Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/b4yP7VepvAgnKAA8sERJmKBAExU.roa
File: b4yP7VepvAgnKAA8sERJmKBAExU.roa (raw, json)
Hash identifier: +XltdwZf547DKmwYihTDSpsVEJImclbOXoomM1pOzTc=
Subject key identifier: 6F:8C:8F:ED:57:A9:BC:08:27:28:00:3C:B0:44:49:98:A0:40:13:15
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018E55F7780AD1DD8D2E7EC5634D6C7FDFC7
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/b4yP7VepvAgnKAA8sERJmKBAExU.roa
Signing time: Tue 19 Mar 2024 09:07:45 +0000
ROA not before: Tue 19 Mar 2024 09:07:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 91.217.219.0/24 maxlen: 24
2a12:62c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:55:f7:78:0a:d1:dd:8d:2e:7e:c5:63:4d:6c:7f:df:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Mar 19 09:07:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f8c8fed57a9bc082728003cb0444998a0401315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:38:86:f4:8a:59:cc:3d:e5:07:cd:58:66:8e:
48:8a:07:65:01:8c:22:fa:e5:93:fc:31:bc:8f:aa:
da:bc:9f:84:6a:1b:f2:40:44:48:25:e8:69:4e:ba:
de:44:30:33:93:5a:43:fe:74:5a:58:c9:9e:90:19:
07:2b:8f:fc:62:04:c1:86:44:06:5a:29:8c:c9:75:
fa:bb:44:8d:2e:5a:23:b9:c1:d5:e8:61:5d:8a:8b:
45:8d:7c:f4:77:9a:c7:1a:a1:44:c5:93:03:79:13:
71:9a:db:73:1d:a2:02:25:3a:28:82:f3:f7:5f:db:
57:c1:4e:f3:b1:04:cb:24:89:86:d6:f7:f7:1f:b4:
28:97:ab:e7:3f:3d:8b:7c:97:78:a6:ec:fe:81:44:
93:f3:c9:53:b9:88:bb:0f:84:62:b2:a5:33:e5:e4:
88:1c:8e:33:67:82:6b:90:59:2b:42:eb:2f:75:b5:
8d:53:cd:4f:72:6c:4d:16:84:e0:58:52:13:21:27:
79:c0:8d:78:af:d5:07:30:fc:66:5f:86:a8:49:76:
a3:1e:9a:f2:a2:72:10:bc:92:24:d7:be:79:9d:de:
db:89:08:58:04:46:a6:28:b6:d5:42:44:d6:38:95:
d9:ed:b0:12:72:f2:7e:7a:42:93:35:76:f0:89:da:
24:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8C:8F:ED:57:A9:BC:08:27:28:00:3C:B0:44:49:98:A0:40:13:15
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/b4yP7VepvAgnKAA8sERJmKBAExU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
7c:62:d3:14:6c:8a:93:0b:9d:be:60:1b:79:96:81:56:94:55:
0d:7c:6b:1b:3d:da:fc:47:fd:fd:12:57:0e:f2:c0:ad:cf:e6:
83:66:b1:b9:c8:c9:5b:3c:45:87:5d:10:92:92:df:87:67:8e:
ea:e6:16:28:bf:04:ff:48:41:69:9d:9d:9f:6f:71:4d:9b:a9:
46:a5:b2:11:69:b1:4a:fa:d4:d4:01:fb:6b:f8:4d:ec:d8:6a:
1f:be:11:d6:95:73:61:13:7d:ee:9e:b2:9f:cd:2e:e9:d1:91:
66:c1:c8:de:ad:a2:9e:46:37:f7:3e:24:e6:d7:9e:4c:7f:b9:
df:72:e5:b2:e7:1b:1c:25:2a:35:73:27:b9:70:22:64:14:2b:
50:e7:47:d7:2e:3e:6f:4c:fc:d1:e7:03:d8:98:7a:dc:2c:1d:
05:b9:e2:ce:5e:19:ab:fa:4e:b8:4b:38:cb:f4:0d:7a:ee:13:
a3:f2:07:d4:d0:f5:0d:e6:d7:d0:bc:a3:89:49:11:a7:32:9b:
dc:44:c3:30:b6:3f:77:92:1d:18:8f:72:e3:29:db:75:75:08:
ec:7f:a3:0b:e8:7b:27:30:34:54:f8:88:03:0b:ab:53:d9:06:
b3:cd:47:53:88:40:2d:10:83:c6:fc:f4:cd:bf:7e:ea:9f:cd:
06:55:d8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:00 2025 by rpki-client