Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/kZHBZtXgY_k9RmUUY4eHrV0Uuqo.roa
File: kZHBZtXgY_k9RmUUY4eHrV0Uuqo.roa (raw, json)
Hash identifier: o7VbzUVMJY+efdTK1SVm5rmgoeWyXpTNlllvvEWKK9k=
Subject key identifier: 91:91:C1:66:D5:E0:63:F9:3D:46:65:14:63:87:87:AD:5D:14:BA:AA
Certificate issuer: /CN=26ad7d3560134e0a8ae46fc5b32c5acb61dde39c
Certificate serial: 0194221F903758C78AD3A3E00B0B8F13942E
Authority key identifier: 26:AD:7D:35:60:13:4E:0A:8A:E4:6F:C5:B3:2C:5A:CB:61:DD:E3:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jq19NWATTgqK5G_Fsyxay2Hd45w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/kZHBZtXgY_k9RmUUY4eHrV0Uuqo.roa
Signing time: Wed 01 Jan 2025 13:48:01 +0000
ROA not before: Wed 01 Jan 2025 13:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208324
IP address blocks: 91.205.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:90:37:58:c7:8a:d3:a3:e0:0b:0b:8f:13:94:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26ad7d3560134e0a8ae46fc5b32c5acb61dde39c
Validity
Not Before: Jan 1 13:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9191c166d5e063f93d466514638787ad5d14baaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:56:06:1a:d2:ec:f7:db:b8:42:79:92:c3:69:
59:ae:ec:5a:ea:f2:e9:94:21:02:b2:97:e2:95:6e:
7a:7c:3c:6f:70:64:92:b2:2e:fc:d7:a8:d8:92:36:
e2:ea:9e:47:e5:07:ae:d1:a5:45:6b:83:c8:48:a7:
01:c3:1e:c2:87:85:db:6f:7a:67:22:cb:35:e4:cd:
9e:f4:70:07:e2:75:5f:99:70:9e:09:c7:b5:2a:f3:
dd:0f:7b:aa:ef:14:73:5d:98:e9:7d:e9:bc:64:7f:
67:3f:c9:45:23:03:47:61:ac:8f:b3:50:e0:71:04:
e8:2e:61:c1:98:00:85:ff:12:a1:3f:5c:57:24:46:
0b:8c:2b:aa:f4:63:b5:89:a0:5d:8b:a9:15:a5:62:
6b:91:e0:4a:96:26:e1:0c:60:98:fc:27:fb:07:67:
6d:5f:68:c5:23:c7:fa:8d:9e:43:07:e2:f0:18:77:
35:77:b2:cb:cb:24:8e:03:d5:24:e2:96:bd:40:43:
f0:fb:d5:d0:e3:9a:05:e4:c5:0a:65:47:c6:16:93:
d4:c4:b2:9f:ac:de:0b:9b:ee:4c:df:9e:b2:07:11:
60:9b:92:d5:6f:21:76:6a:c7:9d:f0:96:59:ce:62:
84:f4:ef:15:29:9a:f1:69:db:b8:6d:99:07:75:38:
a8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:91:C1:66:D5:E0:63:F9:3D:46:65:14:63:87:87:AD:5D:14:BA:AA
X509v3 Authority Key Identifier:
keyid:26:AD:7D:35:60:13:4E:0A:8A:E4:6F:C5:B3:2C:5A:CB:61:DD:E3:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jq19NWATTgqK5G_Fsyxay2Hd45w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/kZHBZtXgY_k9RmUUY4eHrV0Uuqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/Jq19NWATTgqK5G_Fsyxay2Hd45w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.42.0/24
Signature Algorithm: sha256WithRSAEncryption
15:de:7d:9b:4e:6f:a7:f7:59:d7:20:ed:16:d9:ce:6f:dd:bf:
76:f3:66:40:88:e4:f9:39:3b:62:fc:47:f0:3c:bc:44:8d:f2:
01:14:f0:7d:e6:d9:96:c4:29:ec:c7:c3:8b:f2:97:4e:e6:bc:
2f:3f:c4:f2:9f:25:12:75:6c:cd:6f:9b:53:35:e5:3a:62:98:
76:59:90:e5:6d:9c:78:93:5b:23:99:b5:a4:ad:30:c4:52:57:
8b:7d:f4:55:ef:31:d1:e8:d3:37:17:53:80:37:46:84:c3:c1:
55:85:e7:41:ea:68:6d:1d:a9:33:79:4d:14:3d:f1:83:26:53:
69:bf:f0:6e:20:1c:74:84:ea:4a:2e:ad:93:71:95:b0:28:a4:
eb:1b:92:c9:d6:83:b8:b5:89:eb:fb:ef:7b:a7:d1:55:90:66:
ff:44:b9:ff:68:d3:d8:07:ec:75:cf:b3:0c:ea:39:5c:a6:a9:
f3:0a:b3:97:79:ac:bf:98:b2:07:be:51:b0:c8:0d:79:df:2e:
e2:1c:7b:4e:4a:38:7c:b7:fb:7c:99:da:ad:5e:bd:9c:c2:60:
bb:fb:ae:a8:78:e3:0d:32:73:d2:c1:2f:22:4a:ec:5a:ce:52:
12:94:0d:39:0e:d0:6d:66:4d:d0:55:73:3e:97:f3:7e:27:47:
6a:04:91:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:37:30 2025 by rpki-client