Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/DvPO_8Qn3_vMKvAvnRsqhhaxSnU.roa
File: DvPO_8Qn3_vMKvAvnRsqhhaxSnU.roa (raw, json)
Hash identifier: 4BhsaS52wV1kOM+NkaivMtSQ7sfF7YLoC8dGjYe9BNc=
Subject key identifier: 0E:F3:CE:FF:C4:27:DF:FB:CC:2A:F0:2F:9D:1B:2A:86:16:B1:4A:75
Certificate issuer: /CN=8a149f76d3944151f0ade4de7831d3d42cb6e8df
Certificate serial: 018CC9BBAB7705F44292AE9027724EC35719
Authority key identifier: 8A:14:9F:76:D3:94:41:51:F0:AD:E4:DE:78:31:D3:D4:2C:B6:E8:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihSfdtOUQVHwreTeeDHT1Cy26N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/DvPO_8Qn3_vMKvAvnRsqhhaxSnU.roa
Signing time: Tue 02 Jan 2024 10:32:48 +0000
ROA not before: Tue 02 Jan 2024 10:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57523
IP address blocks: 91.213.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:ab:77:05:f4:42:92:ae:90:27:72:4e:c3:57:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a149f76d3944151f0ade4de7831d3d42cb6e8df
Validity
Not Before: Jan 2 10:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ef3ceffc427dffbcc2af02f9d1b2a8616b14a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1d:a7:4f:b8:7e:76:31:11:5e:69:a9:44:16:
03:3d:82:a5:bd:ae:73:84:f5:65:e1:39:11:89:39:
79:38:05:49:ce:f4:0c:f8:0b:37:09:02:77:a2:53:
4c:37:cc:32:2c:59:37:7d:45:a9:9d:22:89:f5:11:
67:61:fa:74:4b:db:a8:49:f5:94:c8:91:eb:02:5a:
3f:c8:cb:80:2e:c6:42:ba:2c:18:b4:05:cb:99:78:
ba:c9:30:4f:3f:1f:d2:38:67:d1:3c:80:e4:1b:2a:
cd:e8:9e:a2:aa:33:cc:c5:51:a4:19:77:65:f9:0d:
33:3a:c2:08:27:2a:81:74:83:06:2e:7d:f4:c5:59:
84:0e:6d:d5:2f:5c:5c:6b:36:82:43:dd:da:ab:4a:
5d:63:80:8b:10:ff:0f:67:4f:c2:33:8f:1e:67:39:
73:83:37:6b:ce:9c:9b:47:70:63:18:ff:bf:64:11:
15:0a:c9:88:fe:9a:62:e9:27:b7:49:77:08:26:c8:
00:bb:ce:25:85:c1:6b:19:48:38:6e:ad:df:b5:7d:
ff:d8:72:3c:d1:ea:32:dd:be:26:43:13:df:fe:3c:
d6:c2:e8:20:6e:ae:dd:4f:da:e0:4d:d4:36:95:db:
38:b1:66:0f:e8:06:21:f0:72:ae:7a:bf:64:5e:d8:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F3:CE:FF:C4:27:DF:FB:CC:2A:F0:2F:9D:1B:2A:86:16:B1:4A:75
X509v3 Authority Key Identifier:
keyid:8A:14:9F:76:D3:94:41:51:F0:AD:E4:DE:78:31:D3:D4:2C:B6:E8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihSfdtOUQVHwreTeeDHT1Cy26N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/DvPO_8Qn3_vMKvAvnRsqhhaxSnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9c358e-ff82-4a52-bdc4-bfd27e866aef/1/ihSfdtOUQVHwreTeeDHT1Cy26N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.138.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:33:bc:38:b8:15:cc:67:95:50:c2:90:d0:4d:d6:b6:5b:53:
bf:68:bf:03:9f:04:c7:46:89:23:a4:21:4f:1c:a0:c4:8e:cb:
11:21:77:99:5b:d0:0d:14:6e:f6:e6:ca:e0:bf:8c:67:80:28:
f5:c6:fe:f1:ab:d9:2e:b1:ef:14:48:bc:8a:12:43:07:85:82:
b9:7c:f2:61:86:58:43:2a:b6:1a:b7:af:d3:e0:86:5c:47:60:
9f:51:7f:d2:84:1a:e7:c9:31:18:27:35:d7:55:22:9b:18:d2:
85:76:e1:67:41:81:66:2c:f0:f5:b4:e4:41:ee:cc:7e:d9:61:
e6:c6:e5:ad:ea:84:cb:ab:41:f1:90:61:56:99:c7:b4:24:e3:
c6:3c:36:98:99:00:f8:6c:42:e7:95:30:29:05:31:44:5f:aa:
91:4a:58:99:b6:5d:95:22:b5:9e:2a:36:ec:6e:be:8f:d7:80:
54:e6:fa:d9:0a:e8:ce:7e:7f:26:de:56:3a:51:33:ea:ed:de:
31:72:8e:36:83:82:1e:da:8c:c9:be:b4:97:e4:23:29:0f:4c:
89:3b:de:23:28:16:3b:d4:3b:d0:5e:c5:39:f8:0e:07:cc:29:
60:57:aa:fb:49:2b:07:28:45:67:77:56:d7:31:75:66:a1:08:
23:5b:da:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:03 2025 by rpki-client