Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/332846-9d42-421d-b3ed-980a4b544056/1/uxMrGXP4FNtk4vhqO5cU5mQf3-A.roa
File: uxMrGXP4FNtk4vhqO5cU5mQf3-A.roa (raw, json)
Hash identifier: hNIkM7+jAO3rAd67WrBtFJIrTsZ1lPQ5IhBNiYcTU/4=
Subject key identifier: BB:13:2B:19:73:F8:14:DB:64:E2:F8:6A:3B:97:14:E6:64:1F:DF:E0
Certificate issuer: /CN=285dee401808e1b5ec04b5c1abe5d9de5a3858ac
Certificate serial: 019420D6083707E772E16FF7864228BCF691
Authority key identifier: 28:5D:EE:40:18:08:E1:B5:EC:04:B5:C1:AB:E5:D9:DE:5A:38:58:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KF3uQBgI4bXsBLXBq-XZ3lo4WKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/332846-9d42-421d-b3ed-980a4b544056/1/uxMrGXP4FNtk4vhqO5cU5mQf3-A.roa
Signing time: Wed 01 Jan 2025 07:48:05 +0000
ROA not before: Wed 01 Jan 2025 07:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48918
IP address blocks: 91.237.117.0/24 maxlen: 24
2001:67c:28e0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:08:37:07:e7:72:e1:6f:f7:86:42:28:bc:f6:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=285dee401808e1b5ec04b5c1abe5d9de5a3858ac
Validity
Not Before: Jan 1 07:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb132b1973f814db64e2f86a3b9714e6641fdfe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1d:a4:d4:1d:5e:50:8d:12:a9:22:07:cb:f9:
e9:6a:e6:18:c2:88:ee:b0:b7:85:c0:1e:01:18:4d:
85:8f:93:fc:55:b7:9a:a3:a7:06:ad:0f:5c:52:28:
61:d7:d5:a0:d2:38:09:5a:aa:29:b8:3b:f0:e8:c0:
b2:bc:e0:12:50:40:02:f0:ca:2d:66:54:94:e4:1b:
94:df:bd:77:0a:48:eb:50:10:17:e6:0f:c4:59:db:
73:83:89:86:b8:73:34:dc:5c:1d:c1:85:3e:cb:9e:
11:31:90:6c:60:1b:6b:ef:ad:f5:65:18:8d:6d:8d:
f4:48:35:9a:92:17:d2:9b:62:cc:1b:72:02:14:c6:
31:40:dd:f1:8f:15:af:f1:9d:a3:44:3d:16:4c:1d:
bc:51:c2:2d:39:ef:35:bd:73:f1:40:42:70:a5:05:
03:2f:13:31:4c:69:ba:16:6b:e0:00:6f:3b:14:64:
6c:d2:88:42:8b:83:ca:85:cd:a2:06:cd:30:66:0a:
bd:ab:18:d6:8c:d6:c7:68:7a:98:9b:30:77:72:d7:
82:b6:6f:88:9d:2d:b1:ad:c4:36:37:4c:10:6d:85:
98:77:28:e8:f2:83:e4:50:1f:be:b9:c2:3e:ad:a7:
a7:17:ba:62:47:89:6b:af:ef:a5:63:3b:a6:99:cb:
6f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:13:2B:19:73:F8:14:DB:64:E2:F8:6A:3B:97:14:E6:64:1F:DF:E0
X509v3 Authority Key Identifier:
keyid:28:5D:EE:40:18:08:E1:B5:EC:04:B5:C1:AB:E5:D9:DE:5A:38:58:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KF3uQBgI4bXsBLXBq-XZ3lo4WKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/332846-9d42-421d-b3ed-980a4b544056/1/uxMrGXP4FNtk4vhqO5cU5mQf3-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/332846-9d42-421d-b3ed-980a4b544056/1/KF3uQBgI4bXsBLXBq-XZ3lo4WKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.117.0/24
IPv6:
2001:67c:28e0::/48
Signature Algorithm: sha256WithRSAEncryption
15:1e:11:7d:25:38:78:cc:e2:00:fb:38:c2:07:96:98:68:f2:
ee:35:0f:ae:33:38:e9:34:74:67:2c:72:ba:53:9a:25:81:e0:
32:55:f9:46:19:62:29:8a:b5:11:66:0e:d4:33:c9:37:11:16:
3d:53:b8:27:9b:45:eb:89:3a:30:8e:6f:1d:8c:71:2f:b3:4a:
ea:84:98:00:a4:fb:95:2e:86:78:d0:8a:2c:0a:47:3e:e5:b6:
8f:ff:f1:83:0d:a0:dd:ac:ce:93:2b:11:6a:c2:ba:bf:34:94:
83:63:8e:01:4f:59:4d:bf:d3:7d:f8:57:fd:38:27:e2:67:9b:
21:c3:12:f7:b0:6d:77:96:23:2f:fe:97:21:20:d2:9a:a7:80:
ba:06:d8:72:57:26:75:38:c6:ac:2a:84:ed:b5:b3:1c:54:d5:
aa:3c:d6:10:61:cd:7b:2d:96:81:63:cb:83:bf:a8:d4:7f:34:
03:ce:42:0f:8e:b2:b9:06:d4:d0:5a:a8:04:07:7c:69:27:9f:
13:32:ad:98:37:4c:9b:3a:89:96:4c:dc:84:f4:52:92:e4:14:
34:bc:78:53:e2:99:ed:ee:bc:f3:c8:7f:a3:0b:dd:0d:73:24:
e2:6d:cb:0a:16:3e:43:c6:88:95:81:14:01:37:67:e3:6d:87:
01:46:ee:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:46 2025 by rpki-client