Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/37Mrb5jz_VuOutSa6_d9sUKxP2M.roa
File: 37Mrb5jz_VuOutSa6_d9sUKxP2M.roa (raw, json)
Hash identifier: 4A932DNe1L1OmT0fAoCdwH5MWxKdrl2KZaQ0q8yH66w=
Subject key identifier: DF:B3:2B:6F:98:F3:FD:5B:8E:BA:D4:9A:EB:F7:7D:B1:42:B1:3F:63
Certificate issuer: /CN=0032534e8d560d73553c632bba10344a7c816614
Certificate serial: 0464D8D2
Authority key identifier: 00:32:53:4E:8D:56:0D:73:55:3C:63:2B:BA:10:34:4A:7C:81:66:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ADJTTo1WDXNVPGMruhA0SnyBZhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/37Mrb5jz_VuOutSa6_d9sUKxP2M.roa
Signing time: Sat 01 Jan 2022 00:51:31 +0000
ROA not before: Sat 01 Jan 2022 00:51:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24685
IP address blocks: 91.202.108.0/24 maxlen: 32
194.28.198.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73717970 (0x464d8d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0032534e8d560d73553c632bba10344a7c816614
Validity
Not Before: Jan 1 00:51:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfb32b6f98f3fd5b8ebad49aebf77db142b13f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:22:5f:83:f7:7a:5b:75:23:46:dc:eb:cc:fb:
c0:9e:27:9c:41:e8:0e:78:62:94:67:32:b8:71:f4:
c6:d8:7f:7c:17:ca:f0:71:0c:47:c7:86:0f:79:7d:
fe:74:9f:30:87:73:e0:04:de:41:bf:18:b8:8d:69:
b7:09:2e:50:e8:b8:24:98:a7:2b:f7:be:40:de:53:
fd:f4:7c:f6:f4:9f:2b:e8:d9:c2:01:f6:8c:02:27:
42:c8:89:83:64:6a:ff:bb:07:dd:94:a2:2b:43:5d:
ec:98:6c:a9:b8:d6:c6:69:36:9a:d3:ff:d7:d9:30:
52:c2:ce:15:92:ed:61:40:86:e6:a5:48:0d:e8:0a:
fb:30:50:5d:89:d3:9a:67:11:4d:8c:13:5d:e5:03:
9f:2d:be:13:ca:bd:47:a0:25:98:f4:ed:3e:89:3e:
5c:61:94:7a:87:07:be:71:76:d3:d6:1a:14:e3:06:
68:1b:b4:97:ae:3e:36:59:ca:b6:16:9a:35:ce:8e:
eb:b7:50:07:f2:7c:2f:54:81:fb:0c:00:88:a6:e4:
17:47:0c:76:cd:00:df:c2:ff:21:1b:e2:9d:75:8c:
c4:e3:24:bc:4c:16:c6:f1:5e:25:5a:a6:71:b0:7b:
3e:f5:3e:1e:e6:72:36:98:ed:32:0b:8e:8c:ae:14:
07:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B3:2B:6F:98:F3:FD:5B:8E:BA:D4:9A:EB:F7:7D:B1:42:B1:3F:63
X509v3 Authority Key Identifier:
keyid:00:32:53:4E:8D:56:0D:73:55:3C:63:2B:BA:10:34:4A:7C:81:66:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ADJTTo1WDXNVPGMruhA0SnyBZhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/37Mrb5jz_VuOutSa6_d9sUKxP2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/ADJTTo1WDXNVPGMruhA0SnyBZhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.108.0/24
194.28.198.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:1f:02:27:d9:d1:b3:71:f2:5c:4e:6f:62:b1:28:cb:68:fb:
e6:24:86:ba:f3:00:3e:40:f7:a5:17:29:b6:55:b9:ca:5b:f8:
36:e5:7c:0e:d6:65:59:49:24:25:c1:34:5b:1e:65:07:5f:dd:
bf:9c:31:a1:6d:78:6d:b0:b7:f6:28:1e:f8:0b:c8:4c:61:4b:
cd:62:ed:9f:21:79:d2:d3:bd:99:32:81:10:92:18:7d:c6:8e:
49:53:6b:a6:97:e0:d0:49:0f:54:5e:58:10:fb:f1:7e:d6:7f:
65:33:4d:c0:06:c7:27:db:39:da:78:b7:9b:24:c3:db:1e:4b:
83:bd:fe:b9:14:b6:08:5d:ac:7e:31:0f:c9:8f:22:b7:c6:80:
c6:ae:41:03:f1:c3:1a:50:62:91:0b:5a:8e:f9:09:0e:2a:b1:
72:40:9a:7f:68:73:78:a5:18:1e:cf:ff:42:47:4b:72:21:1d:
50:55:a3:33:cb:43:63:fb:75:c1:98:f7:9c:26:c9:43:c1:cd:
fd:f0:b6:e1:0e:29:63:2b:29:4e:3f:bf:3e:cd:57:2b:49:cf:
d0:06:3c:d4:d9:36:05:a6:a5:f6:f6:81:6c:01:ae:ba:cd:7a:
eb:5b:6d:96:33:8c:40:41:d1:29:8f:86:a0:f5:11:87:fb:91:
b1:35:fb:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:06:04 2025 by rpki-client