Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/yNzqic6aO0-Vbnz5Cz3a2S49npE.roa
File: yNzqic6aO0-Vbnz5Cz3a2S49npE.roa (raw, json)
Hash identifier: BVHB9YQM2bPi9SRv/+t2TTTKK9+WHlUvO6xaTm6NDXE=
Subject key identifier: C8:DC:EA:89:CE:9A:3B:4F:95:6E:7C:F9:0B:3D:DA:D9:2E:3D:9E:91
Certificate issuer: /CN=288798a754d6da2aca18f617f63d3d5f14297b81
Certificate serial: 0AC6733D
Authority key identifier: 28:87:98:A7:54:D6:DA:2A:CA:18:F6:17:F6:3D:3D:5F:14:29:7B:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIeYp1TW2irKGPYX9j09XxQpe4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/yNzqic6aO0-Vbnz5Cz3a2S49npE.roa
Signing time: Mon 11 Apr 2022 13:58:40 +0000
ROA not before: Mon 11 Apr 2022 13:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 91.213.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180777789 (0xac6733d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=288798a754d6da2aca18f617f63d3d5f14297b81
Validity
Not Before: Apr 11 13:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8dcea89ce9a3b4f956e7cf90b3ddad92e3d9e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:80:f7:7c:65:d3:42:c1:22:ef:27:21:14:98:
7f:bf:d8:28:47:ec:ca:ef:e5:ac:d8:10:75:da:8f:
44:c4:39:9d:eb:4f:af:1d:fe:c6:6b:08:bd:86:a9:
a8:4f:aa:01:c1:ad:25:2e:c3:8a:06:06:2f:5d:d8:
fb:8d:2d:a0:d8:f7:c4:d3:cd:f2:fe:5d:87:32:af:
db:61:1c:77:d7:52:ed:4b:2d:f7:f4:6e:54:59:37:
1e:42:50:35:6b:23:38:a7:36:6d:7e:73:a9:9c:85:
ac:22:7d:92:a6:f2:dc:a7:a0:ca:18:d4:6c:05:cc:
7d:f5:64:d3:7e:7c:96:75:fb:76:d1:4d:87:28:1e:
7d:b9:e7:22:94:36:c6:57:73:78:10:b7:09:df:58:
51:bb:1b:a0:a3:5a:1e:ff:e5:1f:01:db:db:12:ae:
97:8e:3d:8d:fc:16:29:68:ea:37:1c:b7:76:4d:e1:
ba:7a:0c:22:a9:01:70:28:c2:88:5b:e6:5a:93:51:
9b:c3:6d:51:12:da:2d:03:dd:a9:29:dc:57:a8:a1:
0b:89:87:dd:8d:10:75:22:d9:0a:24:06:db:3e:10:
c1:fc:8b:5f:3b:c4:64:21:ac:36:48:4e:14:2d:39:
f9:29:fe:a0:b9:99:ff:6e:82:f6:43:21:4f:9f:68:
b7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DC:EA:89:CE:9A:3B:4F:95:6E:7C:F9:0B:3D:DA:D9:2E:3D:9E:91
X509v3 Authority Key Identifier:
keyid:28:87:98:A7:54:D6:DA:2A:CA:18:F6:17:F6:3D:3D:5F:14:29:7B:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIeYp1TW2irKGPYX9j09XxQpe4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/yNzqic6aO0-Vbnz5Cz3a2S49npE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2f69c5-a386-4fa5-8215-8906bd3bc90b/1/KIeYp1TW2irKGPYX9j09XxQpe4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.91.0/24
Signature Algorithm: sha256WithRSAEncryption
53:b9:f9:73:1d:2c:e9:1e:6b:8a:4a:07:a8:ca:81:17:41:b5:
3e:d1:ff:d8:9d:65:81:d5:a7:03:c7:7a:66:0c:ce:84:03:86:
09:bf:1e:7b:9c:be:4f:ae:80:da:f4:77:79:04:58:11:3a:43:
53:de:18:3f:3b:d0:6b:6b:6e:e2:14:30:76:5c:38:49:69:85:
61:43:82:7e:90:f8:8b:e3:ae:73:b6:69:94:87:48:17:92:f7:
d2:35:9c:ac:57:1a:01:60:97:86:ec:cf:05:2b:21:f6:7d:dc:
c0:f5:68:08:2c:57:fe:31:df:55:b5:d6:e9:9e:aa:7f:84:92:
7f:2d:45:4e:9e:61:9e:21:73:6c:9c:74:95:04:43:34:2f:20:
05:91:2d:95:91:a0:a4:b7:89:ae:7d:b4:20:b8:ef:ab:83:8f:
8d:71:fd:28:ce:06:39:a1:78:88:4b:04:41:dd:6f:0a:04:35:
3c:e1:1b:12:89:62:4c:1e:fa:a2:05:17:9e:80:91:9c:e1:0f:
49:bb:b6:ab:8d:1d:cb:d6:52:cc:74:46:6c:38:84:b2:83:b4:
c0:42:88:cb:a1:9c:41:a4:47:67:3a:52:40:4d:7f:64:ff:ff:
9a:eb:8d:58:16:11:49:92:c3:0b:09:2c:85:29:56:f4:72:65:
ba:02:d4:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:00:08 2025 by rpki-client