Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/V2LYd0sNAjO6YfvonMphKW30xj0.roa
File: V2LYd0sNAjO6YfvonMphKW30xj0.roa (raw, json)
Hash identifier: jCtsi06JPyPBO/Z5dTRGZpuiSKFLyXc5Zo0EtUSGfF0=
Subject key identifier: 57:62:D8:77:4B:0D:02:33:BA:61:FB:E8:9C:CA:61:29:6D:F4:C6:3D
Certificate issuer: /CN=a53c57b456f06bfeb4621c96a005eacf60c6f614
Certificate serial: 019423D723BA08FD872352FB94722AD1C4AF
Authority key identifier: A5:3C:57:B4:56:F0:6B:FE:B4:62:1C:96:A0:05:EA:CF:60:C6:F6:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTxXtFbwa_60YhyWoAXqz2DG9hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/V2LYd0sNAjO6YfvonMphKW30xj0.roa
Signing time: Wed 01 Jan 2025 21:48:09 +0000
ROA not before: Wed 01 Jan 2025 21:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48955
IP address blocks: 91.235.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:23:ba:08:fd:87:23:52:fb:94:72:2a:d1:c4:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a53c57b456f06bfeb4621c96a005eacf60c6f614
Validity
Not Before: Jan 1 21:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5762d8774b0d0233ba61fbe89cca61296df4c63d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0e:aa:95:e7:2c:46:36:6d:96:87:b8:29:e8:
08:36:d3:45:19:a6:0c:15:15:17:d2:96:77:17:15:
56:f6:9e:d4:bd:dd:ee:e1:e4:a3:f2:81:7d:70:8a:
46:f0:f2:39:c5:c6:f1:83:f9:9d:5b:06:61:ee:4b:
f0:83:f5:c7:04:4f:bf:28:1d:04:ca:4e:77:5b:cf:
b9:ea:55:f6:09:4c:ee:72:5f:12:6b:ff:fc:c7:2e:
c5:60:04:fb:26:44:6f:9a:41:20:bf:1f:3b:65:e2:
aa:7d:dc:0d:2d:b0:4b:dd:d8:ed:de:c2:22:9d:ab:
ac:9e:ec:9c:d2:ae:b1:eb:69:bc:8b:42:be:d0:86:
3c:ce:02:30:6c:49:e7:81:89:63:de:a6:8e:69:a1:
e9:0b:19:1a:f6:82:37:16:5a:19:63:0a:b1:67:c1:
19:51:da:16:6f:fb:5b:33:a9:aa:96:c7:80:ba:76:
c8:89:84:8d:98:cf:7e:8a:b1:41:ea:f1:91:5b:02:
dd:55:5a:e5:d0:6a:2b:a7:46:44:4f:b9:00:b1:59:
3f:57:01:53:10:9a:40:1c:19:61:39:87:16:eb:6f:
c9:c9:19:c7:f1:13:9c:c6:29:ef:14:5c:56:35:f0:
d9:b4:30:1b:ca:5c:0c:40:fd:37:51:73:59:6e:53:
d6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:62:D8:77:4B:0D:02:33:BA:61:FB:E8:9C:CA:61:29:6D:F4:C6:3D
X509v3 Authority Key Identifier:
keyid:A5:3C:57:B4:56:F0:6B:FE:B4:62:1C:96:A0:05:EA:CF:60:C6:F6:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTxXtFbwa_60YhyWoAXqz2DG9hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/V2LYd0sNAjO6YfvonMphKW30xj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/pTxXtFbwa_60YhyWoAXqz2DG9hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.207.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a4:6c:9b:84:41:a5:3a:3a:48:e4:95:fc:bc:a0:c1:e8:30:
44:14:e3:8d:14:da:94:4f:cf:6a:8d:b3:5e:38:25:0d:a4:19:
d6:57:0f:d2:4e:56:bf:20:47:7c:84:11:04:60:4f:24:33:ee:
ee:49:79:f8:8a:68:1d:cd:3a:70:63:1e:07:96:c7:d9:f5:a0:
f6:7d:0c:77:f6:e2:ff:f9:3b:c7:e8:cb:b9:0f:30:08:bc:b0:
e4:e2:6d:f5:e8:5b:e3:ff:ad:0f:ff:63:00:87:34:e7:c6:b2:
76:b1:c8:09:59:50:f9:64:fa:95:91:6b:d2:f4:f2:ea:a6:e3:
2a:c0:20:84:38:04:b6:a0:33:bc:a5:b1:f4:c3:bc:89:fe:2f:
32:1b:38:15:5a:44:ac:ca:99:d5:8f:64:92:cc:94:7a:50:cf:
b1:2b:ae:c2:e9:b4:72:6a:1a:3f:ce:49:3e:61:d0:cd:4e:a5:
b1:19:99:55:36:fe:7b:80:6d:3d:11:66:8c:3e:a4:e6:4a:23:
d8:e6:26:36:f5:e2:c0:bb:d9:87:9a:d8:51:1b:4d:98:d7:26:
30:11:b1:4e:eb:64:6f:f6:96:a5:6b:01:84:79:23:42:9c:af:
c8:e1:8c:45:e2:da:04:8b:00:38:4a:20:5b:2c:67:41:9b:8f:
77:c4:23:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:43:23 2025 by rpki-client