Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/NPzS7dKaq70IcGX_A1Qcj_ZLSso.roa
File: NPzS7dKaq70IcGX_A1Qcj_ZLSso.roa (raw, json)
Hash identifier: NKVUhSy28Mx3aJChPzTkXureREnDmeAOH1iQ7b+r7LU=
Subject key identifier: 34:FC:D2:ED:D2:9A:AB:BD:08:70:65:FF:03:54:1C:8F:F6:4B:4A:CA
Certificate issuer: /CN=b79c2de3eb309180f4f5a5af2d56fe4258784648
Certificate serial: 0194252169D12B7C65F820167417F591FBFB
Authority key identifier: B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/NPzS7dKaq70IcGX_A1Qcj_ZLSso.roa
Signing time: Thu 02 Jan 2025 03:48:54 +0000
ROA not before: Thu 02 Jan 2025 03:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8075
IP address blocks: 91.203.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:69:d1:2b:7c:65:f8:20:16:74:17:f5:91:fb:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b79c2de3eb309180f4f5a5af2d56fe4258784648
Validity
Not Before: Jan 2 03:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=34fcd2edd29aabbd087065ff03541c8ff64b4aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d1:1d:b5:a6:97:12:18:ea:a7:b5:e0:83:77:
77:8c:10:22:b1:6a:ec:66:be:3e:af:58:e8:fb:72:
3e:d8:58:02:76:75:dd:00:77:60:ef:f0:ae:4e:9c:
55:81:b7:4a:f5:f4:49:fa:22:0e:fb:a5:28:33:6e:
90:ab:4d:98:dd:6e:5e:f8:1c:11:8c:c0:1f:40:e5:
1c:d7:a2:b1:c2:5b:f5:f1:e4:a1:fa:08:3f:b8:fa:
a2:f4:51:e5:7f:b1:d0:03:09:89:a5:1c:0a:57:92:
3e:5a:42:e8:3d:d9:e0:4e:d4:87:77:5d:7c:14:3e:
c7:ba:f7:bf:e6:37:96:27:99:f1:10:e0:48:ea:53:
07:bb:cb:43:1c:9d:2c:f4:09:82:c7:96:68:53:21:
29:42:77:b2:28:da:72:dc:74:4e:fe:69:b1:22:ea:
db:5e:3d:eb:ff:80:f6:c0:bf:b5:13:1f:33:6d:74:
66:02:eb:73:d7:99:75:cf:41:48:1a:67:af:34:5b:
53:11:91:7b:59:30:cf:3e:6f:fd:f2:90:95:0c:75:
bd:fa:e6:13:29:91:22:30:70:24:0f:f7:a1:9d:ba:
1c:7e:21:70:83:5f:e0:59:ba:88:47:0f:88:8c:a9:
54:6a:0f:eb:b6:8e:47:3e:79:b7:8d:06:5c:74:3b:
9f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FC:D2:ED:D2:9A:AB:BD:08:70:65:FF:03:54:1C:8F:F6:4B:4A:CA
X509v3 Authority Key Identifier:
keyid:B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/NPzS7dKaq70IcGX_A1Qcj_ZLSso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/t5wt4-swkYD09aWvLVb-Qlh4Rkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.230.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c8:96:f6:f2:64:90:99:5c:4f:fa:7f:a9:38:87:aa:38:58:
57:fd:cf:46:4b:f6:dd:6c:1e:0b:f2:27:3b:c1:44:81:61:31:
61:08:11:cb:11:86:34:0e:93:05:4e:0b:86:3e:72:c5:27:3a:
79:ac:6f:cd:e9:9a:85:d8:e6:b6:7f:48:b1:20:c1:5e:1d:9f:
03:cd:a0:53:5a:7d:0d:51:a3:6a:9d:ba:65:3c:8f:ff:19:de:
38:0f:78:8d:0d:8a:5d:0b:8e:e3:95:05:5c:d2:dc:09:89:0c:
84:73:c1:b2:4d:81:bf:0b:d6:ae:a3:37:16:b6:87:ba:d0:3d:
0f:f8:8e:85:e7:5c:d1:24:91:76:df:ea:f0:4d:30:43:d6:f0:
fe:ba:b1:14:6c:5e:09:ab:cf:7f:41:a0:eb:12:d1:62:5d:2e:
c4:80:ad:bd:50:18:b1:5d:b1:ac:46:eb:0d:ef:ff:f7:27:ae:
e1:bb:a8:ca:a5:d6:47:93:98:01:02:15:bc:4e:f3:d9:3f:fa:
6c:b7:63:71:eb:ec:5b:43:38:0a:e9:c6:24:04:44:69:34:0d:
51:fb:93:57:f7:8d:64:65:43:3a:db:4f:a9:9b:f4:d3:d6:c6:
8a:36:10:86:84:6f:cb:cf:99:23:4e:bc:fe:cf:7e:8a:d6:c4:
d3:72:c9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:17:02 2025 by rpki-client