Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9a30a3-86b2-46c9-afb6-0a6978b05da5/1/CgOCR0mC0zqfB8v_gpKvaxad3M4.roa
File: CgOCR0mC0zqfB8v_gpKvaxad3M4.roa (raw, json)
Hash identifier: UHsH9AHHew0/HHPkYlDb31Duqsy91pmYSu8hTQt+75E=
Subject key identifier: 0A:03:82:47:49:82:D3:3A:9F:07:CB:FF:82:92:AF:6B:16:9D:DC:CE
Certificate issuer: /CN=6b8636b21e173ee9a21f81088d85ea4a264d6172
Certificate serial: B55C8D
Authority key identifier: 6B:86:36:B2:1E:17:3E:E9:A2:1F:81:08:8D:85:EA:4A:26:4D:61:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4Y2sh4XPumiH4EIjYXqSiZNYXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9a30a3-86b2-46c9-afb6-0a6978b05da5/1/CgOCR0mC0zqfB8v_gpKvaxad3M4.roa
Signing time: Sat 01 Jan 2022 08:04:33 +0000
ROA not before: Sat 01 Jan 2022 08:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 91.241.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11885709 (0xb55c8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b8636b21e173ee9a21f81088d85ea4a264d6172
Validity
Not Before: Jan 1 08:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a0382474982d33a9f07cbff8292af6b169ddcce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0e:3b:cf:04:45:6e:94:2c:f6:c2:39:bb:9a:
24:76:ea:09:08:86:3a:51:87:fc:6d:b2:c1:3a:c0:
55:d0:2d:4f:88:ef:57:c8:2a:32:14:43:3e:56:2e:
c8:aa:d8:0f:16:1a:4a:5c:ce:cc:3b:98:9c:3a:be:
24:98:91:9e:28:b5:db:72:6c:76:b8:e9:9e:ec:b7:
ac:97:1b:00:90:ea:b8:06:c4:63:75:84:aa:62:a9:
48:60:b6:5f:77:f0:78:17:7e:78:dd:a9:d0:28:86:
07:29:bf:df:16:1a:3e:16:e0:5a:a9:24:de:3a:01:
2c:28:15:5e:82:ea:3b:c5:a7:4f:0c:83:50:53:d4:
61:96:41:a9:54:66:5e:df:8e:af:29:38:44:49:51:
87:cf:bc:73:e3:8f:40:98:58:26:06:48:79:0f:b5:
ca:58:1d:8d:84:e9:c8:7b:de:29:3c:41:c0:a8:2e:
36:c8:1d:1f:be:7a:a5:b6:9f:10:c3:ea:55:eb:a6:
a0:f0:da:f1:f3:12:17:ea:ab:35:22:13:b2:64:9b:
24:d2:79:12:0c:33:0b:d9:45:a4:0e:73:97:b8:73:
e8:c8:60:92:65:e5:d2:64:5b:b0:4f:67:6e:ba:ea:
a9:af:d3:7b:cb:cf:f7:ab:d9:88:12:4a:43:cd:28:
f8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:03:82:47:49:82:D3:3A:9F:07:CB:FF:82:92:AF:6B:16:9D:DC:CE
X509v3 Authority Key Identifier:
keyid:6B:86:36:B2:1E:17:3E:E9:A2:1F:81:08:8D:85:EA:4A:26:4D:61:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4Y2sh4XPumiH4EIjYXqSiZNYXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9a30a3-86b2-46c9-afb6-0a6978b05da5/1/CgOCR0mC0zqfB8v_gpKvaxad3M4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9a30a3-86b2-46c9-afb6-0a6978b05da5/1/a4Y2sh4XPumiH4EIjYXqSiZNYXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.55.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:ba:7d:33:79:1c:18:a8:25:8c:20:75:a2:be:27:de:f3:38:
8a:c8:bc:e5:ad:6c:9e:81:8f:35:4d:e5:5b:8c:7b:c0:9d:5c:
54:27:12:95:13:ae:17:fd:e4:85:9b:96:97:0e:b7:90:14:c4:
d1:57:14:bb:1b:68:7b:3b:70:38:6c:b2:26:f0:f7:28:5e:c6:
92:60:83:bb:5c:54:5f:0d:95:a0:f7:63:06:0d:47:b9:9f:b2:
65:39:ce:d1:3f:5e:d7:bf:84:00:db:32:7f:91:cc:66:09:d7:
c0:95:f0:09:1d:be:13:4b:dd:e6:cb:b3:f3:a7:88:47:3b:b0:
ea:00:39:7d:0d:c5:fe:71:c9:75:ef:f3:f0:5b:d7:c8:dd:1b:
68:45:67:93:28:a3:34:a4:b3:06:4a:e8:cc:78:fb:ca:67:31:
e2:aa:a2:86:73:b3:93:4c:fa:de:06:7b:2e:a4:64:80:02:a5:
17:c8:df:ca:eb:8c:71:3a:30:07:28:f6:13:84:ac:b4:97:c6:
34:e5:37:75:30:aa:b7:97:9f:ac:35:cd:6b:37:c2:8b:f9:2c:
8d:03:56:5b:59:d0:8b:90:52:83:d9:24:57:9b:05:7d:c9:4c:
96:37:60:fd:49:52:37:b6:3f:6c:96:4f:f8:7a:d7:f1:e5:6c:
84:14:20:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:23 2025 by rpki-client