Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/talgukTPD8oL2wxiXAXrxPFSwAY.roa
File: talgukTPD8oL2wxiXAXrxPFSwAY.roa (raw, json)
Hash identifier: 42F75IV5IsX3V6ll7VHZlZ+ABWMo+HJa6Q+yWz1dm0U=
Subject key identifier: B5:A9:60:BA:44:CF:0F:CA:0B:DB:0C:62:5C:05:EB:C4:F1:52:C0:06
Certificate issuer: /CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Certificate serial: 019423D72BCA1652F12F35BD87ED9B64FEB0
Authority key identifier: CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/talgukTPD8oL2wxiXAXrxPFSwAY.roa
Signing time: Wed 01 Jan 2025 21:48:11 +0000
ROA not before: Wed 01 Jan 2025 21:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58034
IP address blocks: 91.237.130.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:2b:ca:16:52:f1:2f:35:bd:87:ed:9b:64:fe:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Validity
Not Before: Jan 1 21:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b5a960ba44cf0fca0bdb0c625c05ebc4f152c006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a8:d7:01:40:d5:36:30:ea:da:36:1f:c7:fc:
bf:8b:b5:ea:e8:58:86:86:4b:92:b1:3e:d3:22:d2:
5c:58:ac:4f:be:90:dc:e6:75:04:c8:64:49:49:b3:
6c:97:df:34:43:67:2f:bf:0c:98:b0:26:ed:bb:b3:
bb:a2:31:12:05:d5:2a:8c:3c:b9:e9:11:5b:e5:a1:
91:0b:b8:65:bc:48:56:ae:67:14:ee:a1:98:ef:22:
cd:14:64:a8:2c:cd:16:71:04:b2:c3:f9:38:e6:4e:
48:a6:4e:ba:f3:f0:88:1a:cd:53:b7:ca:fd:4a:6f:
cd:d7:31:3d:e5:7f:d0:81:9d:4c:57:a7:bb:02:1b:
96:78:a7:4a:73:53:81:2d:9e:80:76:dd:e3:50:09:
e2:0d:aa:17:9b:2f:5a:d2:17:a3:7d:f0:68:4d:44:
cb:11:f4:22:77:11:79:10:5f:47:e4:e0:4c:7e:8f:
01:d8:1b:69:f4:7e:79:04:df:90:4b:9e:b1:c9:d3:
49:24:c2:df:2f:98:21:05:e1:a3:aa:4c:9b:4b:87:
b0:5c:4e:13:1b:8d:1e:ad:8e:75:ff:4b:fa:25:e5:
c7:98:c2:e8:39:43:37:77:17:ad:c4:31:65:87:36:
49:a9:03:47:95:89:c2:b4:5c:99:5c:56:8c:04:94:
bd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A9:60:BA:44:CF:0F:CA:0B:DB:0C:62:5C:05:EB:C4:F1:52:C0:06
X509v3 Authority Key Identifier:
keyid:CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/talgukTPD8oL2wxiXAXrxPFSwAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.130.0/23
Signature Algorithm: sha256WithRSAEncryption
48:13:d9:33:87:b3:43:f0:ed:e5:63:c7:58:0f:a1:84:4e:e2:
d6:96:e9:8d:66:0d:51:ef:91:9e:5e:2a:84:7f:df:e5:d0:74:
a7:51:ef:cb:79:32:80:9e:b5:3a:89:94:a4:39:5a:d4:5d:11:
9d:2a:77:7a:24:42:1b:d4:9a:e6:81:da:bd:01:29:0d:c5:af:
7a:71:a0:52:0d:d6:a1:59:86:ca:b2:bc:80:75:a6:88:b5:79:
2f:17:d5:d1:c9:b7:29:f0:92:a6:2c:76:1d:c2:55:d7:11:d6:
29:7a:92:6a:6f:04:ac:0f:32:29:c4:fc:d7:a4:1c:96:4f:a9:
fa:6a:f5:c6:18:2e:51:40:1c:45:c2:1f:0a:53:8e:f2:f0:04:
89:94:f9:00:63:4a:e2:7f:e3:1b:82:d4:01:d4:f0:f2:7c:91:
b9:8a:9a:99:46:e6:40:5a:44:75:3c:65:a4:5b:f0:b2:39:a2:
de:9d:fe:7a:ea:48:30:1a:0f:8b:97:41:7e:3a:64:7e:a8:78:
97:b0:e8:64:2f:91:cc:19:94:fa:09:9b:ba:e5:4f:e5:8a:8e:
44:31:6e:ef:94:2f:a7:6b:db:fa:99:61:46:61:e9:1d:a4:de:
fa:1f:72:68:9c:cd:91:a1:f2:82:bf:f3:7f:4b:d2:30:8e:e6:
31:62:d5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:47:02 2025 by rpki-client