Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/maMU5oJhsJ1V5FQy4r-8FE5z6rs.roa
File: maMU5oJhsJ1V5FQy4r-8FE5z6rs.roa (raw, json)
Hash identifier: Ey+owV6vDg9uDKCm4RX2946OjbcnRdRA9AuFHm3cyGs=
Subject key identifier: 99:A3:14:E6:82:61:B0:9D:55:E4:54:32:E2:BF:BC:14:4E:73:EA:BB
Certificate issuer: /CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Certificate serial: 351E95B4
Authority key identifier: 3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/maMU5oJhsJ1V5FQy4r-8FE5z6rs.roa
Signing time: Sat 04 Jun 2022 03:52:20 +0000
ROA not before: Sat 04 Jun 2022 03:52:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213296
IP address blocks: 91.108.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891196852 (0x351e95b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adeea3b6aac4d834b4fd7c2e5d3c397f61f43d6
Validity
Not Before: Jun 4 03:52:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99a314e68261b09d55e45432e2bfbc144e73eabb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:91:50:87:6a:03:d9:59:04:6c:21:48:cb:73:
34:9a:58:a7:f0:b8:ef:d8:cb:74:ec:b7:84:91:f7:
98:1b:85:b5:74:35:45:da:9d:cf:38:61:e5:5b:98:
5f:19:bd:c6:f4:60:da:60:aa:2c:06:c5:1c:53:fa:
a4:05:60:71:ed:bb:a5:54:1a:7e:57:7f:35:66:a1:
87:01:68:fb:4a:a8:92:dd:c1:c5:3b:ff:bb:85:cf:
df:c4:3b:80:0a:d6:f0:f4:5d:db:40:e8:80:f6:83:
62:aa:d4:27:76:37:7d:d4:c6:cc:fd:92:8f:1b:9e:
43:57:ee:da:8f:ce:00:2a:fa:cf:e5:fc:5d:da:c7:
bd:19:ea:d1:c0:47:3f:77:8b:71:6f:b0:cb:b3:94:
4d:87:34:42:b3:18:e0:f3:1b:1a:ec:4f:bf:e2:87:
7b:a7:0d:c8:92:36:0f:50:e2:0c:c7:e4:a4:ba:e9:
84:42:74:e9:38:5c:9b:87:01:8b:bc:cf:c0:80:32:
11:06:02:0f:1a:ac:05:4c:69:53:47:1d:15:60:30:
33:67:ba:b3:5d:7d:1d:a4:52:80:15:83:c0:e8:df:
73:73:33:71:6d:54:e2:ff:8c:32:a4:a2:f3:4b:6d:
96:bc:c2:e0:25:76:ad:71:35:31:80:53:34:b7:8b:
6a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A3:14:E6:82:61:B0:9D:55:E4:54:32:E2:BF:BC:14:4E:73:EA:BB
X509v3 Authority Key Identifier:
keyid:3A:DE:EA:3B:6A:AC:4D:83:4B:4F:D7:C2:E5:D3:C3:97:F6:1F:43:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/maMU5oJhsJ1V5FQy4r-8FE5z6rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/015f44-0f4c-4714-8615-23b072f5b188/1/Ot7qO2qsTYNLT9fC5dPDl_YfQ9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.224.0/19
Signature Algorithm: sha256WithRSAEncryption
a0:b6:94:c7:94:fa:76:88:25:81:1d:4d:a2:0b:eb:2d:d2:9f:
a5:db:80:a0:b6:b4:51:5d:84:a3:43:e4:e8:e9:b4:57:eb:79:
84:cd:30:6d:a3:01:19:51:d9:4f:6f:d3:a1:fa:b7:b4:ca:c9:
09:4d:77:62:58:f9:3a:34:df:1c:0e:cf:7e:51:74:3b:c1:b1:
59:ce:a4:f6:d7:ab:0e:41:17:d2:94:ac:3b:47:4e:03:10:1b:
92:42:ad:a4:22:f6:e9:75:74:92:c9:90:f6:82:9f:c5:eb:5f:
0a:18:02:2b:a0:2d:03:53:31:6e:d1:07:16:0e:5d:85:fd:6b:
de:b1:c4:ca:27:48:b5:16:e2:2e:cb:f5:48:bc:aa:3a:56:b0:
73:56:f6:71:92:1b:f1:09:08:bf:11:e4:a6:b3:9d:08:9b:73:
7e:65:2f:8d:96:c8:17:6f:b0:68:cb:53:18:22:cc:02:72:24:
d7:3b:64:7d:65:48:4a:e8:c7:54:c8:dc:70:f5:45:64:e3:6c:
4d:e3:a4:06:94:77:7a:c6:f9:d8:52:1e:fe:d6:9e:21:a6:9b:
19:ec:03:76:0e:a2:a9:c6:52:4b:01:61:38:ed:88:c2:06:2a:
39:e2:c9:dd:4e:33:22:76:3a:31:bc:e6:59:0c:dd:58:fb:57:
7e:26:9a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:49 2025 by rpki-client