Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d8c6f2-4191-46e6-8db6-b6ea82f19220/1/CJLUw4mYIg1UnnSDFK1Ml0o--zU.roa
File: CJLUw4mYIg1UnnSDFK1Ml0o--zU.roa (raw, json)
Hash identifier: Tsn7ljuanQRqC13NxQKS7gSB56PsLYk7GAqdYRh4Uz0=
Subject key identifier: 08:92:D4:C3:89:98:22:0D:54:9E:74:83:14:AD:4C:97:4A:3E:FB:35
Certificate issuer: /CN=2919461844549824500b7cd1c451d824ba6e5677
Certificate serial: 01941F8C19A3E775DEE1DDCC2948EFA1C19E
Authority key identifier: 29:19:46:18:44:54:98:24:50:0B:7C:D1:C4:51:D8:24:BA:6E:56:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRlGGERUmCRQC3zRxFHYJLpuVnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d8c6f2-4191-46e6-8db6-b6ea82f19220/1/CJLUw4mYIg1UnnSDFK1Ml0o--zU.roa
Signing time: Wed 01 Jan 2025 01:47:42 +0000
ROA not before: Wed 01 Jan 2025 01:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6876
IP address blocks: 91.194.78.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:19:a3:e7:75:de:e1:dd:cc:29:48:ef:a1:c1:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2919461844549824500b7cd1c451d824ba6e5677
Validity
Not Before: Jan 1 01:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0892d4c38998220d549e748314ad4c974a3efb35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:51:e3:56:f3:58:8c:72:f2:c9:0a:be:55:a1:
3d:73:f0:30:30:c6:36:a9:ef:c2:15:a1:ea:4d:77:
7a:d5:4e:ff:77:14:36:98:ed:72:79:06:cd:6f:63:
28:5c:9a:e8:e4:a3:ce:25:98:fe:12:ee:42:5e:8d:
45:9f:0e:c1:25:a2:78:ce:c0:3a:69:7c:36:10:af:
3d:c7:52:64:e5:2a:89:9b:7b:25:42:c6:0e:0f:4d:
d4:53:d8:d3:01:8e:bf:bd:53:90:a5:1c:93:c9:7c:
58:7e:3d:a2:94:a2:5f:d8:b9:81:dc:d2:71:ff:42:
32:d9:2c:7d:65:53:ed:fa:c9:60:3c:49:bc:bc:fd:
af:9d:57:a4:b0:62:66:8d:39:65:af:5a:a3:87:fb:
32:19:3d:65:f2:9e:77:35:b8:b0:d8:8a:29:55:1a:
3b:3d:29:4c:1e:38:61:01:e1:f8:9c:5d:95:30:e7:
d6:17:ec:dc:ba:7a:eb:9f:35:c9:68:25:bb:7d:e7:
2c:99:31:f0:08:2d:5d:34:e8:ea:5d:17:a2:e4:89:
8a:bb:00:97:fb:3a:70:5c:ac:7f:d8:4f:0c:7c:7b:
65:63:06:30:7a:e4:ee:9b:d0:0b:8e:de:0a:e8:e2:
7b:8e:c3:ba:f2:2f:1a:34:39:ee:4e:b7:64:b7:12:
c2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:92:D4:C3:89:98:22:0D:54:9E:74:83:14:AD:4C:97:4A:3E:FB:35
X509v3 Authority Key Identifier:
keyid:29:19:46:18:44:54:98:24:50:0B:7C:D1:C4:51:D8:24:BA:6E:56:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRlGGERUmCRQC3zRxFHYJLpuVnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d8c6f2-4191-46e6-8db6-b6ea82f19220/1/CJLUw4mYIg1UnnSDFK1Ml0o--zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d8c6f2-4191-46e6-8db6-b6ea82f19220/1/KRlGGERUmCRQC3zRxFHYJLpuVnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.78.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:95:6d:55:b2:b3:ec:89:7e:5b:c8:c6:37:47:72:a4:f0:c4:
0f:7f:52:75:51:fc:dd:b6:30:a4:e0:28:a1:b3:78:7b:76:89:
c2:90:8d:2d:69:ef:2a:3d:88:7c:2c:2e:2f:51:65:a3:76:41:
93:fd:8a:6f:be:48:c9:40:95:9d:6d:3c:5c:93:22:a4:02:05:
0c:a9:18:66:12:2d:57:29:62:ab:91:3b:92:3e:72:10:9b:30:
f1:26:c9:47:e2:87:d1:31:ac:38:8d:4b:47:de:70:31:cc:1c:
85:f3:b2:95:2d:4e:cd:e2:ba:20:6b:e8:b3:c5:b3:80:e5:8e:
ad:40:f0:a0:99:c8:89:fc:af:ba:ae:be:95:9b:3d:d5:9b:72:
5c:45:20:72:0a:da:a8:45:e9:91:21:bc:57:6e:59:2d:45:7c:
22:64:5f:9b:68:c8:88:50:11:f1:41:9f:8f:d4:a8:2f:65:2d:
9f:9d:95:b9:6b:07:bc:21:60:8b:bb:07:06:0b:b5:4b:1a:fb:
2c:18:fb:30:46:48:e0:ce:cd:82:fc:b0:f1:01:c6:a5:91:45:
f0:fe:51:c9:94:13:bb:8c:73:0a:4b:b9:8f:df:a4:42:40:4b:
31:3b:8f:21:ef:8e:16:52:ff:44:5c:28:53:2d:9a:a4:1b:d4:
45:6f:32:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:15:15 2025 by rpki-client