Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/glHtLecTNUxeR4oxupaJRTlQLos.roa
File: glHtLecTNUxeR4oxupaJRTlQLos.roa (raw, json)
Hash identifier: tjH899kftJHgu4JmkbHHTA84WKPpmWW00cLzLNo7wBg=
Subject key identifier: 82:51:ED:2D:E7:13:35:4C:5E:47:8A:31:BA:96:89:45:39:50:2E:8B
Certificate issuer: /CN=88fc58875608970d9a728347d05ef00d0f1d5611
Certificate serial: 019420D5B9EF10CF9EE67E0398BEAEE7E376
Authority key identifier: 88:FC:58:87:56:08:97:0D:9A:72:83:47:D0:5E:F0:0D:0F:1D:56:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPxYh1YIlw2acoNH0F7wDQ8dVhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/glHtLecTNUxeR4oxupaJRTlQLos.roa
Signing time: Wed 01 Jan 2025 07:47:45 +0000
ROA not before: Wed 01 Jan 2025 07:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8412
IP address blocks: 91.198.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:b9:ef:10:cf:9e:e6:7e:03:98:be:ae:e7:e3:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88fc58875608970d9a728347d05ef00d0f1d5611
Validity
Not Before: Jan 1 07:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8251ed2de713354c5e478a31ba96894539502e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f0:12:64:92:0b:11:28:bd:8d:b6:ed:05:49:
29:52:2a:73:12:a5:67:c2:00:b9:30:39:0a:55:c5:
e8:f4:19:91:2d:78:49:ae:aa:e7:66:7b:2f:f8:40:
dd:a5:96:3c:5f:cf:15:25:d4:f7:b0:1a:0f:23:f9:
c3:c6:ac:c4:64:10:04:b3:2d:0a:6a:c5:db:1f:70:
fb:ff:0f:d3:52:45:11:c4:2b:20:38:e5:02:92:a5:
7b:82:d8:cf:9a:74:59:5c:9f:91:ef:fe:f4:06:71:
18:bd:e7:0b:1b:a6:58:92:48:d3:1e:47:e6:58:aa:
e4:b6:06:69:7d:4d:63:ff:ec:98:d4:bf:0f:95:75:
ae:eb:bb:05:ef:5d:12:c7:85:2d:ef:ab:c4:d7:87:
82:4f:ed:de:ff:d1:80:b7:b6:a2:f6:1c:f5:28:01:
28:84:f2:9f:f1:93:ea:be:84:a4:f4:da:08:8f:c9:
63:d6:5d:55:22:0e:23:bb:3f:e1:35:3a:d8:9f:0a:
ab:b4:47:cc:4e:7e:7f:14:62:ec:ba:ed:6a:ee:7e:
e4:31:d4:63:d3:2c:fc:df:45:ed:0d:8f:fb:84:1a:
b6:73:d3:b6:cf:f2:c0:74:10:76:ee:56:7d:44:38:
3b:30:4a:89:3b:e7:ce:72:50:84:53:8c:58:0d:9f:
94:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:51:ED:2D:E7:13:35:4C:5E:47:8A:31:BA:96:89:45:39:50:2E:8B
X509v3 Authority Key Identifier:
keyid:88:FC:58:87:56:08:97:0D:9A:72:83:47:D0:5E:F0:0D:0F:1D:56:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPxYh1YIlw2acoNH0F7wDQ8dVhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/glHtLecTNUxeR4oxupaJRTlQLos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/iPxYh1YIlw2acoNH0F7wDQ8dVhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.142.0/24
Signature Algorithm: sha256WithRSAEncryption
42:5b:63:5a:77:73:d1:4b:fd:85:ad:62:6d:e9:ac:c6:14:62:
c9:dd:6c:6e:2f:a0:64:84:ed:94:a9:95:82:3a:7a:e0:c0:dc:
c8:33:3a:b3:7a:43:31:20:76:48:45:51:65:a1:ca:bc:9a:d7:
a5:f6:03:34:60:f4:ed:ac:50:7c:e5:3b:a3:24:6d:0c:d8:b7:
3b:c6:29:bc:6a:00:4a:39:3e:8b:c2:a8:c7:88:a4:c4:23:50:
e5:ae:7d:27:1c:75:99:fe:98:55:76:90:9c:15:ee:e3:28:12:
60:e9:17:8d:a0:b0:05:da:80:84:74:d9:a6:f0:ab:47:43:6a:
21:a1:04:91:1b:b0:41:1b:17:37:c5:82:51:fb:90:6d:98:93:
84:18:ac:22:51:a4:d7:f8:e7:76:39:45:84:af:9b:ea:c7:36:
43:38:4d:80:6c:d5:d1:48:ba:64:e6:c3:ea:c7:53:b0:92:d5:
8b:1a:b9:27:0e:8e:32:17:d1:4b:7d:83:7c:13:b8:d5:ab:b6:
45:00:17:cb:82:89:73:d3:d1:25:c1:79:05:4a:72:04:c8:74:
b3:9e:ec:9f:3d:c3:d6:e1:a6:55:1d:e1:9e:c1:24:ac:17:50:
00:95:e7:31:d3:0e:d1:01:1f:80:e4:7e:47:ae:bc:1f:5d:a2:
c0:69:62:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:51:12 2025 by rpki-client