Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/ZyJpNgXETgUAoMGW4Tc1fNHY6Xc.roa
File: ZyJpNgXETgUAoMGW4Tc1fNHY6Xc.roa (raw, json)
Hash identifier: d0r/X5GHVSm+6B+uw9WbyoANujmYXCe7JpWPWgRCmfA=
Subject key identifier: 67:22:69:36:05:C4:4E:05:00:A0:C1:96:E1:37:35:7C:D1:D8:E9:77
Certificate issuer: /CN=b948510ae41ab856779ac186f0470991f5a2a50f
Certificate serial: 019426D9234B151E81ABED838624C36F2611
Authority key identifier: B9:48:51:0A:E4:1A:B8:56:77:9A:C1:86:F0:47:09:91:F5:A2:A5:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUhRCuQauFZ3msGG8EcJkfWipQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/ZyJpNgXETgUAoMGW4Tc1fNHY6Xc.roa
Signing time: Thu 02 Jan 2025 11:49:11 +0000
ROA not before: Thu 02 Jan 2025 11:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47792
IP address blocks: 91.206.206.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:23:4b:15:1e:81:ab:ed:83:86:24:c3:6f:26:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b948510ae41ab856779ac186f0470991f5a2a50f
Validity
Not Before: Jan 2 11:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6722693605c44e0500a0c196e137357cd1d8e977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3b:ad:43:c9:e7:73:62:28:de:e4:c7:15:7c:
b1:23:74:36:ad:f8:3f:34:c0:e0:27:18:c3:33:ec:
1a:34:ef:f2:86:99:ec:b5:05:61:92:08:9a:f7:67:
b1:cf:77:be:dd:f3:d7:bb:74:20:0f:e9:53:4d:77:
21:75:08:89:17:69:9e:a7:a6:f0:32:70:30:bc:99:
c7:f3:96:f3:55:af:0d:08:b1:b3:91:dd:29:57:0d:
6b:e1:e6:9d:92:2b:2c:d6:b8:b2:0a:89:bc:8c:ae:
af:b3:b9:e2:9f:32:14:60:73:99:0b:6e:94:d5:28:
48:3b:b8:2e:d0:d1:d0:fa:d2:cf:b8:20:dc:ee:ee:
a2:1f:c9:d3:ab:c7:bb:23:d2:05:30:45:97:17:0c:
ee:6e:ae:13:9d:91:d8:2e:65:02:e6:d8:9b:bc:8c:
7d:1f:4f:68:b2:a6:c4:50:44:ae:3a:e1:34:49:d5:
86:5c:f6:fe:13:05:fb:bc:cb:3b:fd:e8:f8:c1:51:
7c:c4:3a:56:f6:d7:8a:87:7c:0d:79:48:10:d0:24:
9e:48:04:c6:86:00:55:37:2b:bd:1e:06:8f:8a:18:
09:3f:cc:d2:8a:4a:fb:54:ca:44:57:91:a2:d2:b9:
86:fd:9c:5f:74:79:45:12:80:d9:cb:6f:41:8c:ac:
5e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:22:69:36:05:C4:4E:05:00:A0:C1:96:E1:37:35:7C:D1:D8:E9:77
X509v3 Authority Key Identifier:
keyid:B9:48:51:0A:E4:1A:B8:56:77:9A:C1:86:F0:47:09:91:F5:A2:A5:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUhRCuQauFZ3msGG8EcJkfWipQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/ZyJpNgXETgUAoMGW4Tc1fNHY6Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/uUhRCuQauFZ3msGG8EcJkfWipQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.206.0/23
Signature Algorithm: sha256WithRSAEncryption
85:78:33:72:c6:07:14:d8:72:3e:66:6a:2a:94:bc:39:a8:53:
42:88:4e:26:a0:8c:a7:b4:ab:cf:3d:8d:36:61:54:5b:95:ef:
e6:b3:dc:6e:87:ad:98:7c:65:24:00:3c:d5:14:ef:83:9e:50:
be:6d:0b:90:0b:c1:a3:31:96:7e:1c:94:36:ec:34:e8:e6:7a:
ae:fe:a8:db:8c:7a:70:00:69:0a:a4:a4:c6:a3:8c:15:10:a1:
2a:1c:00:94:e8:ee:df:0f:6d:74:fa:df:51:4e:1f:93:a1:c6:
0a:8d:02:07:9b:c9:bb:32:e5:d9:ec:b4:69:de:9f:70:03:59:
c9:f0:43:4b:f1:ec:07:1e:21:e5:60:17:7f:34:02:bb:22:a6:
30:a5:ab:b5:48:c9:5a:21:8f:4f:61:8c:c9:8f:d4:29:f6:9b:
f1:77:b6:d8:5c:a0:df:dc:b1:4b:70:da:71:38:41:06:97:21:
f5:49:f4:94:22:68:ee:3d:78:cd:3c:07:c0:54:10:f7:dc:85:
75:22:f7:72:b9:44:2d:94:24:aa:b4:0f:4b:a3:66:31:06:e2:
91:05:f1:70:d7:59:af:ae:a1:b6:3b:33:38:1d:7e:4a:60:03:
d8:00:b8:02:c4:90:44:33:26:b8:5f:ac:f9:b4:45:dd:fd:ae:
c9:ad:4a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:53:12 2025 by rpki-client