Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/P8keWdKWDey75pyiGarClqFMzs0.roa
File: P8keWdKWDey75pyiGarClqFMzs0.roa (raw, json)
Hash identifier: Hzv/grd4WVE3mRAB73dM0nArUKVTLO16UgSNHvMIPbs=
Subject key identifier: 3F:C9:1E:59:D2:96:0D:EC:BB:E6:9C:A2:19:AA:C2:96:A1:4C:CE:CD
Certificate issuer: /CN=b06c430b61be7a380191cd5dfd105c3af21482fc
Certificate serial: 01490B7A
Authority key identifier: B0:6C:43:0B:61:BE:7A:38:01:91:CD:5D:FD:10:5C:3A:F2:14:82:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGxDC2G-ejgBkc1d_RBcOvIUgvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/P8keWdKWDey75pyiGarClqFMzs0.roa
Signing time: Fri 13 May 2022 04:09:50 +0000
ROA not before: Fri 13 May 2022 04:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 91.228.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21564282 (0x1490b7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06c430b61be7a380191cd5dfd105c3af21482fc
Validity
Not Before: May 13 04:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fc91e59d2960decbbe69ca219aac296a14ccecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:47:f3:ed:33:c0:66:54:e3:d6:11:42:6f:7c:
23:2a:1b:ad:f5:6d:96:5b:04:50:a9:9f:60:38:9f:
36:af:e3:31:4b:3e:aa:49:0a:c9:6e:6c:11:64:a9:
79:a1:64:38:5c:dc:ab:c0:32:2f:60:cc:ef:34:84:
7b:40:7e:4d:ed:47:b3:8d:92:10:15:bb:c4:21:6c:
d4:4f:0f:70:c8:fe:6b:79:55:76:7b:b5:d3:d6:6c:
6a:d5:45:ee:9e:ff:6c:1f:ac:bd:95:da:6b:7e:fd:
50:05:3a:7f:63:50:13:c6:f1:b1:a9:e0:b8:59:0c:
11:32:cc:db:16:cc:95:3a:75:52:fd:75:83:b2:e6:
3a:6c:ce:4c:56:60:2f:d7:c1:64:66:7d:0a:43:62:
6e:cf:d4:19:50:54:dc:0a:01:57:cd:da:e3:79:74:
5b:76:56:af:57:3a:68:cb:53:a0:14:ed:fc:d0:73:
54:ac:f6:46:fe:14:4d:33:c5:9d:71:11:36:3d:ec:
f7:3e:1a:79:3b:96:c9:a8:fe:cc:59:7b:fb:5c:7e:
3c:aa:34:d0:8e:0c:5e:f7:c6:ea:89:1a:fa:f1:ab:
4a:f7:2a:ef:99:a2:4b:6e:df:70:48:e4:77:96:4b:
05:b4:06:bb:b2:be:ac:4e:8d:3f:6a:6c:3e:fe:ad:
7a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C9:1E:59:D2:96:0D:EC:BB:E6:9C:A2:19:AA:C2:96:A1:4C:CE:CD
X509v3 Authority Key Identifier:
keyid:B0:6C:43:0B:61:BE:7A:38:01:91:CD:5D:FD:10:5C:3A:F2:14:82:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGxDC2G-ejgBkc1d_RBcOvIUgvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/P8keWdKWDey75pyiGarClqFMzs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4da5fc-3174-4f17-a9d5-f583107c898f/1/sGxDC2G-ejgBkc1d_RBcOvIUgvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.168.0/24
Signature Algorithm: sha256WithRSAEncryption
89:36:b6:1e:88:f0:1f:6b:3d:fd:9d:b7:08:3e:25:05:4c:30:
ab:c5:ee:b3:e3:d0:40:eb:d8:d4:cc:27:f7:8b:76:e6:ea:da:
73:01:b0:33:c3:50:a1:db:87:d8:43:74:ee:33:f5:1b:18:f6:
48:07:21:39:e2:5f:2d:b6:37:a0:ff:b2:00:cb:4f:9f:b1:78:
37:ca:0e:56:cc:5c:0a:cd:e3:0f:83:92:78:dd:8b:9c:53:b6:
53:36:08:59:cd:a8:ef:4b:48:0c:2c:42:5c:c9:c6:36:0e:ce:
e8:ea:e9:30:66:cc:c8:ac:64:4e:c4:63:f9:2f:4c:7d:69:63:
f5:00:8e:c8:e0:1c:79:f7:14:45:05:b7:1b:63:7d:b2:44:c7:
e0:ae:b8:20:11:69:f2:06:39:2d:8e:0c:cb:29:e8:52:06:aa:
bf:d4:6f:30:20:63:21:0f:0c:60:fb:e8:fb:6e:2a:07:26:18:
77:bf:cc:7c:93:80:72:49:e3:d9:85:46:a4:e0:b5:7e:ca:3b:
4c:7b:25:42:9d:aa:6e:d4:3d:b2:d5:4f:76:07:53:d7:09:94:
0c:a1:3a:ec:79:f7:06:5f:de:f9:54:ee:2b:62:8a:cd:ed:ca:
78:34:08:33:2f:39:d8:f0:6d:5f:28:10:f6:1c:0c:73:f6:30:
5f:32:42:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:15 2025 by rpki-client