Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/81e_iEJNflGcL2PQigPYnax2C9g.roa
File: 81e_iEJNflGcL2PQigPYnax2C9g.roa (raw, json)
Hash identifier: Tnqk3YCewrw1te8pfh2nO5YN+d773jnG2HywjYv0DWc=
Subject key identifier: F3:57:BF:88:42:4D:7E:51:9C:2F:63:D0:8A:03:D8:9D:AC:76:0B:D8
Certificate issuer: /CN=5730ced8971732d36c84f55d52d32859886c8963
Certificate serial: 018CC8018CB11548867A2CCFDA676CAD689D
Authority key identifier: 57:30:CE:D8:97:17:32:D3:6C:84:F5:5D:52:D3:28:59:88:6C:89:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VzDO2JcXMtNshPVdUtMoWYhsiWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/81e_iEJNflGcL2PQigPYnax2C9g.roa
Signing time: Tue 02 Jan 2024 02:29:53 +0000
ROA not before: Tue 02 Jan 2024 02:29:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48059
IP address blocks: 91.208.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:8c:b1:15:48:86:7a:2c:cf:da:67:6c:ad:68:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5730ced8971732d36c84f55d52d32859886c8963
Validity
Not Before: Jan 2 02:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f357bf88424d7e519c2f63d08a03d89dac760bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:44:c8:7e:46:22:3e:1a:50:eb:44:26:42:9c:
67:18:28:62:87:58:23:fa:21:3c:fe:4c:7c:aa:d4:
f9:20:06:67:3c:59:a1:1c:68:58:a5:1b:d4:78:65:
88:f1:c1:f8:bd:5f:ab:03:da:2a:0c:89:8c:71:db:
d2:38:c8:7b:d8:33:62:32:23:a5:23:f6:e3:a2:9c:
f9:e9:8b:7c:b3:b1:3d:a9:dd:b3:0b:8c:15:4d:f8:
c4:b8:35:64:d3:3c:fe:7e:1c:61:92:7b:41:7c:11:
4f:6e:04:cb:5d:90:26:90:83:41:59:26:7f:cd:81:
44:d6:47:99:cc:5f:ca:4a:1f:46:5c:58:25:ec:80:
d0:5d:cc:cf:60:3e:eb:07:8b:51:92:5a:e8:4c:da:
bd:88:f6:50:be:66:6a:06:e5:ee:d5:38:92:ce:09:
4b:35:79:a3:03:da:95:ce:5e:6e:c9:2d:29:2f:2f:
7c:58:96:f4:07:c2:60:68:89:c6:9b:5b:1e:5c:41:
84:ab:fc:3d:e4:60:0e:fa:11:0f:70:c3:df:0a:b9:
13:c9:7e:99:64:2f:18:50:26:e4:8b:01:8a:d6:ab:
27:6c:e8:32:5a:69:16:24:5c:5a:5d:6b:43:07:1d:
1d:38:22:11:2a:69:eb:21:9b:cb:b2:c2:55:d6:9c:
52:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:57:BF:88:42:4D:7E:51:9C:2F:63:D0:8A:03:D8:9D:AC:76:0B:D8
X509v3 Authority Key Identifier:
keyid:57:30:CE:D8:97:17:32:D3:6C:84:F5:5D:52:D3:28:59:88:6C:89:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VzDO2JcXMtNshPVdUtMoWYhsiWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/81e_iEJNflGcL2PQigPYnax2C9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e91cd1-3d0c-454c-9e41-d7fd8f46f463/1/VzDO2JcXMtNshPVdUtMoWYhsiWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.255.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:d4:42:43:62:15:36:71:86:d0:43:c3:c4:d1:e7:61:4c:27:
14:32:8e:b7:ac:7f:eb:b3:46:90:01:ac:c0:a7:58:8e:2f:4b:
8b:13:7f:76:2c:0a:f3:9b:15:6a:b6:42:ca:00:35:c7:8c:58:
71:26:bc:c7:8a:00:f7:16:b9:d4:d8:30:9f:5e:e2:f5:2b:b0:
a5:ec:de:fe:7c:dd:58:49:a9:58:2f:52:1f:52:15:7c:e8:b9:
a2:97:d8:9e:31:cf:4d:98:bc:73:22:eb:d6:76:19:b5:7b:c5:
f1:88:c0:a0:8a:c0:b7:e3:f8:9d:83:49:d4:75:f1:05:b1:bd:
e8:75:51:70:3b:a3:5b:e6:19:4c:12:43:ba:77:9b:8e:89:8d:
34:19:0a:92:68:9e:28:0a:08:5c:2b:86:4d:a0:bb:d4:2f:41:
8d:97:6c:e8:57:30:d1:22:4f:ad:c8:01:fc:2b:7d:13:6c:05:
b4:68:ec:97:c8:7a:14:85:8a:34:48:55:a8:a7:5a:6b:e1:1b:
45:74:3b:8d:0e:8f:84:35:b4:65:b4:fe:d1:0e:90:03:bd:5f:
fd:fb:50:71:9b:34:2f:e9:70:a9:69:68:dd:fc:94:bf:bf:38:
93:27:69:3f:ac:f0:df:65:8b:4d:e0:b5:76:c9:43:55:41:50:
35:15:0c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:15:13 2025 by rpki-client