Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/1d2b87-0de3-4f93-ad64-172c60b3e36d/1/uWnagnV7ph6W305lDhQcUtu8iOA.roa
File: uWnagnV7ph6W305lDhQcUtu8iOA.roa (raw, json)
Hash identifier: O2rllaolJLmB6wHK4WL6QTUawzuqbXsQObcxgCsZ0L8=
Subject key identifier: B9:69:DA:82:75:7B:A6:1E:96:DF:4E:65:0E:14:1C:52:DB:BC:88:E0
Certificate issuer: /CN=5cd6910cf1e2e2b1ca3473c4b7d092020e7b7c61
Certificate serial: 019420D60B601C2078F3CE54608D60DE57DC
Authority key identifier: 5C:D6:91:0C:F1:E2:E2:B1:CA:34:73:C4:B7:D0:92:02:0E:7B:7C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNaRDPHi4rHKNHPEt9CSAg57fGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/1d2b87-0de3-4f93-ad64-172c60b3e36d/1/uWnagnV7ph6W305lDhQcUtu8iOA.roa
Signing time: Wed 01 Jan 2025 07:48:06 +0000
ROA not before: Wed 01 Jan 2025 07:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34762
IP address blocks: 91.198.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:0b:60:1c:20:78:f3:ce:54:60:8d:60:de:57:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd6910cf1e2e2b1ca3473c4b7d092020e7b7c61
Validity
Not Before: Jan 1 07:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b969da82757ba61e96df4e650e141c52dbbc88e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fb:5c:02:b0:0e:fe:dc:86:6c:b7:06:71:7e:
79:33:95:a9:87:42:bd:6d:b5:5c:ad:3c:72:17:f4:
55:f4:a4:94:b1:c7:f5:5a:89:cd:98:26:3c:1d:8a:
d7:f3:4d:ee:51:01:06:5c:b1:ba:a1:cc:8a:f7:00:
b0:db:0d:31:fd:48:d9:b7:2b:1e:62:a2:04:4e:93:
5c:0e:42:a9:54:38:36:bb:5f:a8:c7:64:90:37:e4:
5d:65:89:98:8c:03:b1:2a:74:fb:44:4c:79:c4:2a:
dd:83:e0:8e:42:58:3f:6a:6a:52:c9:32:be:10:5a:
8d:ba:57:a5:12:37:68:1c:cc:82:aa:4d:6a:3b:08:
05:59:01:b5:6a:55:14:02:c6:81:47:ad:c5:2e:5d:
b2:4e:bb:1e:0a:c4:34:40:8c:7b:40:a5:91:99:3c:
ce:23:bb:58:9f:e7:8a:bf:f2:c1:ca:1b:e0:e8:cb:
11:9a:b8:b6:63:2c:11:b5:6d:d6:c3:42:ed:3c:4a:
6f:8c:55:fc:d3:d7:16:a3:90:19:8e:9b:22:95:0b:
fd:9d:1b:e5:a4:b5:cb:74:8d:2f:ee:d9:bc:78:07:
01:2d:08:26:5d:9e:fd:87:e2:c1:cc:e9:b1:af:f4:
1a:13:fe:4f:3f:64:64:17:24:00:0c:aa:53:62:30:
b5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:69:DA:82:75:7B:A6:1E:96:DF:4E:65:0E:14:1C:52:DB:BC:88:E0
X509v3 Authority Key Identifier:
keyid:5C:D6:91:0C:F1:E2:E2:B1:CA:34:73:C4:B7:D0:92:02:0E:7B:7C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNaRDPHi4rHKNHPEt9CSAg57fGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/1d2b87-0de3-4f93-ad64-172c60b3e36d/1/uWnagnV7ph6W305lDhQcUtu8iOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/1d2b87-0de3-4f93-ad64-172c60b3e36d/1/XNaRDPHi4rHKNHPEt9CSAg57fGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.243.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:88:43:d1:2c:5e:48:26:78:21:7c:eb:85:92:0d:6d:f1:0d:
eb:9a:05:69:7d:8f:4a:a9:a8:16:22:3a:02:5f:5b:8f:ca:55:
11:e1:7b:07:93:ca:6f:4e:a4:76:1a:de:81:e5:c3:7e:78:43:
1a:91:9b:de:fb:c3:89:7c:03:f5:c6:13:cc:04:b2:91:86:7d:
8d:9e:f3:39:da:3c:0b:32:c7:c6:08:b0:e9:4f:9c:b0:19:6d:
cb:c3:da:57:c5:cc:aa:9e:eb:1d:b3:7c:ce:52:f8:c0:68:65:
82:09:ed:f2:16:ed:64:2a:ad:a5:58:e4:b5:a0:d3:06:4a:5e:
b6:3a:e4:cb:b6:19:8c:57:39:08:3d:1c:f0:9c:ca:d8:7b:5b:
52:0f:25:93:0a:78:80:aa:cd:cf:8e:fc:ba:57:a6:49:2e:40:
9a:7b:db:bf:e7:dd:d3:3f:49:1f:de:82:e2:24:b7:5f:8d:5d:
7b:f3:c3:26:72:9c:fc:71:af:96:79:d4:d0:bf:9d:66:58:73:
fb:61:de:89:87:e6:ab:50:eb:ac:a1:69:7f:47:b0:c8:a6:86:
73:e8:e5:68:18:2a:34:0b:3a:0f:c2:ea:fb:b7:db:a7:23:3a:
43:28:7b:9e:1f:90:cc:2d:2c:08:59:67:80:a5:38:a7:46:a1:
e9:8e:48:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:50 2025 by rpki-client