Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/bf4679-7490-4446-b320-9ff6a387fcf6/1/1-IrpxXcT5upWjLAfoK0k0ndiIUc.roa
File: 1-IrpxXcT5upWjLAfoK0k0ndiIUc.roa (raw, json)
Hash identifier: DaoAxa+RppGpLAl+l514Y+pcfivYrnIDxi3YjE421us=
Subject key identifier: F8:8A:E9:C5:77:13:E6:EA:56:8C:B0:1F:A0:AD:24:D2:77:62:21:47
Certificate issuer: /CN=d3b33bd01482071648d697737eaf91612b27fc27
Certificate serial: 01856F021BA2468221904739EE268EA12567
Authority key identifier: D3:B3:3B:D0:14:82:07:16:48:D6:97:73:7E:AF:91:61:2B:27:FC:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07M70BSCBxZI1pdzfq-RYSsn_Cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/bf4679-7490-4446-b320-9ff6a387fcf6/1/1-IrpxXcT5upWjLAfoK0k0ndiIUc.roa
Signing time: Sun 01 Jan 2023 20:24:47 +0000
ROA not before: Sun 01 Jan 2023 20:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49340
IP address blocks: 91.211.144.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:1b:a2:46:82:21:90:47:39:ee:26:8e:a1:25:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b33bd01482071648d697737eaf91612b27fc27
Validity
Not Before: Jan 1 20:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f88ae9c57713e6ea568cb01fa0ad24d277622147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d4:84:38:97:d7:fe:0a:f5:95:11:79:1a:7f:
3c:bb:fd:26:28:49:69:c1:8b:22:b1:88:04:84:0d:
ab:fb:5e:d0:17:a3:3b:65:69:27:de:05:e4:e9:00:
d5:cd:9d:8c:7a:17:2a:97:5c:a7:d8:cb:b7:f0:29:
55:65:27:5a:60:fc:3e:2a:be:5b:49:11:11:4c:39:
34:3a:36:28:f2:68:f6:d7:74:f7:3b:24:7c:a0:34:
a7:bb:48:aa:67:0d:ad:2f:f8:8a:7b:ca:9b:98:54:
0d:9d:ac:aa:ca:ad:6c:0a:81:cb:7c:1b:d4:c2:7f:
71:73:ad:ba:41:75:bd:cc:18:7f:e8:1f:e3:88:85:
69:16:85:ea:26:3c:8e:13:55:09:48:82:7a:0e:5e:
6c:ac:73:f3:ec:ca:c7:91:04:af:cc:96:7e:ba:b5:
d8:33:22:32:89:0a:2a:3a:8b:5f:7e:a1:ae:b8:ac:
74:34:83:13:5d:7c:e6:55:e6:33:6f:22:fb:e8:b9:
ad:8a:a0:7a:3f:2a:8c:4e:49:ac:f5:fa:fc:49:af:
ac:46:fb:36:81:c1:b4:5d:93:87:a1:6d:7c:68:73:
e9:0a:ef:ef:da:ee:8b:2d:8e:1f:f6:29:47:f5:73:
20:07:8f:e9:41:ef:e1:ec:bf:cf:60:d0:ad:24:d4:
8e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8A:E9:C5:77:13:E6:EA:56:8C:B0:1F:A0:AD:24:D2:77:62:21:47
X509v3 Authority Key Identifier:
keyid:D3:B3:3B:D0:14:82:07:16:48:D6:97:73:7E:AF:91:61:2B:27:FC:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07M70BSCBxZI1pdzfq-RYSsn_Cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/bf4679-7490-4446-b320-9ff6a387fcf6/1/1-IrpxXcT5upWjLAfoK0k0ndiIUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/bf4679-7490-4446-b320-9ff6a387fcf6/1/07M70BSCBxZI1pdzfq-RYSsn_Cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.144.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:c8:d0:ff:05:6d:8d:71:f9:d5:8f:6f:df:27:0d:bf:5e:5a:
6a:f5:02:43:da:33:a5:bb:a4:27:0c:5b:de:dc:09:65:8d:57:
07:43:b6:61:08:45:ff:01:19:1c:e0:af:52:ad:14:34:15:f2:
c0:35:59:49:e7:49:2e:1e:51:2b:a9:96:71:de:88:ad:31:66:
ae:34:16:98:a7:37:2e:40:82:9f:b9:84:71:ec:1a:a3:f7:6a:
5a:ec:fe:6c:de:94:db:94:ec:29:0c:f5:63:d8:77:a6:22:90:
6e:68:5f:cf:d4:97:fa:09:36:d6:96:61:2d:84:cb:b7:de:7d:
58:cf:07:d4:59:b7:0b:7f:dc:a8:73:04:d3:55:a3:28:7d:4d:
a0:1e:37:be:0a:0f:95:27:07:d5:92:83:21:93:64:0b:33:1e:
e5:97:0a:6b:ca:da:c4:ae:7b:56:fa:8f:c4:23:ee:b4:3c:cc:
d0:ab:58:30:50:f7:6c:ae:f9:06:6a:e6:d8:de:c3:60:24:6f:
d4:1a:b6:fd:c8:ac:aa:7d:e3:58:c5:7c:fa:c1:20:47:d0:f8:
ac:d7:4f:39:05:c6:6b:fb:06:bd:3b:af:9b:38:98:c5:2a:17:
29:ed:4b:45:2d:bc:ca:3f:62:60:4a:f1:1b:ac:29:1a:3a:93:
ef:90:d3:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:30:44 2025 by rpki-client