Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/iUcFrmUq16PAOx_5sN9bTnjo0-Y.roa
File: iUcFrmUq16PAOx_5sN9bTnjo0-Y.roa (raw, json)
Hash identifier: tZBq+an0H8rmY+/8U4hBPSohXQrTLQRK9wTh3oZ+CnU=
Subject key identifier: 89:47:05:AE:65:2A:D7:A3:C0:3B:1F:F9:B0:DF:5B:4E:78:E8:D3:E6
Certificate issuer: /CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Certificate serial: 093DF4AD
Authority key identifier: FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/iUcFrmUq16PAOx_5sN9bTnjo0-Y.roa
Signing time: Sat 01 Jan 2022 09:53:06 +0000
ROA not before: Sat 01 Jan 2022 09:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155055277 (0x93df4ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff36ed3375a6a895cadd49e0ecd4299454b3b89c
Validity
Not Before: Jan 1 09:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=894705ae652ad7a3c03b1ff9b0df5b4e78e8d3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:71:53:f9:10:f5:8e:d4:d5:98:fc:8d:19:
d4:b0:b7:44:b6:c6:57:fb:d6:8d:6f:39:d1:19:f5:
cd:d5:47:e7:7c:c0:0a:57:65:73:d4:ad:dc:71:a0:
2e:00:d9:09:b1:2c:17:d8:c8:3c:4d:81:28:4c:a5:
a4:24:ee:f7:63:28:b9:e6:18:03:cc:d6:18:89:ab:
c1:f3:b1:51:7c:99:5f:09:4a:8c:dd:73:0c:69:e7:
12:06:00:e0:ae:d1:f3:ba:4a:05:2b:ff:20:9f:10:
79:9b:1b:bf:6d:cd:aa:3a:3e:e5:ee:cd:e7:b4:05:
24:11:76:2c:1c:da:2c:8e:79:1a:16:eb:cd:13:f2:
90:2a:c1:a7:ac:5d:ad:8a:2f:37:30:76:8a:cc:e6:
c5:c2:04:3d:87:5a:85:23:c1:a5:52:78:35:b2:29:
f6:7d:d4:78:c1:cd:55:3c:73:6a:4a:49:3b:7d:e1:
1f:04:1d:cc:a7:2a:5c:99:6a:3c:05:b6:a0:9e:05:
4c:19:df:43:01:10:af:7f:35:49:fb:4a:97:eb:c5:
60:ae:f8:fc:45:b5:8a:1a:5d:35:3f:b3:e4:f6:e6:
db:e8:be:e5:20:2b:88:12:a2:3e:14:fe:a7:6d:00:
85:65:4a:90:a2:d4:59:d4:eb:1c:4f:8b:3f:f3:e9:
b5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:47:05:AE:65:2A:D7:A3:C0:3B:1F:F9:B0:DF:5B:4E:78:E8:D3:E6
X509v3 Authority Key Identifier:
keyid:FF:36:ED:33:75:A6:A8:95:CA:DD:49:E0:EC:D4:29:94:54:B3:B8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zbtM3WmqJXK3Ung7NQplFSzuJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/iUcFrmUq16PAOx_5sN9bTnjo0-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/3bc840-8329-4389-a34b-ec190b1ceaca/1/_zbtM3WmqJXK3Ung7NQplFSzuJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:c1:c4:05:54:34:52:f5:b9:30:e3:d9:4c:71:c9:36:17:08:
3a:4b:31:40:5e:20:0c:80:40:ad:e4:4c:c8:b6:7f:75:76:9d:
7e:0b:ca:e5:cf:48:92:c9:aa:25:74:c9:e3:47:6c:e6:6a:af:
15:6c:2e:cc:8e:d0:ee:c8:bb:92:cb:ac:56:54:82:bf:2a:5c:
2a:3d:13:57:79:d9:61:af:ca:ac:52:40:01:ba:30:41:48:09:
30:60:79:ae:2a:14:9a:9d:e3:34:74:d1:7e:13:4e:18:1e:85:
25:34:88:a1:03:d9:9c:c1:cd:94:20:14:da:31:c4:ee:b8:24:
b3:41:4b:6c:93:23:a8:f1:36:25:90:a2:0d:ea:90:63:3a:08:
e2:16:86:d8:10:99:e0:02:23:4d:81:95:7c:7c:de:34:0c:72:
d6:b2:8a:0a:e7:20:6c:f5:bd:29:3f:fd:ad:ab:91:f2:a1:8f:
b9:b4:26:4b:55:27:36:3f:88:16:20:fa:7a:20:10:0f:48:f8:
fa:66:f4:92:e1:0b:e2:cf:fa:b8:a5:f3:d7:42:97:c7:a9:06:
f9:3c:40:7c:f0:6a:82:68:4a:6e:8b:62:ea:b9:0d:6d:16:35:
a7:70:bb:7e:61:4d:a8:a7:1b:9f:d5:01:56:2e:3f:d1:6d:40:
3c:97:a7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:19:40 2025 by rpki-client