Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/23dfb2-749d-471d-b114-83c7db7596fe/1/y49JuAVDoy-LfsHdEc6QYgh16LA.roa
File: y49JuAVDoy-LfsHdEc6QYgh16LA.roa (raw, json)
Hash identifier: lgV8xv23uaL4oGyw+8u8NKX5nD6V6ZzdAGMuEZqxGwY=
Subject key identifier: CB:8F:49:B8:05:43:A3:2F:8B:7E:C1:DD:11:CE:90:62:08:75:E8:B0
Certificate issuer: /CN=d55e5611788142b315428ae51f67cbbacf80b7e8
Certificate serial: 01941F8C84F1001B81170187C72B3889B42F
Authority key identifier: D5:5E:56:11:78:81:42:B3:15:42:8A:E5:1F:67:CB:BA:CF:80:B7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1V5WEXiBQrMVQorlH2fLus-At-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/23dfb2-749d-471d-b114-83c7db7596fe/1/y49JuAVDoy-LfsHdEc6QYgh16LA.roa
Signing time: Wed 01 Jan 2025 01:48:10 +0000
ROA not before: Wed 01 Jan 2025 01:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43673
IP address blocks: 91.198.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:84:f1:00:1b:81:17:01:87:c7:2b:38:89:b4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d55e5611788142b315428ae51f67cbbacf80b7e8
Validity
Not Before: Jan 1 01:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb8f49b80543a32f8b7ec1dd11ce90620875e8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0f:02:49:25:0e:e1:58:02:f5:5d:b8:2b:31:
8d:6d:ca:78:e1:1a:6a:48:9f:bc:17:af:10:8b:47:
10:c7:96:5b:87:7f:b3:b0:2f:bf:c7:cb:d9:46:1d:
db:0d:01:d6:ef:02:71:01:70:83:77:57:8c:b8:c2:
d7:c6:b1:3e:99:0a:d5:81:29:52:f5:f4:bb:03:67:
2c:93:22:e6:cd:0f:01:07:b9:58:70:d3:6b:89:20:
e6:9b:f3:71:24:17:e6:7f:48:80:b8:48:1a:70:18:
72:c0:06:a6:d9:11:60:16:97:e9:c3:58:ae:3f:a8:
e0:37:9d:4a:c0:c2:d0:bb:a3:d4:04:33:78:1b:1f:
54:09:c8:78:0f:3c:e7:da:3a:2f:61:07:65:82:3e:
f6:db:31:df:f2:28:cb:51:44:b7:f8:84:92:5c:99:
1a:e4:b2:0b:7f:66:e7:0b:82:0e:e9:9b:6c:f7:ec:
24:87:b2:6a:5c:c8:2e:d7:f9:d2:9c:c7:f3:54:61:
d2:77:5f:aa:28:c3:44:f1:6a:69:73:38:0a:1f:ad:
70:f9:13:dc:10:ed:59:42:0d:c5:b8:c8:ef:9a:c1:
4a:e4:28:36:ca:b9:35:34:87:19:c3:b8:64:36:ca:
bd:af:aa:55:2e:d9:62:70:f3:8e:8c:67:6b:fa:19:
e1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8F:49:B8:05:43:A3:2F:8B:7E:C1:DD:11:CE:90:62:08:75:E8:B0
X509v3 Authority Key Identifier:
keyid:D5:5E:56:11:78:81:42:B3:15:42:8A:E5:1F:67:CB:BA:CF:80:B7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1V5WEXiBQrMVQorlH2fLus-At-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/23dfb2-749d-471d-b114-83c7db7596fe/1/y49JuAVDoy-LfsHdEc6QYgh16LA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/23dfb2-749d-471d-b114-83c7db7596fe/1/1V5WEXiBQrMVQorlH2fLus-At-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.98.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:8f:ee:d2:c3:81:20:a6:ee:2a:1c:85:b3:06:1e:d7:b2:b9:
97:a3:de:7e:e6:b4:03:db:b8:e7:53:9c:19:ac:8b:e9:19:aa:
02:80:85:95:95:17:10:9a:e5:18:69:5f:f7:53:a6:5a:87:2d:
53:46:cd:6f:b5:87:07:ab:d8:5a:01:ed:19:10:08:cf:ec:6f:
2c:4e:73:9f:14:74:c5:04:85:9a:8c:f0:58:fd:66:b6:70:9b:
04:75:2a:09:dc:33:82:84:eb:47:da:c9:10:36:a1:38:a2:60:
ad:fd:87:74:2b:2e:a9:1d:22:fe:25:5b:ae:d5:82:46:72:c0:
2c:b6:35:b3:2b:16:1f:61:4a:74:fc:59:d0:94:bc:f4:90:a5:
49:8a:55:b0:54:35:20:4a:4e:cc:50:14:47:60:e9:8a:20:44:
ee:d8:6c:e3:48:ed:bc:2f:a3:a7:b7:50:27:01:30:d9:6b:57:
c5:c3:77:53:56:00:47:ba:7d:52:cc:ed:5e:3d:cf:2d:9f:02:
63:2e:96:90:64:56:a6:3e:ad:14:41:92:00:af:f8:74:bd:cb:
ab:09:98:97:0e:13:88:84:b6:a3:be:d1:09:dd:2b:6d:2b:54:
b1:40:3d:0b:02:11:ec:9c:88:05:db:ab:9d:6f:af:60:fb:f2:
99:2f:b4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:06:30 2025 by rpki-client