Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/QHOBTsNdio9cAsBlx96aUoH7jNY.roa
File: QHOBTsNdio9cAsBlx96aUoH7jNY.roa (raw, json)
Hash identifier: iFYL8GAcKfIHmL3xfQs1FUNCs9poykn7MMthJ4yK6ZM=
Subject key identifier: 40:73:81:4E:C3:5D:8A:8F:5C:02:C0:65:C7:DE:9A:52:81:FB:8C:D6
Certificate issuer: /CN=1637a493bc2025bf080c0b5e242e61e417670e86
Certificate serial: 018C81961726ABC74141CC26278DFC2BC3BF
Authority key identifier: 16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/QHOBTsNdio9cAsBlx96aUoH7jNY.roa
Signing time: Tue 19 Dec 2023 10:19:06 +0000
ROA not before: Tue 19 Dec 2023 10:19:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 91.213.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:81:96:17:26:ab:c7:41:41:cc:26:27:8d:fc:2b:c3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1637a493bc2025bf080c0b5e242e61e417670e86
Validity
Not Before: Dec 19 10:19:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4073814ec35d8a8f5c02c065c7de9a5281fb8cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e1:6d:c3:ea:4a:79:cf:0f:35:47:cb:f8:b2:
c7:7f:05:44:e7:f0:27:05:b8:70:1d:ac:d6:b3:77:
b4:1e:be:e9:36:95:c3:b7:91:39:75:72:fc:51:cc:
c3:d3:22:3c:e7:9d:e0:b8:b9:c6:43:75:65:9c:6b:
bc:11:7a:c7:80:c4:2a:ab:de:3d:c9:14:f4:f1:17:
ff:bb:f5:dc:6f:c7:2e:fd:34:b2:d5:39:a9:e1:a4:
a2:a7:3b:30:85:df:af:df:a9:b6:cd:2f:0b:28:e6:
02:e8:2d:74:d4:b3:74:e3:ae:cd:d1:b6:a5:4b:ef:
70:e6:ab:f3:8a:e6:da:12:52:26:41:59:13:90:7c:
5a:25:d3:15:9e:d7:aa:0b:42:cb:ec:72:25:7e:3e:
fa:8b:f7:7c:35:34:09:76:20:ce:53:e7:90:c9:bb:
91:c1:2d:8d:b3:c1:e9:65:14:50:36:ae:cf:ba:f3:
cc:63:b4:1f:42:58:0f:09:8a:3d:c5:48:f3:47:fe:
e5:24:8c:66:93:ff:5e:fb:4b:ff:2f:33:1f:42:40:
47:2c:98:87:83:1a:34:e0:63:eb:db:4c:c4:9a:12:
ae:bc:af:2b:bb:22:82:97:48:66:fa:88:ac:fa:b5:
2b:d4:a0:e0:34:d5:eb:13:ee:23:52:60:d3:8e:9a:
02:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:73:81:4E:C3:5D:8A:8F:5C:02:C0:65:C7:DE:9A:52:81:FB:8C:D6
X509v3 Authority Key Identifier:
keyid:16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/QHOBTsNdio9cAsBlx96aUoH7jNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/Fjekk7wgJb8IDAteJC5h5BdnDoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.117.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:53:60:8a:58:0a:46:b5:fc:69:3e:99:53:cc:b5:90:92:6a:
59:61:51:75:36:cc:d1:aa:2a:09:29:f5:38:ef:b5:0d:6a:71:
49:d2:c2:28:96:b4:1b:6b:55:47:43:a6:fe:8d:a2:4f:9b:7d:
03:ed:86:28:b3:9d:7f:9c:e6:a3:28:e0:a4:e0:c2:1f:d1:ec:
e6:12:ca:74:93:d2:0c:11:79:8e:6c:ef:66:3b:23:6c:2e:5b:
89:bc:ad:1f:f2:ed:59:73:01:d2:cc:a0:65:e3:77:b8:c2:1c:
9c:47:1f:ed:a7:8d:3f:51:ab:c2:e8:4c:c7:b2:52:e9:fa:12:
61:e2:5d:81:70:3a:48:10:33:e6:0a:2a:54:09:54:da:09:6b:
06:75:06:5c:49:19:41:0b:c7:83:02:34:75:b3:77:a7:95:82:
b2:d8:a2:80:5f:93:51:07:2a:d1:de:5a:9b:92:34:a1:e8:77:
a9:c0:58:92:8b:a0:fd:d5:5a:44:61:df:41:ec:54:44:ef:5a:
ec:99:41:21:28:da:33:c4:b6:8e:30:ee:e3:8a:de:dd:ae:ec:
30:59:4c:94:a0:56:56:c7:e6:7d:61:65:a6:ac:71:2f:4c:c1:
b4:0d:47:bb:ae:d3:de:c1:44:e3:f7:16:53:5a:c4:fb:bb:75:
6a:0a:7d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:45:59 2025 by rpki-client