Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f517e4-b42e-4409-b1ff-092e26334026/1/VeL5y4HMpx5YD59QdPaTm74Prfk.roa
File: VeL5y4HMpx5YD59QdPaTm74Prfk.roa (raw, json)
Hash identifier: taJ8G/3jFfT5cHTT2DaciKHSFKOOu8+sE2xtCaVUK1I=
Subject key identifier: 55:E2:F9:CB:81:CC:A7:1E:58:0F:9F:50:74:F6:93:9B:BE:0F:AD:F9
Certificate issuer: /CN=06e4ad7888b08ca4535637b608bb7dc214a6624f
Certificate serial: 01941FFA03E2BC450363E3A43C05B82B932F
Authority key identifier: 06:E4:AD:78:88:B0:8C:A4:53:56:37:B6:08:BB:7D:C2:14:A6:62:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BuSteIiwjKRTVje2CLt9whSmYk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f517e4-b42e-4409-b1ff-092e26334026/1/VeL5y4HMpx5YD59QdPaTm74Prfk.roa
Signing time: Wed 01 Jan 2025 03:47:46 +0000
ROA not before: Wed 01 Jan 2025 03:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57924
IP address blocks: 91.236.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:03:e2:bc:45:03:63:e3:a4:3c:05:b8:2b:93:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06e4ad7888b08ca4535637b608bb7dc214a6624f
Validity
Not Before: Jan 1 03:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55e2f9cb81cca71e580f9f5074f6939bbe0fadf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fb:15:a1:1d:09:5e:a1:56:55:28:40:3f:db:
8c:cc:2a:6b:e9:11:31:e3:2a:f2:df:d6:83:dc:dd:
38:47:be:aa:54:d4:83:ff:b1:26:10:cc:26:8d:64:
3f:c1:15:9b:84:8f:98:82:89:f1:67:cd:03:82:bd:
6d:8e:97:65:e1:38:15:af:ca:85:44:c9:1b:cb:6a:
0d:27:e8:50:14:38:4d:b1:42:90:4c:16:92:8b:1a:
33:a6:07:44:88:14:38:3d:54:ae:bd:fa:89:9c:00:
cc:24:f1:55:9f:c6:b2:61:f0:8d:8e:83:00:0a:8a:
27:ca:92:6b:82:5f:85:68:14:36:81:45:42:1d:ef:
e9:74:57:5e:0b:41:a0:3c:93:e8:5d:9f:2b:b5:2a:
0f:5e:42:26:bd:74:46:2d:7b:25:eb:de:d6:d0:ab:
e9:31:95:5b:b1:b3:43:09:a9:c7:86:16:6f:76:f0:
d8:6e:f3:a8:06:14:83:36:5a:5c:c7:a9:e4:c7:4e:
58:79:da:b9:e6:07:80:49:49:74:b6:dd:9b:80:40:
08:7e:05:1a:74:76:cc:7c:f8:c6:77:11:e8:31:58:
68:e1:e0:6e:71:1a:c7:a3:e4:9b:53:5d:74:9d:55:
d0:06:e1:a3:0e:ff:5d:41:28:02:d9:68:21:c7:fb:
fe:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E2:F9:CB:81:CC:A7:1E:58:0F:9F:50:74:F6:93:9B:BE:0F:AD:F9
X509v3 Authority Key Identifier:
keyid:06:E4:AD:78:88:B0:8C:A4:53:56:37:B6:08:BB:7D:C2:14:A6:62:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BuSteIiwjKRTVje2CLt9whSmYk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f517e4-b42e-4409-b1ff-092e26334026/1/VeL5y4HMpx5YD59QdPaTm74Prfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f517e4-b42e-4409-b1ff-092e26334026/1/BuSteIiwjKRTVje2CLt9whSmYk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.171.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:15:c1:b8:98:aa:3b:25:81:f3:23:43:8c:79:65:d2:7c:f4:
9d:c7:f8:fd:2c:33:6f:b2:25:6f:a7:fc:f4:50:a4:f8:a5:6d:
80:1d:04:85:57:a1:91:d4:98:39:ff:4a:a6:cc:53:07:b8:8a:
63:2f:14:a0:59:32:50:b4:53:15:d5:1d:79:5a:11:24:aa:52:
51:47:c4:c7:60:6c:f9:28:a2:ec:b2:07:c6:b4:df:ec:5f:35:
bb:92:1d:62:8c:db:bf:90:89:f5:df:42:9a:5a:9a:51:10:f4:
2d:09:0b:91:de:fc:b2:ab:ca:a9:49:04:73:cc:d2:6f:ac:cb:
c7:b3:b8:a2:95:7c:d8:1e:d1:de:9c:b6:fe:12:d3:b4:15:3c:
63:a3:04:47:e4:9c:05:e8:29:bc:50:ea:33:53:fb:59:8b:2b:
8d:9d:7b:ba:5e:6e:39:fb:b8:7c:a8:53:7d:d6:6a:7e:23:f8:
f9:05:ec:09:1e:a5:96:39:53:d1:0a:34:00:95:7c:e7:0b:e0:
7b:68:0a:da:45:3a:5d:bf:c7:0d:86:10:b3:e5:1b:80:94:45:
a2:c7:cd:d8:29:2e:d6:55:3f:6b:06:31:44:a8:40:fc:e0:e2:
01:ac:58:b3:01:1b:51:84:5f:9f:83:d1:66:1e:84:17:95:e1:
e8:87:82:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:15:48 2025 by rpki-client