Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8abb58-f30c-4f3b-b992-9becc136cc71/1/tv7BOR__D8ThJMIcJAUdIAlKkwg.roa
File: tv7BOR__D8ThJMIcJAUdIAlKkwg.roa (raw, json)
Hash identifier: jM8tfHRUbeU3G9E4ngQ7Zof6H/32R+jTu43wcHiKIrE=
Subject key identifier: B6:FE:C1:39:1F:FF:0F:C4:E1:24:C2:1C:24:05:1D:20:09:4A:93:08
Certificate issuer: /CN=ece6498d174adf5c89a365c2d1e477dcf24f982e
Certificate serial: 019422FB2405B25C10F53AFD8FD0EC751B8A
Authority key identifier: EC:E6:49:8D:17:4A:DF:5C:89:A3:65:C2:D1:E4:77:DC:F2:4F:98:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7OZJjRdK31yJo2XC0eR33PJPmC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8abb58-f30c-4f3b-b992-9becc136cc71/1/tv7BOR__D8ThJMIcJAUdIAlKkwg.roa
Signing time: Wed 01 Jan 2025 17:47:51 +0000
ROA not before: Wed 01 Jan 2025 17:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198949
IP address blocks: 91.212.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:24:05:b2:5c:10:f5:3a:fd:8f:d0:ec:75:1b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ece6498d174adf5c89a365c2d1e477dcf24f982e
Validity
Not Before: Jan 1 17:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b6fec1391fff0fc4e124c21c24051d20094a9308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:2f:d6:db:e3:5d:69:a8:9f:f8:6d:b8:c5:
74:e7:c5:0a:1b:1a:44:86:44:32:27:d3:43:ee:28:
62:e9:c0:8f:60:5a:b4:ca:a0:10:2a:ec:a1:a9:2d:
17:8f:1c:ab:63:c1:92:3b:c9:fd:c3:1f:1a:d5:10:
7c:40:8b:dd:7f:b6:d6:90:a9:9a:69:8f:ea:a7:37:
6b:54:f6:76:aa:ee:2c:bd:97:f0:28:f8:13:bd:dc:
c2:b7:fb:e2:66:8c:47:a3:88:aa:c5:f4:6c:ed:33:
e8:03:00:86:6f:51:51:65:b5:03:3e:fd:7f:2c:26:
77:d5:de:0e:94:6a:74:a8:5b:cd:81:bd:b5:9c:30:
f3:98:d3:92:b3:12:c8:aa:e0:c3:c0:d2:4b:f4:21:
dc:73:ae:b1:a9:ac:b9:60:55:36:fb:e0:cb:de:26:
ab:50:01:65:c8:ca:06:02:19:21:53:9f:94:4d:ed:
da:0f:2a:a7:f0:b7:3d:44:95:ab:17:6f:43:10:b3:
5a:a9:da:db:86:47:46:77:95:3c:7f:7a:7e:ac:43:
d6:3e:82:54:b2:55:60:12:12:6e:df:14:0b:82:de:
48:85:07:68:ff:d2:db:d9:d0:de:aa:c7:63:d0:cb:
3d:5e:e5:03:ff:a4:1a:87:d2:d6:1c:ec:b6:1a:72:
d1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FE:C1:39:1F:FF:0F:C4:E1:24:C2:1C:24:05:1D:20:09:4A:93:08
X509v3 Authority Key Identifier:
keyid:EC:E6:49:8D:17:4A:DF:5C:89:A3:65:C2:D1:E4:77:DC:F2:4F:98:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7OZJjRdK31yJo2XC0eR33PJPmC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8abb58-f30c-4f3b-b992-9becc136cc71/1/tv7BOR__D8ThJMIcJAUdIAlKkwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8abb58-f30c-4f3b-b992-9becc136cc71/1/7OZJjRdK31yJo2XC0eR33PJPmC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:d2:5d:df:81:ee:e4:f9:7c:e3:7b:0b:b9:12:5f:90:f1:2f:
53:49:af:2f:d2:4b:20:fd:95:e7:cb:aa:8b:d1:e5:2a:d1:76:
2b:4c:3f:98:84:a1:30:d9:24:49:ca:15:18:ba:66:8b:91:ba:
9c:de:71:57:5f:ff:c9:14:03:ec:0a:35:41:82:63:13:d9:28:
a6:a2:28:01:fb:a7:95:0a:14:01:b9:2b:d6:5b:35:7c:22:2b:
26:68:a0:46:07:cc:16:98:32:5c:21:bf:19:7f:3d:ea:63:d6:
16:fc:ba:fb:a3:7a:a5:fd:a7:5f:b6:03:42:a0:f3:ce:ab:89:
f2:0a:83:0b:aa:c4:4c:13:fc:fd:4e:fd:aa:cc:76:c0:80:5c:
e7:39:24:e3:e0:05:bd:9b:ae:c7:c1:17:57:b3:b2:5a:11:74:
53:69:21:10:4c:a9:e1:9c:89:b7:5f:7b:bb:19:88:79:73:c5:
80:54:f1:a2:d4:e7:22:92:e1:bd:b3:30:91:f7:ab:5f:fa:77:
98:cc:93:83:5d:21:85:45:26:52:9b:22:fd:31:45:57:5d:32:
95:83:34:83:9b:03:16:4d:d9:c6:74:6c:19:78:08:1a:95:bd:
a0:00:f4:03:63:e4:d2:78:6b:62:83:29:a0:12:47:b9:a4:1e:
7a:09:c9:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:32:37 2025 by rpki-client