Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/UhsTPDlkEVTfjN0gtgklGlfn_mQ.roa
File: UhsTPDlkEVTfjN0gtgklGlfn_mQ.roa (raw, json)
Hash identifier: gvwxeqU03k4MQD3WdF59OWVu6wgm7kgHM+ORIWuetR0=
Subject key identifier: 52:1B:13:3C:39:64:11:54:DF:8C:DD:20:B6:09:25:1A:57:E7:FE:64
Certificate issuer: /CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Certificate serial: 01942444CA3C92260CA04CA4EDC028BF5EE5
Authority key identifier: 1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/UhsTPDlkEVTfjN0gtgklGlfn_mQ.roa
Signing time: Wed 01 Jan 2025 23:47:55 +0000
ROA not before: Wed 01 Jan 2025 23:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28889
IP address blocks: 91.206.236.0/24 maxlen: 24
91.206.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:ca:3c:92:26:0c:a0:4c:a4:ed:c0:28:bf:5e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Validity
Not Before: Jan 1 23:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=521b133c39641154df8cdd20b609251a57e7fe64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b2:bd:2e:39:db:fa:44:b0:28:ef:24:96:f3:
71:85:81:4b:5e:32:d5:11:bf:b8:7c:73:b3:54:bf:
3b:6c:cf:3c:81:af:d8:5f:40:1e:a6:48:f2:d6:ea:
70:e0:45:76:64:90:cc:7c:ab:e7:b7:d2:12:2f:34:
3e:92:0f:eb:55:ca:83:64:28:59:01:e1:9a:38:e7:
32:01:d3:bf:c0:29:c4:5e:4a:03:e9:a2:f4:04:1a:
e5:32:54:d5:10:ec:6c:c3:66:08:c5:d9:7c:99:9c:
d6:18:e5:53:b1:39:9a:80:9b:c9:e3:ec:83:59:4e:
2d:37:36:2b:6b:66:58:07:d8:bf:d4:e2:96:eb:72:
d4:69:a1:04:74:54:9c:9b:d7:91:0a:b9:c8:47:0b:
fd:a7:77:09:0a:89:96:5b:03:24:09:9f:d6:5d:66:
ba:cf:b4:b9:c3:67:f1:2c:5c:e2:00:18:b0:ce:56:
b3:67:92:0c:96:a1:1e:a6:cb:0e:7d:9d:36:88:33:
b8:87:fc:6e:ed:65:b2:b1:27:e1:5b:55:fc:fd:0f:
9c:22:16:6f:69:30:85:38:7c:cf:09:9e:c9:f5:c2:
9a:19:20:55:1f:f9:64:78:ce:ff:b5:4b:f7:8b:5b:
89:71:2b:37:df:a2:d2:3b:d1:17:e4:ed:80:55:4f:
28:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1B:13:3C:39:64:11:54:DF:8C:DD:20:B6:09:25:1A:57:E7:FE:64
X509v3 Authority Key Identifier:
keyid:1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/UhsTPDlkEVTfjN0gtgklGlfn_mQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.236.0/23
Signature Algorithm: sha256WithRSAEncryption
99:04:f0:87:33:d3:94:56:98:18:15:d6:2a:82:38:b2:43:a2:
43:81:bd:08:45:c5:5d:13:6a:6f:2b:2e:4f:5b:91:08:64:ff:
38:f8:f0:af:fe:2c:bb:73:bc:f3:87:28:5d:ad:8e:1b:5f:20:
d8:12:2a:6a:54:0f:3b:35:9e:c2:b8:41:46:79:fe:cd:04:3a:
8d:02:63:90:a8:5b:50:01:31:25:ef:2b:ee:c0:7f:d8:f2:37:
3a:56:2f:8d:03:04:4c:b7:ee:d3:72:bb:4c:ec:36:0b:88:e9:
4c:9f:07:d8:02:2c:ff:f8:5d:a1:e2:ad:f6:4e:94:d4:93:cc:
95:bf:eb:ef:9e:5c:29:86:28:31:05:0a:8e:91:13:d8:65:9f:
ff:78:2a:99:82:d3:fe:c3:5e:b9:65:5e:23:02:ea:b2:37:79:
c7:89:a5:19:f7:b5:8e:16:22:f4:50:9e:9f:ef:44:e8:a8:6e:
34:29:71:47:32:5d:ab:2d:9d:0c:0f:48:84:81:5e:8c:b6:ca:
9e:bd:89:4d:11:93:0d:8b:6e:3e:19:6e:ee:a7:f3:84:ef:9c:
b6:fc:65:40:22:d0:16:5c:ae:81:a3:d5:4d:a3:50:77:c8:e2:
bf:c4:a7:78:c8:63:7f:39:6d:40:c0:16:79:d5:7b:cb:b6:63:
45:b9:44:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:51:52 2025 by rpki-client