Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/06tgDhMET5PEFJxe6WB-BV1M_gE.roa
File: 06tgDhMET5PEFJxe6WB-BV1M_gE.roa (raw, json)
Hash identifier: mCqrz6qmS27RhPQU4uNyx6aFC+5GW4aIzmbKH5kTy4E=
Subject key identifier: D3:AB:60:0E:13:04:4F:93:C4:14:9C:5E:E9:60:7E:05:5D:4C:FE:01
Certificate issuer: /CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Certificate serial: 0194222025C8D10D3DBC337FB2B152EA0841
Authority key identifier: 5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/06tgDhMET5PEFJxe6WB-BV1M_gE.roa
Signing time: Wed 01 Jan 2025 13:48:39 +0000
ROA not before: Wed 01 Jan 2025 13:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30058
IP address blocks: 91.211.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:25:c8:d1:0d:3d:bc:33:7f:b2:b1:52:ea:08:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Validity
Not Before: Jan 1 13:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d3ab600e13044f93c4149c5ee9607e055d4cfe01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:08:d8:ee:a3:53:bf:92:e4:8f:aa:dd:b5:d7:
d9:51:24:44:d7:17:6b:5b:5c:70:ba:04:dd:03:e9:
46:f7:7c:ee:df:09:6a:ff:4a:83:61:96:2a:76:bf:
8b:99:2f:09:cb:5f:8a:44:e9:64:7b:22:4e:eb:7c:
75:38:02:11:23:04:cf:ae:77:20:d4:6b:93:5b:8c:
ca:de:53:fb:21:35:bb:d4:70:c3:45:16:ca:cc:04:
18:d8:03:b2:a7:e1:4b:77:11:c6:e6:54:eb:f0:5a:
39:20:21:3e:d8:25:a6:50:c9:0e:29:87:52:60:1c:
14:5d:fd:c1:3b:b6:1e:6d:e7:8f:0c:5f:84:16:39:
0f:44:e3:0e:6a:68:cb:45:08:14:01:fa:0d:dc:bc:
50:6d:9b:de:2b:b9:25:cb:8f:be:43:0b:32:6c:ce:
2f:4d:76:e5:08:b4:de:bf:c9:72:24:cd:ea:e4:bc:
fd:4b:ae:13:22:90:b2:55:7b:80:dc:60:62:22:3a:
93:f3:66:f3:29:a0:29:2b:45:3c:b8:73:f9:bf:24:
01:24:8f:30:7b:f6:3c:64:a5:ee:6d:5d:f9:8c:89:
53:3b:e1:c4:c5:0c:88:e0:64:42:0e:f3:6d:6b:60:
68:6f:9f:ab:3e:c8:b4:1e:68:72:a1:e6:03:1c:6c:
40:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AB:60:0E:13:04:4F:93:C4:14:9C:5E:E9:60:7E:05:5D:4C:FE:01
X509v3 Authority Key Identifier:
keyid:5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/06tgDhMET5PEFJxe6WB-BV1M_gE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/XmFA8XMSeE72KuO-AwwMLMZhpwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.89.0/24
Signature Algorithm: sha256WithRSAEncryption
55:c4:3b:c3:1a:65:d4:ba:20:df:70:c7:1c:6c:45:9d:6b:36:
48:0f:da:2d:89:a4:fa:60:df:4a:81:0d:34:f5:86:8d:19:bb:
76:1f:b6:0e:e3:b6:ff:85:8c:88:c2:10:e4:ce:b2:dd:82:5e:
19:a3:dd:f4:48:f1:7b:fc:f5:fb:29:9b:a4:71:ac:9a:40:c4:
34:63:d0:00:bb:0a:50:1b:9d:3f:fd:35:e0:9f:0e:78:9a:4d:
8f:56:7c:29:3f:ba:c2:27:90:c4:5f:ae:b5:a4:eb:65:e2:39:
c3:ae:07:7b:63:5d:37:bc:b0:5a:11:8e:3f:58:af:39:20:80:
88:e5:74:4e:67:c6:45:5c:8b:a6:1d:51:66:46:94:96:1b:2c:
8c:86:d4:1e:ef:db:5e:8b:69:4e:99:3e:a0:94:ba:30:ed:46:
e3:fa:ee:92:ee:f8:70:55:e2:09:a6:2b:6a:62:ce:b0:a9:f7:
b1:3f:03:e7:68:3a:15:bd:58:93:71:fa:2c:7d:88:d9:80:89:
21:7c:e1:10:58:35:b7:c5:92:93:63:24:f4:fa:e7:0b:0a:c8:
e8:86:c1:0f:e7:14:c3:a9:af:de:e8:5b:50:bf:57:4a:75:e7:
94:2c:12:5c:f5:69:b7:ab:98:b6:ff:e7:f5:49:81:fe:af:a1:
8d:c8:44:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:51:33 2025 by rpki-client