Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/iX51NeJFLA8hZbYydiWCSJNdBac.roa
File: iX51NeJFLA8hZbYydiWCSJNdBac.roa (raw, json)
Hash identifier: feK/rKksTFQbgNdFYUDfTjFuIeyOIK8QXCIqWjoXBaI=
Subject key identifier: 89:7E:75:35:E2:45:2C:0F:21:65:B6:32:76:25:82:48:93:5D:05:A7
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 01942444F6BF5C4A757DA49202061CE58185
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/iX51NeJFLA8hZbYydiWCSJNdBac.roa
Signing time: Wed 01 Jan 2025 23:48:06 +0000
ROA not before: Wed 01 Jan 2025 23:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213830
IP address blocks: 91.82.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:f6:bf:5c:4a:75:7d:a4:92:02:06:1c:e5:81:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 23:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=897e7535e2452c0f2165b63276258248935d05a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:aa:ed:59:e0:3a:4b:3a:93:cf:ee:e4:5d:a7:
2d:ee:17:04:00:59:ce:83:0e:fb:8f:bb:73:63:80:
e0:d9:c0:17:ff:30:11:0f:ab:b8:95:61:42:a3:41:
b8:0c:da:d5:e2:0a:f8:7d:a9:0b:d6:79:34:a7:87:
c3:b9:43:91:9c:c7:ee:9c:2e:51:d5:d3:d5:76:6d:
b3:77:c0:b4:32:16:e2:9d:b2:1e:79:a3:b8:a6:bd:
d3:ee:38:b0:2c:a7:e8:7a:05:88:e2:15:9c:6f:97:
e4:b4:c4:18:0e:04:da:4a:a5:6d:d8:c0:6b:1d:1d:
4e:95:e5:06:02:24:fa:0b:e9:26:44:4b:3d:77:ad:
85:c8:9e:77:d4:10:f0:7d:07:f3:b2:89:ad:ee:4d:
73:ef:09:87:36:e2:a4:24:98:74:a7:cd:30:75:06:
af:fe:76:e4:54:d6:46:ef:06:ba:a3:bc:df:e2:1f:
41:f5:c0:a9:50:5e:50:a4:f6:21:6c:61:52:ac:41:
b3:09:ab:2b:07:d3:13:76:b9:b8:5d:94:22:38:3c:
8d:d2:15:19:f5:20:1f:5c:23:40:c4:23:20:a4:b5:
21:f7:ad:41:aa:e0:e1:5b:a0:1e:28:f6:d9:75:30:
7c:e7:dd:a3:e5:3f:65:1a:7d:81:7b:35:dd:a4:e1:
7a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:7E:75:35:E2:45:2C:0F:21:65:B6:32:76:25:82:48:93:5D:05:A7
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/iX51NeJFLA8hZbYydiWCSJNdBac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.82.75.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:49:42:5c:81:e9:e4:59:db:c8:c9:01:9f:d2:ba:15:c7:a5:
d0:ed:03:c0:56:66:5e:61:bd:c3:2c:b3:48:a3:12:72:83:39:
f9:d9:c3:44:92:7b:9b:e6:3c:e7:55:25:81:a5:6a:c9:a2:f3:
c2:8f:8b:e1:40:5a:89:2c:d3:8c:7d:da:9e:6b:4e:d7:3a:4b:
5e:53:82:64:74:9d:ac:9d:d4:5d:5d:09:39:74:2b:df:b6:33:
76:8f:e7:9a:86:7e:62:79:e4:b9:f4:92:5f:22:f3:ca:d8:e2:
c3:de:07:9b:11:a5:23:fe:79:3c:86:63:5d:ce:c6:db:2c:1e:
f3:18:18:03:cb:98:50:70:36:eb:9f:69:a1:89:f4:cd:56:29:
e6:40:17:14:0a:16:56:f7:a3:33:c5:78:73:30:2e:63:99:d5:
b9:02:ec:b3:3f:37:1f:e0:1b:82:14:c1:c0:82:05:78:29:45:
e9:75:6c:f7:7f:16:33:ea:22:19:2a:49:c6:f4:c3:c7:c9:60:
bf:23:8a:8b:85:a4:3f:2a:41:9b:fb:7e:a2:86:b0:18:c9:a5:
df:ec:bc:7b:a5:ee:53:cd:6a:34:10:46:ce:73:63:b1:1d:3a:
99:c4:6a:49:3e:54:79:22:53:a2:7b:94:e9:ce:c5:5f:7c:87:
a8:73:67:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:05:35 2025 by rpki-client