Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/ORnPU3XYj8INr1PwrAlRT4r5P08.roa
File: ORnPU3XYj8INr1PwrAlRT4r5P08.roa (raw, json)
Hash identifier: 7r6XU5dOhFKsfQf25nxALrdSf51+9VTJXHTPK5W03mE=
Subject key identifier: 39:19:CF:53:75:D8:8F:C2:0D:AF:53:F0:AC:09:51:4F:8A:F9:3F:4F
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 01942067C3723F1B46DE93DEA9D25EA6EF74
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/ORnPU3XYj8INr1PwrAlRT4r5P08.roa
Signing time: Wed 01 Jan 2025 05:47:38 +0000
ROA not before: Wed 01 Jan 2025 05:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211440
IP address blocks: 91.217.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:c3:72:3f:1b:46:de:93:de:a9:d2:5e:a6:ef:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Jan 1 05:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3919cf5375d88fc20daf53f0ac09514f8af93f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2a:79:b2:1d:ee:53:1a:a2:c3:66:de:45:9b:
3c:76:79:c6:cd:39:c7:56:e6:c0:6a:26:58:84:8f:
56:73:9d:3e:cf:0f:0f:d1:2b:a0:94:8e:6e:c0:d0:
b1:da:ba:49:90:e6:2f:b5:ad:fa:74:67:8d:c8:61:
a8:d5:55:98:56:08:de:67:9b:77:45:b9:c6:1d:ef:
1e:14:18:9d:35:c8:da:36:f4:7c:04:ac:ce:4e:3e:
da:60:39:9f:f0:a2:13:07:60:42:f1:59:38:9d:d8:
e6:47:1a:51:54:a9:31:02:07:af:b6:af:2b:ed:6b:
95:8b:a5:f2:e7:76:62:3a:54:ee:99:37:4d:64:0e:
28:b1:a0:90:c3:01:cd:45:4d:b0:d5:7b:e6:58:7d:
bd:10:b7:34:d6:74:a8:b9:e7:19:ef:bc:2c:40:97:
e4:2c:cd:ec:34:e0:44:45:4f:54:94:eb:d0:b2:55:
d8:db:df:ff:c1:06:82:b1:f4:c5:e1:a4:32:d0:2c:
3a:13:54:a4:bb:e4:bb:2c:2d:8d:eb:14:a3:97:65:
72:89:1c:f8:fd:77:f0:c1:56:2a:c1:13:ef:7c:b9:
ca:90:96:2f:73:58:30:3b:cc:b1:67:e1:5f:09:dd:
e8:b0:bd:e9:cd:d7:d1:4c:1e:71:58:8c:15:0c:1a:
8b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:19:CF:53:75:D8:8F:C2:0D:AF:53:F0:AC:09:51:4F:8A:F9:3F:4F
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/ORnPU3XYj8INr1PwrAlRT4r5P08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.167.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:fa:d8:f5:ce:9f:77:1a:16:cf:57:5e:7d:0d:54:33:78:b2:
3e:ae:f8:c3:40:a9:ed:1a:a3:16:26:09:2d:83:c8:32:6f:7f:
7b:ad:be:e7:fd:65:35:90:a1:7a:9b:b7:45:62:91:18:f3:a3:
36:99:27:31:25:44:3a:d5:d9:b3:25:eb:40:bf:c5:41:9c:3f:
4a:56:b3:43:bd:93:71:81:a4:6a:23:84:5a:2d:d4:3e:ec:57:
f8:01:ea:21:fa:88:d1:14:cd:5d:01:c6:16:7e:f0:f5:28:02:
a0:a3:b3:78:95:db:82:79:bb:d7:17:2c:bc:56:b0:15:b5:e4:
70:b9:e0:03:7f:df:c6:be:62:08:17:6a:b4:8d:a7:b9:02:74:
77:04:fb:03:17:ee:20:1c:9f:c0:4e:4f:e2:29:3f:9e:2e:b7:
1c:54:28:83:25:d3:15:62:68:c2:d6:69:8b:6f:6f:16:57:0e:
73:22:05:55:73:62:3f:8f:74:7d:72:0a:8c:6b:36:38:cf:5e:
f4:d9:1c:7c:cf:9d:d5:51:a9:69:ee:2a:23:d9:df:ee:c8:6c:
bd:e9:ff:02:cd:a5:ca:33:37:11:09:26:e9:95:38:8d:ee:22:
a1:cd:d8:34:ad:b9:e4:ed:12:29:41:b8:6b:cb:cd:89:86:29:
41:0f:81:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:40:01 2025 by rpki-client