Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c1ce51-19eb-4096-bdb9-1bffa74a3b1d/1/s88NcLP3J5ElTwR6XX9HiRee1Uc.roa
File: s88NcLP3J5ElTwR6XX9HiRee1Uc.roa (raw, json)
Hash identifier: PVwqo+d9OyD85TflBefv8J1nBXHOxDxUCmISfIsb12w=
Subject key identifier: B3:CF:0D:70:B3:F7:27:91:25:4F:04:7A:5D:7F:47:89:17:9E:D5:47
Certificate issuer: /CN=3830792b5e3bbac9f370d4cae7aba2a5cdba7a0a
Certificate serial: 018CC5012540D873BF42DAF7990F33DB1854
Authority key identifier: 38:30:79:2B:5E:3B:BA:C9:F3:70:D4:CA:E7:AB:A2:A5:CD:BA:7A:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ODB5K147usnzcNTK56uipc26ego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c1ce51-19eb-4096-bdb9-1bffa74a3b1d/1/s88NcLP3J5ElTwR6XX9HiRee1Uc.roa
Signing time: Mon 01 Jan 2024 12:30:35 +0000
ROA not before: Mon 01 Jan 2024 12:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43187
IP address blocks: 91.198.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:25:40:d8:73:bf:42:da:f7:99:0f:33:db:18:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3830792b5e3bbac9f370d4cae7aba2a5cdba7a0a
Validity
Not Before: Jan 1 12:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3cf0d70b3f72791254f047a5d7f4789179ed547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:df:be:b6:dd:db:55:51:f4:6c:a1:b7:ef:69:
fc:7a:18:97:13:d1:ca:3e:8b:a1:f1:54:07:1c:12:
4b:61:ec:35:0b:36:e8:0f:ee:fd:28:aa:77:1a:c2:
98:82:de:d2:5b:10:63:06:8f:84:32:94:3c:94:0a:
93:4b:28:90:7e:5b:cb:c9:44:c0:f7:0e:24:ef:97:
4e:c8:3d:a9:ab:8e:19:d6:b5:46:53:d8:32:17:e8:
8f:9e:c4:bf:19:77:ef:ec:2a:b0:2e:7a:61:c9:5e:
b4:3e:20:23:82:0f:6b:38:2f:70:23:9c:c6:cc:b1:
56:c6:6b:de:e1:9f:f1:ff:ad:59:39:dc:58:a0:0b:
3b:ed:a4:22:1a:72:9e:aa:10:04:2d:6d:72:6a:6f:
35:8d:a7:6f:35:2a:af:a2:3b:a2:63:ce:85:03:c4:
1a:3b:11:12:dd:00:51:fb:7c:fd:2f:d9:f3:df:df:
0a:a2:16:70:2f:c4:38:f8:27:d7:06:bd:74:d4:ee:
50:b3:40:88:e9:0f:6a:ba:97:9f:1c:da:d4:a3:a8:
c1:83:8a:3e:f5:54:93:8c:67:05:5f:cb:c4:91:0c:
de:b3:bb:33:d6:90:7a:cd:9f:97:22:53:16:30:04:
16:62:fa:9f:58:f2:7c:58:f8:ff:2a:e7:4c:32:29:
d8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CF:0D:70:B3:F7:27:91:25:4F:04:7A:5D:7F:47:89:17:9E:D5:47
X509v3 Authority Key Identifier:
keyid:38:30:79:2B:5E:3B:BA:C9:F3:70:D4:CA:E7:AB:A2:A5:CD:BA:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ODB5K147usnzcNTK56uipc26ego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c1ce51-19eb-4096-bdb9-1bffa74a3b1d/1/s88NcLP3J5ElTwR6XX9HiRee1Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c1ce51-19eb-4096-bdb9-1bffa74a3b1d/1/ODB5K147usnzcNTK56uipc26ego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.7.0/24
Signature Algorithm: sha256WithRSAEncryption
64:eb:ed:d1:aa:e6:51:24:28:67:d7:66:25:fe:03:45:35:46:
38:6d:52:b5:34:73:59:fb:58:f6:c4:3b:b9:0e:82:6a:6b:e9:
0d:41:69:36:61:2b:66:39:ff:a9:0a:1e:3c:67:76:31:35:8f:
f6:8a:6e:d6:41:ad:64:b4:fa:dd:98:67:a0:8c:d0:9a:5b:ec:
db:24:0a:d6:e1:e8:11:e9:fa:7a:5f:04:3f:3f:8d:7e:0d:69:
75:c2:87:81:1f:87:20:eb:71:5b:ea:f4:12:5f:3e:de:39:f3:
6c:83:28:b7:24:7b:64:00:e8:4b:2c:2e:02:c3:52:4f:07:05:
94:80:d1:70:2e:d7:ec:b2:d0:53:81:2e:d5:ea:69:07:ef:84:
10:2e:4d:77:28:8b:44:be:8b:2a:c1:a0:93:5b:e2:b8:f6:ae:
75:2f:70:9a:14:42:37:82:7e:7e:3b:f8:91:f5:f5:c2:4b:b7:
25:be:cb:01:3b:f6:fc:cc:a0:aa:82:a7:ac:48:ff:54:f5:a2:
c1:f4:15:73:60:71:5b:6e:79:5d:ec:4c:15:11:a3:3b:ce:d3:
1f:40:87:0c:8b:84:90:b2:3f:6b:30:b0:1f:ac:54:80:47:d5:
12:56:96:a1:a9:63:87:57:09:9d:34:3a:6d:ed:1e:aa:02:3b:
20:34:c5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:01:12 2025 by rpki-client