1:e6:90:6b:17:ce:23:67:69:2b:8d:44:53:b6:ab:04:05:2a:
db:da:3c:91:c1:2d:e8:11:a5:ba:c2:98:81:b4:ce:b4:64:2c:
d8:33:47:97:68:1b:e4:f3:b2:b1:9a:46:ee:b7:2c:7e:1c:37:
c6:2b:10:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 07:02:11 2025 by rpki-client