Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/i0uO-NLuax7HB42omi2kHcbDiEM.roa
File: i0uO-NLuax7HB42omi2kHcbDiEM.roa (raw, json)
Hash identifier: IVBDonJIexnySCIQnJVqfpdVTnrS/LPe24xwcxOnry0=
Subject key identifier: 8B:4B:8E:F8:D2:EE:6B:1E:C7:07:8D:A8:9A:2D:A4:1D:C6:C3:88:43
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0194258FAD5A7A35694E63412F8DF75E90DE
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/i0uO-NLuax7HB42omi2kHcbDiEM.roa
Signing time: Thu 02 Jan 2025 05:49:20 +0000
ROA not before: Thu 02 Jan 2025 05:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29802
IP address blocks: 91.239.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:ad:5a:7a:35:69:4e:63:41:2f:8d:f7:5e:90:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 2 05:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8b4b8ef8d2ee6b1ec7078da89a2da41dc6c38843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:60:a4:d0:b1:97:d6:3a:9f:30:5e:f8:17:53:
3c:bf:4b:49:62:9f:3c:97:15:df:c9:da:73:27:94:
5e:4a:4d:48:d9:90:a7:3c:28:29:61:51:c1:68:a9:
a2:65:32:66:d2:a6:16:17:0f:a2:b3:54:37:c5:89:
69:a0:44:8b:21:51:a1:43:52:5d:0c:50:b0:e2:ed:
99:5e:61:b0:36:cd:38:ef:2d:b0:2a:1f:8c:83:ab:
75:dc:e6:72:2f:84:d1:c5:e9:d1:3b:95:2d:4e:3b:
ec:eb:41:1c:e3:59:d0:e1:ab:f5:6c:4d:64:31:4d:
f8:7d:68:81:83:06:f4:eb:b1:5e:fd:df:5d:64:7e:
17:4b:12:1f:d3:5d:c8:ee:45:d5:83:06:2c:1e:8c:
22:23:6c:d2:fa:44:6e:0f:63:6b:50:bd:0a:c1:17:
39:f3:6c:64:16:d4:7e:56:4b:5e:13:b2:27:d7:6c:
55:31:00:de:4e:ef:59:7a:a7:b9:8e:80:27:70:0e:
38:2f:c7:02:49:30:48:5a:02:2b:d4:bf:03:47:e9:
30:68:46:3e:48:63:ab:e9:80:80:e0:12:13:bb:eb:
fe:4c:7b:4b:6f:b4:eb:e3:36:29:d3:13:7a:91:33:
9b:04:52:4a:71:01:56:98:1f:93:d7:55:df:a3:c0:
eb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4B:8E:F8:D2:EE:6B:1E:C7:07:8D:A8:9A:2D:A4:1D:C6:C3:88:43
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/i0uO-NLuax7HB42omi2kHcbDiEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.149.0/24
Signature Algorithm: sha256WithRSAEncryption
05:47:e1:a6:88:f2:93:08:aa:48:0d:2e:92:fb:d4:7e:02:c2:
7d:dc:6c:5a:83:37:dc:25:aa:04:6e:11:fd:ab:41:5e:12:77:
35:bd:12:48:e7:92:0c:48:52:43:3e:51:44:34:ce:68:fc:ad:
c0:95:38:bd:4f:c6:c3:75:7a:d6:a7:ab:44:66:b2:9d:d3:a9:
90:f0:2f:f7:81:44:48:1f:05:33:a3:6a:89:09:69:c9:7b:4a:
d9:09:00:2a:80:fd:1a:1e:da:57:b4:05:ee:79:d4:bf:40:c7:
ba:61:be:4b:df:ba:b0:2c:0b:85:23:d9:a6:6f:2c:5c:4c:d7:
20:79:71:6c:24:1e:eb:b3:e1:2c:7a:fd:4e:fb:8b:7b:8f:64:
30:a2:06:b6:b4:80:6a:e5:2a:9e:6c:4a:2a:41:bc:08:88:15:
d3:69:ec:5d:c1:b9:03:1f:6a:4a:98:69:b2:06:58:16:68:37:
a1:da:53:67:b1:01:b9:66:18:c3:21:58:0d:fb:53:fd:36:de:
39:6d:fa:f2:3e:8f:6d:77:a8:b5:2d:ac:76:33:44:ce:78:fb:
5f:5b:eb:f1:78:92:d4:da:61:be:32:56:4c:28:ea:ab:65:7c:
6a:65:80:e1:7d:53:0b:4a:9b:1e:51:36:0c:da:54:52:d3:8e:
c2:e6:cd:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:38:33 2025 by rpki-client