Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/clB1f_NiIoBJs06I1N2ua9KcprY.roa
File: clB1f_NiIoBJs06I1N2ua9KcprY.roa (raw, json)
Hash identifier: Hc2uBMDIF+2ALpimHYsk+DChTWTq8OrIlMci+ZWtnyA=
Subject key identifier: 72:50:75:7F:F3:62:22:80:49:B3:4E:88:D4:DD:AE:6B:D2:9C:A6:B6
Certificate issuer: /CN=0d6bad3f3dd0ac556f3f7a80d1c69b9fd964dd6c
Certificate serial: 019424456962281BE929E41ECAB6ACEC56AE
Authority key identifier: 0D:6B:AD:3F:3D:D0:AC:55:6F:3F:7A:80:D1:C6:9B:9F:D9:64:DD:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWutPz3QrFVvP3qA0cabn9lk3Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/clB1f_NiIoBJs06I1N2ua9KcprY.roa
Signing time: Wed 01 Jan 2025 23:48:36 +0000
ROA not before: Wed 01 Jan 2025 23:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57854
IP address blocks: 91.235.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:69:62:28:1b:e9:29:e4:1e:ca:b6:ac:ec:56:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d6bad3f3dd0ac556f3f7a80d1c69b9fd964dd6c
Validity
Not Before: Jan 1 23:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7250757ff362228049b34e88d4ddae6bd29ca6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:56:e4:88:95:6e:28:17:3d:81:e7:00:0f:65:
19:01:54:1d:27:5e:fa:d0:fe:b8:12:7c:dd:b0:f6:
21:7f:25:1a:2a:c4:0e:57:f7:a4:bd:c7:85:88:9e:
9f:3e:14:ef:53:b8:73:fa:04:6f:f4:bb:eb:43:f0:
66:6f:72:96:5b:80:a7:75:78:86:3c:e4:5c:6b:04:
31:98:47:24:aa:05:dd:08:51:a8:7c:8b:54:1c:2f:
4d:74:05:4a:1b:13:60:56:ff:04:27:1a:89:b2:eb:
43:fc:3c:ad:51:25:77:b0:b2:ed:af:36:79:b3:1a:
7b:42:1f:0e:24:ff:0c:2a:9a:cb:e2:f2:da:ab:f9:
6c:28:bb:1d:63:9b:6b:bc:ec:8d:c8:e9:81:90:40:
77:0c:ed:82:89:a1:8c:27:3e:f6:a1:65:27:b5:b3:
7b:c9:17:64:4a:dc:11:45:cb:40:31:54:c0:00:c6:
d6:68:4b:ce:ef:67:1c:7b:43:c1:98:5f:c3:62:03:
8f:37:f4:cb:cc:52:ea:3e:94:33:a0:c6:4d:ac:ca:
3e:b6:b2:7b:dd:5f:7d:03:2f:f6:da:08:66:2b:ad:
79:76:d3:fa:9b:24:51:c7:e9:d2:be:bf:d5:d9:f4:
14:90:ab:bb:27:6e:74:70:dc:fd:a0:ed:c9:ac:fb:
28:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:50:75:7F:F3:62:22:80:49:B3:4E:88:D4:DD:AE:6B:D2:9C:A6:B6
X509v3 Authority Key Identifier:
keyid:0D:6B:AD:3F:3D:D0:AC:55:6F:3F:7A:80:D1:C6:9B:9F:D9:64:DD:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWutPz3QrFVvP3qA0cabn9lk3Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/clB1f_NiIoBJs06I1N2ua9KcprY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/DWutPz3QrFVvP3qA0cabn9lk3Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.242.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c2:69:37:c7:66:05:4b:0f:08:d3:eb:5b:40:b3:3d:a2:7e:
37:2b:46:ab:23:95:fb:27:c4:df:c4:ef:f1:44:e9:58:f4:20:
3d:8f:63:56:9f:bf:18:01:97:f5:23:f3:2c:33:fc:ea:dd:0c:
62:88:ea:5a:c2:ab:4d:2f:19:66:d5:50:50:24:f9:41:9f:ce:
2e:da:fc:df:4c:74:37:61:81:d2:fe:a1:ce:6b:72:4a:65:69:
ad:06:11:a8:06:62:cc:50:2c:ff:67:ed:d9:4f:59:36:95:2a:
5d:75:d7:a4:8f:8f:6d:9c:18:99:55:cf:f4:f1:24:be:cc:69:
4f:43:8c:5f:ae:b1:86:98:00:b3:b2:4d:5d:c4:a5:d3:7e:de:
40:16:c7:b6:cd:52:3b:c7:75:01:c1:fc:e7:9e:a3:af:d8:08:
61:28:e5:eb:ce:b1:ee:2f:4d:84:50:c5:5b:30:63:ba:8a:3d:
22:7a:75:fe:9d:62:ae:be:09:b4:85:47:c2:ac:ce:fc:63:73:
e5:37:64:ab:5e:0e:bb:73:1f:fd:7c:38:da:9c:67:cb:98:a0:
d4:8a:a1:0d:04:02:9b:32:95:a4:b3:15:27:69:4d:0b:75:ca:
4e:bf:81:fb:06:ae:3f:95:e0:07:c3:3a:58:ac:90:6f:d3:04:
9b:7c:6c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:12:52 2025 by rpki-client