Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/50538c-059b-41e3-ac6e-433a458a2d53/1/xwWsQPjw6iKMHHp36iVj_cICuVk.roa
File: xwWsQPjw6iKMHHp36iVj_cICuVk.roa (raw, json)
Hash identifier: mLjd587s+rJ6CexhdNZfbdExobxSH88DJjBDMVphx5w=
Subject key identifier: C7:05:AC:40:F8:F0:EA:22:8C:1C:7A:77:EA:25:63:FD:C2:02:B9:59
Certificate issuer: /CN=71f77d2ee443a08d0e06cc2f93100a4fb7371dd2
Certificate serial: 18098BE7
Authority key identifier: 71:F7:7D:2E:E4:43:A0:8D:0E:06:CC:2F:93:10:0A:4F:B7:37:1D:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cfd9LuRDoI0OBswvkxAKT7c3HdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/50538c-059b-41e3-ac6e-433a458a2d53/1/xwWsQPjw6iKMHHp36iVj_cICuVk.roa
Signing time: Sat 01 Jan 2022 13:04:41 +0000
ROA not before: Sat 01 Jan 2022 13:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198644
IP address blocks: 91.239.96.0/23 maxlen: 23
2001:67c:27e4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403278823 (0x18098be7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71f77d2ee443a08d0e06cc2f93100a4fb7371dd2
Validity
Not Before: Jan 1 13:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c705ac40f8f0ea228c1c7a77ea2563fdc202b959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d6:a0:60:66:b8:00:96:3d:00:f1:f8:bb:fe:
64:20:0b:0e:94:6a:fe:d9:8f:c3:4b:88:74:60:90:
5f:93:7e:9f:21:c5:84:76:f2:ee:72:c9:49:f1:d6:
68:b1:58:56:8c:5c:57:1e:d4:d4:7c:c7:5d:88:99:
5f:1e:db:33:9c:c3:23:93:05:62:3e:c5:45:a2:52:
8c:12:de:58:5e:d3:f5:1e:d4:b3:38:02:87:57:43:
ad:0e:3c:cc:4f:ca:6f:9c:49:84:92:7d:a2:0b:2a:
a6:ad:7b:e9:57:cd:4f:90:68:f1:95:c5:c9:e0:ec:
bb:21:8a:6f:a4:aa:06:bb:3e:da:62:57:19:2b:7b:
59:35:f6:4f:5e:0d:cc:70:d8:bd:89:a5:ee:35:e2:
d1:f1:cb:d4:ad:6d:42:8f:02:72:20:0e:48:07:15:
f8:11:e1:fc:89:fb:7a:59:63:c7:56:85:3b:08:f6:
d0:8b:35:8e:76:5d:b8:73:b8:48:38:74:58:b5:05:
91:da:92:20:de:1e:0e:4d:2d:78:dc:e3:41:49:40:
df:98:ed:bb:92:af:aa:61:66:52:46:fc:a0:60:8c:
c1:ff:a1:f5:68:d2:a1:af:98:91:4a:91:1d:12:2b:
1a:8f:5f:7c:01:3c:7e:33:43:b3:79:64:18:09:5f:
0f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:05:AC:40:F8:F0:EA:22:8C:1C:7A:77:EA:25:63:FD:C2:02:B9:59
X509v3 Authority Key Identifier:
keyid:71:F7:7D:2E:E4:43:A0:8D:0E:06:CC:2F:93:10:0A:4F:B7:37:1D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cfd9LuRDoI0OBswvkxAKT7c3HdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/50538c-059b-41e3-ac6e-433a458a2d53/1/xwWsQPjw6iKMHHp36iVj_cICuVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/50538c-059b-41e3-ac6e-433a458a2d53/1/cfd9LuRDoI0OBswvkxAKT7c3HdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.96.0/23
IPv6:
2001:67c:27e4::/48
Signature Algorithm: sha256WithRSAEncryption
7f:ef:dc:9a:c1:50:67:90:75:56:0a:54:c8:be:bf:a3:74:4f:
b3:2f:97:20:1d:8f:77:5b:c5:32:f0:29:da:68:86:1e:bb:61:
6c:98:b6:3c:bd:6d:16:ab:48:f8:21:e1:7a:75:05:39:54:17:
31:82:04:2a:bb:2f:f9:d0:eb:61:fd:86:2f:38:7a:72:63:54:
85:11:41:cf:65:4f:73:24:33:51:44:d2:5f:df:f9:a9:41:9e:
8c:0e:85:7a:7b:9b:dd:f5:37:95:f4:f5:c0:67:0e:0d:4d:64:
16:8e:1c:00:34:cc:df:1e:22:d2:32:5f:5e:86:99:47:4a:13:
d6:db:65:50:e0:f3:9d:8c:a1:9d:2c:87:32:f9:fb:25:ed:ef:
dc:72:be:e3:dc:a4:45:8c:2a:4a:85:bc:3b:47:02:f7:5d:1d:
6d:64:d7:68:d6:35:33:1f:4b:d8:3d:44:c1:2a:50:d2:cd:0f:
2e:1a:5d:92:cb:4b:ed:42:36:62:3d:f2:76:bf:99:38:69:bd:
e5:d9:a3:b8:eb:38:b7:33:72:7d:3c:04:1d:e4:06:f9:40:ad:
3c:69:b4:c2:1e:a4:6a:78:ea:d5:ad:4c:c7:51:28:b6:a7:d0:
50:c0:4f:1e:6b:45:fd:ca:bf:f3:e4:ae:c8:bb:ab:cb:9f:c5:
29:b6:1b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:16:28 2025 by rpki-client