Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/57e419-42f4-4d8c-b6b4-431f27a62ed8/1/WIaOGWdkdCPNTnZSI-W-XTK4te4.roa
File: WIaOGWdkdCPNTnZSI-W-XTK4te4.roa (raw, json)
Hash identifier: jVJuCp2YFk4DEa8ZbdmENwzLLMmsULw4LDZkckWi3gI=
Subject key identifier: 58:86:8E:19:67:64:74:23:CD:4E:76:52:23:E5:BE:5D:32:B8:B5:EE
Certificate issuer: /CN=038af86795417a3584d616375209a72efee2462b
Certificate serial: 0194282662A045D95A8E4A3F120D018530FB
Authority key identifier: 03:8A:F8:67:95:41:7A:35:84:D6:16:37:52:09:A7:2E:FE:E2:46:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A4r4Z5VBejWE1hY3UgmnLv7iRis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/57e419-42f4-4d8c-b6b4-431f27a62ed8/1/WIaOGWdkdCPNTnZSI-W-XTK4te4.roa
Signing time: Thu 02 Jan 2025 17:53:11 +0000
ROA not before: Thu 02 Jan 2025 17:53:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2856
IP address blocks: 91.142.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:62:a0:45:d9:5a:8e:4a:3f:12:0d:01:85:30:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=038af86795417a3584d616375209a72efee2462b
Validity
Not Before: Jan 2 17:53:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=58868e1967647423cd4e765223e5be5d32b8b5ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:01:ac:92:c4:6d:fb:66:29:7b:5c:34:b0:35:
5d:54:11:a3:82:51:05:63:9e:40:69:16:c0:d6:2f:
d6:67:ac:24:37:61:82:f3:e3:07:58:c6:01:84:93:
ea:c9:96:1c:2c:27:ca:b5:6a:1b:f9:94:65:9d:36:
6a:d7:d7:a5:21:40:70:3e:a8:9b:e9:25:d5:1d:7a:
15:7d:bb:74:04:4c:7b:30:a2:e7:f7:63:9a:1d:da:
cf:be:ae:55:59:0d:0e:1d:e8:be:42:76:64:9d:9d:
c8:9e:12:66:93:1a:bc:a5:eb:00:1b:ef:3c:49:39:
0e:dd:83:4c:27:fc:f1:3f:53:43:18:27:92:72:4f:
72:f3:1e:0a:76:b7:25:10:64:5f:55:94:8f:42:6e:
ff:07:ce:0c:12:3b:4a:2b:3e:a3:68:f2:78:16:99:
82:7b:30:cd:ad:7d:87:cb:c6:47:6e:7a:4e:9e:87:
d5:ed:8c:8f:af:ad:d7:08:9c:9b:e1:ce:10:2a:99:
7c:24:29:d5:51:36:8b:ce:07:bd:65:ef:b4:59:da:
3a:38:cd:b2:32:d3:15:84:6c:37:ae:59:f0:1b:c5:
12:87:bb:05:3c:da:cd:b7:a3:3d:dc:d3:87:8d:89:
75:c5:15:73:17:54:2f:fe:b5:b2:68:8d:65:09:e8:
c5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:86:8E:19:67:64:74:23:CD:4E:76:52:23:E5:BE:5D:32:B8:B5:EE
X509v3 Authority Key Identifier:
keyid:03:8A:F8:67:95:41:7A:35:84:D6:16:37:52:09:A7:2E:FE:E2:46:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A4r4Z5VBejWE1hY3UgmnLv7iRis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/57e419-42f4-4d8c-b6b4-431f27a62ed8/1/WIaOGWdkdCPNTnZSI-W-XTK4te4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/57e419-42f4-4d8c-b6b4-431f27a62ed8/1/A4r4Z5VBejWE1hY3UgmnLv7iRis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.128.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:30:8e:24:84:70:15:5c:b7:60:88:21:6d:3d:42:55:b4:d2:
72:c3:d2:97:ae:5f:03:e0:9f:27:c6:0f:39:30:a4:d3:b5:50:
4f:02:08:26:30:46:9b:d0:ce:39:91:12:8d:51:6d:96:e2:5f:
e0:74:15:c0:cc:57:ef:fe:65:68:c3:82:5a:10:9d:f9:be:1f:
a2:30:ac:94:36:6e:68:cf:96:14:85:0e:75:b2:42:b4:e7:2f:
e3:fa:26:3e:62:1e:90:b9:6d:d2:8a:e2:62:10:ea:5c:4e:53:
f8:a4:5d:79:60:29:9c:03:ac:b0:1f:ed:7b:2e:48:67:cb:cd:
41:3e:81:80:9d:ad:0f:ef:48:3b:ee:22:c1:68:0f:d6:5b:58:
57:b3:1a:ca:f5:e9:c0:70:2c:c0:65:9d:8c:49:c0:b5:83:df:
63:58:d3:90:90:da:84:6b:0b:64:12:d4:95:d4:c8:0c:98:f4:
75:59:1e:63:06:b0:7e:0f:30:6b:5a:d4:c6:ef:82:5f:3d:9b:
aa:0d:df:3f:db:18:53:40:35:60:e5:62:1f:ad:37:7f:bc:fc:
80:86:66:18:a7:1e:e2:29:99:99:d0:22:0f:24:c0:a0:4a:7c:
12:0c:1a:8e:89:72:c1:e8:fd:b5:79:13:83:31:b7:7b:91:b9:
d6:90:17:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:55:26 2025 by rpki-client