Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/PtJoT8O6dnT7xczvPOkEreZfA7E.roa
File: PtJoT8O6dnT7xczvPOkEreZfA7E.roa (raw, json)
Hash identifier: yP9g95HP/s018WuxRTPZN7bnyfaZG+9atZbYqZ92PcE=
Subject key identifier: 3E:D2:68:4F:C3:BA:76:74:FB:C5:CC:EF:3C:E9:04:AD:E6:5F:03:B1
Certificate issuer: /CN=bbfe42cb30c3d496f96f11ed93cf74361708c7e1
Certificate serial: 018B944EFB370808D3F108A6398BB0ADEE03
Authority key identifier: BB:FE:42:CB:30:C3:D4:96:F9:6F:11:ED:93:CF:74:36:17:08:C7:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_5CyzDD1Jb5bxHtk890NhcIx-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/PtJoT8O6dnT7xczvPOkEreZfA7E.roa
Signing time: Fri 03 Nov 2023 08:31:25 +0000
ROA not before: Fri 03 Nov 2023 08:31:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44073
IP address blocks: 91.198.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:4e:fb:37:08:08:d3:f1:08:a6:39:8b:b0:ad:ee:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbfe42cb30c3d496f96f11ed93cf74361708c7e1
Validity
Not Before: Nov 3 08:31:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ed2684fc3ba7674fbc5ccef3ce904ade65f03b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:01:b2:e2:93:fb:65:ec:71:99:ba:bd:60:be:
d1:56:e4:a3:29:31:1d:82:39:7b:af:fd:b4:c3:f6:
4e:0f:43:d5:70:ae:96:f2:c7:1a:49:d2:96:00:41:
d4:5e:e2:2d:42:79:20:a2:83:86:8b:3e:fe:c4:0d:
f3:6d:d4:28:63:66:1c:98:a7:8c:ec:5e:50:98:3c:
2d:1b:9c:6a:51:9a:59:39:e5:0f:ef:cb:bb:26:07:
2a:bc:b7:2a:69:cb:d5:11:ed:25:b5:20:97:98:29:
7b:98:4f:c9:7e:af:06:f8:3e:ce:e3:d6:53:69:6f:
e6:af:fb:d9:ed:ef:34:82:02:a2:19:7b:8b:72:45:
3b:a9:be:28:7b:54:38:f8:e9:b5:96:f6:02:f6:e2:
1b:25:54:64:be:59:d8:08:4e:01:45:81:71:97:5e:
05:8d:8d:76:d6:6b:8a:75:a0:da:a2:67:16:6c:f1:
4c:90:89:6e:7b:93:c4:a5:10:a5:46:5b:90:0e:c6:
05:95:80:54:1e:39:4b:c8:1c:5a:5c:b9:77:2e:68:
67:45:23:4e:b2:08:34:f5:7e:a0:81:27:8e:12:0b:
5e:6c:dd:0f:a7:cb:74:8f:ac:22:f5:b9:26:0b:50:
5d:8b:03:2a:35:60:dd:32:21:ed:55:16:5a:da:af:
bd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D2:68:4F:C3:BA:76:74:FB:C5:CC:EF:3C:E9:04:AD:E6:5F:03:B1
X509v3 Authority Key Identifier:
keyid:BB:FE:42:CB:30:C3:D4:96:F9:6F:11:ED:93:CF:74:36:17:08:C7:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_5CyzDD1Jb5bxHtk890NhcIx-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/PtJoT8O6dnT7xczvPOkEreZfA7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c26a7c-2bef-4abc-a225-f1d11413e18a/1/u_5CyzDD1Jb5bxHtk890NhcIx-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.112.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:5d:6a:76:6a:f0:ca:cd:64:07:7e:2e:d0:4a:b9:01:fb:5c:
0e:a1:c5:ef:3b:8c:b1:6d:b1:ca:9c:58:89:1c:97:ae:39:2c:
31:49:5e:1c:ff:a2:6c:f5:59:9b:c7:3c:63:02:a1:1f:55:0e:
36:5c:79:82:8b:a6:aa:62:a8:aa:ea:49:6c:7e:34:aa:6e:83:
7b:63:54:29:2c:f0:52:ca:66:03:b2:b4:78:89:38:b6:b5:d4:
42:05:7b:d7:c6:28:5e:ec:06:c2:a2:f1:91:4e:46:08:b6:f8:
de:6f:a1:5c:e6:32:e1:32:d6:47:d0:cd:86:d6:ea:ea:b3:2f:
8e:b1:c3:f2:a7:ce:c3:55:6c:f6:de:fe:45:b2:36:28:60:f7:
f9:b4:cc:68:81:6b:b8:47:39:e9:73:a4:8a:2c:47:72:3a:bc:
30:39:6b:1b:c2:d1:ce:0f:a3:1b:19:0d:0b:86:4f:f4:80:9e:
b5:85:5b:f5:82:8c:1a:4d:6f:e9:0f:bd:b1:bf:be:a8:09:fd:
53:ef:d5:63:4d:0f:87:74:02:90:46:46:2d:1b:b0:05:33:54:
df:22:cf:4e:ff:b0:23:03:03:db:20:42:4e:3e:b4:ab:15:e9:
a5:a0:f6:d9:7a:d4:b0:b5:e6:0d:00:61:ba:92:69:07:09:6b:
ae:c0:3a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:13:21 2025 by rpki-client