Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ce9faf-1bdd-48ba-9039-6f0f8b4d62a7/1/3ykuKnmBwa0fKVOs49q30FOIWBc.roa
File: 3ykuKnmBwa0fKVOs49q30FOIWBc.roa (raw, json)
Hash identifier: CH9OA1zGHsXYPopPmUmVFYnFjCug0+rLITzCXzWDWhQ=
Subject key identifier: DF:29:2E:2A:79:81:C1:AD:1F:29:53:AC:E3:DA:B7:D0:53:88:58:17
Certificate issuer: /CN=1bab2c28a118420542d82f199d0e15b5d76ccfe9
Certificate serial: 012013B7
Authority key identifier: 1B:AB:2C:28:A1:18:42:05:42:D8:2F:19:9D:0E:15:B5:D7:6C:CF:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6ssKKEYQgVC2C8ZnQ4Vtddsz-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ce9faf-1bdd-48ba-9039-6f0f8b4d62a7/1/3ykuKnmBwa0fKVOs49q30FOIWBc.roa
Signing time: Sat 01 Jan 2022 12:00:39 +0000
ROA not before: Sat 01 Jan 2022 12:00:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212301
IP address blocks: 91.230.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18879415 (0x12013b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bab2c28a118420542d82f199d0e15b5d76ccfe9
Validity
Not Before: Jan 1 12:00:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df292e2a7981c1ad1f2953ace3dab7d053885817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e7:71:26:84:7a:3f:b1:33:d4:07:23:9b:ca:
cf:d4:39:52:be:b8:a4:98:d8:7f:1f:12:f0:35:55:
98:64:49:0c:ad:b1:b6:28:81:83:e7:ed:5e:9e:ea:
ce:7d:ac:97:9f:96:d5:62:00:ec:f5:23:82:f7:81:
3f:c2:37:bc:4e:c9:b9:95:e3:9f:26:37:b5:37:58:
5c:7c:36:53:5e:5b:93:18:23:36:8c:55:21:ea:22:
fe:83:fb:b3:d9:76:d7:ba:87:97:53:ad:05:e2:ec:
b3:17:9f:2b:13:4f:fd:d2:1b:d3:be:a4:62:d3:7f:
21:f0:9c:20:0a:7b:2f:db:13:c8:8c:3d:6c:8b:11:
ef:4d:43:2d:4e:c2:5c:68:a2:51:e3:19:9a:2f:8b:
c5:00:04:c3:84:22:ff:d3:a8:6f:ff:d6:9b:b2:a0:
fa:78:16:ff:b0:0e:7a:ce:ed:8f:ee:cb:0b:69:3f:
e8:84:f5:84:b8:93:37:23:12:1f:71:9f:98:e1:71:
fc:9a:f7:4b:0a:c0:b7:12:e2:72:a0:98:73:0b:7b:
f3:14:ff:4e:55:d7:27:27:e2:a5:ca:e3:17:ac:a6:
6f:74:94:7a:eb:02:3a:7b:5c:57:ca:02:88:eb:69:
19:9f:38:e7:85:d1:2a:8f:32:55:f5:78:c3:23:90:
46:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:29:2E:2A:79:81:C1:AD:1F:29:53:AC:E3:DA:B7:D0:53:88:58:17
X509v3 Authority Key Identifier:
keyid:1B:AB:2C:28:A1:18:42:05:42:D8:2F:19:9D:0E:15:B5:D7:6C:CF:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6ssKKEYQgVC2C8ZnQ4Vtddsz-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ce9faf-1bdd-48ba-9039-6f0f8b4d62a7/1/3ykuKnmBwa0fKVOs49q30FOIWBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ce9faf-1bdd-48ba-9039-6f0f8b4d62a7/1/G6ssKKEYQgVC2C8ZnQ4Vtddsz-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.149.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:56:f1:89:68:32:e9:f9:2a:b4:bb:98:ab:87:73:4a:14:7f:
0e:1f:c2:0b:6a:2f:82:3a:71:fe:84:5a:a5:3e:a5:ae:84:72:
10:f9:86:bd:bb:a9:e4:d1:c8:ae:b0:b0:83:d6:b6:f2:25:42:
02:ef:99:ba:18:19:71:b3:71:22:c7:4b:a7:5d:a9:a5:49:79:
e7:1a:66:d9:7d:87:9f:af:62:3c:8a:c9:5e:7d:2c:3b:7f:5f:
60:b7:14:8a:20:cb:4a:32:7b:96:b9:de:ea:4a:f1:4e:dc:db:
cf:23:b4:7b:39:e3:19:c8:e6:2c:8c:4b:8e:9d:6e:70:9e:a7:
9e:df:55:fe:83:a2:fe:a8:e3:68:c6:50:d2:5f:e6:b8:d3:09:
7c:d8:89:5e:59:4d:29:e4:4e:29:a0:a1:22:b2:93:fc:d8:15:
16:e6:74:77:82:05:f6:38:16:08:39:d0:9b:ad:83:06:90:a5:
04:23:89:d6:89:7b:7e:9c:98:58:ce:76:12:39:a0:b3:c4:b5:
2d:ba:9f:33:62:b0:2c:5a:38:1e:bb:e1:06:41:03:98:a5:eb:
22:14:95:91:82:f9:27:3a:0e:39:14:42:33:e3:f1:74:a4:29:
2a:55:30:64:eb:56:00:6b:63:1a:ed:18:c0:d4:8c:6f:23:40:
f1:0a:08:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:56:10 2025 by rpki-client