Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5b18b5-da02-4e97-b013-4597e147c140/1/uMWx1DHDT7wOBd8ZkggNNPo73BU.roa
File: uMWx1DHDT7wOBd8ZkggNNPo73BU.roa (raw, json)
Hash identifier: br4w7Xpzo64W9mICZqFCzkiLrhiOHGcsEZ7bOFikDmc=
Subject key identifier: B8:C5:B1:D4:31:C3:4F:BC:0E:05:DF:19:92:08:0D:34:FA:3B:DC:15
Certificate issuer: /CN=b2e102484f73972786ccc2df1c47c2682b8b85ca
Certificate serial: 019425FC4FF0EB0B034273325F9962880DAC
Authority key identifier: B2:E1:02:48:4F:73:97:27:86:CC:C2:DF:1C:47:C2:68:2B:8B:85:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suECSE9zlyeGzMLfHEfCaCuLhco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5b18b5-da02-4e97-b013-4597e147c140/1/uMWx1DHDT7wOBd8ZkggNNPo73BU.roa
Signing time: Thu 02 Jan 2025 07:47:59 +0000
ROA not before: Thu 02 Jan 2025 07:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61361
IP address blocks: 91.223.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:4f:f0:eb:0b:03:42:73:32:5f:99:62:88:0d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e102484f73972786ccc2df1c47c2682b8b85ca
Validity
Not Before: Jan 2 07:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b8c5b1d431c34fbc0e05df1992080d34fa3bdc15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cf:14:f8:e6:81:e9:d3:a5:8b:e7:e4:9a:e0:
d5:5a:66:8d:30:04:1d:62:12:cf:69:14:67:7f:29:
da:9b:f6:e7:9d:84:ce:07:b9:1a:bd:bc:43:04:cb:
ec:03:74:a0:01:98:96:2b:d7:d3:9c:79:71:d4:75:
64:fd:bf:c4:cf:93:41:48:7e:68:cf:a1:71:c7:28:
0f:1e:7d:79:45:20:1a:e0:f1:eb:d2:d0:7b:9e:0d:
25:42:91:61:0c:90:54:77:43:03:e4:45:48:ca:01:
d8:73:17:05:69:b6:f8:99:ba:53:3e:cd:31:14:97:
36:a0:05:88:22:c3:92:6f:8a:08:f8:dc:99:d4:70:
81:5a:49:c7:55:73:d2:41:77:aa:10:4e:52:48:c4:
fd:89:c1:0c:6e:35:92:03:b7:c2:48:aa:4b:1b:4e:
68:c6:13:a4:43:ba:c2:3c:6a:8c:f7:ef:ed:9e:43:
0e:76:fe:61:33:6a:62:0b:63:1d:41:8a:97:ce:34:
58:f4:12:6e:58:f6:03:68:fb:d0:50:88:bf:9b:a9:
ec:6d:e1:a6:53:d8:70:be:12:14:c0:b0:d6:8d:89:
54:da:1a:3e:d1:84:c5:e2:16:14:d3:03:da:94:d5:
2d:71:0d:51:2d:e6:99:ff:64:1f:ef:f4:c9:92:a4:
82:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C5:B1:D4:31:C3:4F:BC:0E:05:DF:19:92:08:0D:34:FA:3B:DC:15
X509v3 Authority Key Identifier:
keyid:B2:E1:02:48:4F:73:97:27:86:CC:C2:DF:1C:47:C2:68:2B:8B:85:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suECSE9zlyeGzMLfHEfCaCuLhco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5b18b5-da02-4e97-b013-4597e147c140/1/uMWx1DHDT7wOBd8ZkggNNPo73BU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5b18b5-da02-4e97-b013-4597e147c140/1/suECSE9zlyeGzMLfHEfCaCuLhco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.131.0/24
Signature Algorithm: sha256WithRSAEncryption
74:09:24:e0:09:a1:a1:c3:45:a5:14:80:1f:ad:2d:ea:58:c0:
92:1f:f0:fb:3d:30:53:e0:05:18:79:bd:67:da:28:f8:1a:a5:
87:fb:8a:7d:e5:e5:22:ec:8f:fe:be:d4:5f:22:d5:df:b9:fd:
2e:46:b3:a2:7d:52:cb:13:42:20:17:05:a1:17:2c:4a:be:60:
0f:fa:49:1f:78:87:e5:e4:a2:2a:0f:25:68:a2:d9:48:5d:8c:
35:bc:74:cc:d2:1e:80:81:9d:a9:1b:b2:61:3a:37:17:fc:2e:
41:bf:a7:f2:fc:4c:30:43:b0:1d:ab:2c:25:e1:55:10:57:4a:
f2:a3:31:02:14:89:53:cb:ae:c9:6d:a6:fa:a2:c5:a5:f0:5a:
85:f9:a4:7d:ef:a2:b1:58:1d:3a:22:b1:5c:4a:c9:b7:97:ac:
11:ec:3c:4d:49:eb:ed:c6:7f:40:f5:8a:66:5a:47:2e:bf:d8:
44:74:8f:4f:62:17:36:a4:d7:2c:9d:0e:5b:b8:74:72:9d:ed:
40:90:bc:8f:64:34:43:84:0d:77:c1:fe:f0:46:11:2f:3f:1b:
fe:e1:70:5c:ab:49:34:27:41:28:b5:33:a6:c9:44:bf:ae:46:
02:82:31:35:43:ce:fc:c1:29:65:64:e5:1d:dc:d6:91:6d:f9:
6b:14:76:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:09:58 2025 by rpki-client