Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/2if-W7_9B6ndVwa4CXKbXlfYipY.roa
File: 2if-W7_9B6ndVwa4CXKbXlfYipY.roa (raw, json)
Hash identifier: x6w8qlU6igwl5cXDxoZUE8Lr1i8+UZJJXlmem9XWOSg=
Subject key identifier: DA:27:FE:5B:BF:FD:07:A9:DD:57:06:B8:09:72:9B:5E:57:D8:8A:96
Certificate issuer: /CN=c22d553b28c5d0ea5b1ef60c9bce33df50bcb493
Certificate serial: 0194266B61184B14510779684B98661F2C72
Authority key identifier: C2:2D:55:3B:28:C5:D0:EA:5B:1E:F6:0C:9B:CE:33:DF:50:BC:B4:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wi1VOyjF0OpbHvYMm84z31C8tJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/2if-W7_9B6ndVwa4CXKbXlfYipY.roa
Signing time: Thu 02 Jan 2025 09:49:18 +0000
ROA not before: Thu 02 Jan 2025 09:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48367
IP address blocks: 91.210.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:61:18:4b:14:51:07:79:68:4b:98:66:1f:2c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c22d553b28c5d0ea5b1ef60c9bce33df50bcb493
Validity
Not Before: Jan 2 09:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da27fe5bbffd07a9dd5706b809729b5e57d88a96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:28:d0:68:f2:7e:40:d7:b3:0b:e0:a1:c2:a0:
61:2d:48:55:45:d1:f0:dd:28:1e:54:ba:3e:76:f4:
78:25:45:63:d4:f2:69:fe:85:36:d0:d8:76:f6:8e:
0a:04:da:e8:35:1c:b1:c3:d9:d6:35:fd:92:5f:a1:
7b:32:dc:de:5e:b4:21:57:07:bc:ce:2f:f1:cb:40:
a3:21:20:4d:32:fe:d2:58:94:52:15:24:1f:b1:c6:
aa:ca:a5:7b:ff:fc:68:5f:89:8d:ac:5f:3a:81:ac:
1e:2e:e4:06:83:a8:ca:3d:3b:96:b0:d0:5a:cb:ae:
40:ec:8b:5c:02:34:27:f7:f8:9a:f7:1a:e2:d1:ec:
f0:d8:6c:03:58:95:55:55:43:37:c8:3a:57:4f:b2:
f3:a7:3b:12:e3:6e:26:d6:0d:dc:25:4e:31:46:47:
41:a7:53:44:64:96:74:19:31:4c:ad:f1:96:55:32:
8c:78:0d:7c:00:44:32:c5:6e:5c:f0:f2:63:ac:5d:
2e:91:59:cc:e9:b1:5a:51:ce:62:2e:91:b3:b2:7a:
6c:f6:bb:9f:10:5c:ac:1e:d5:f3:23:56:96:0f:ae:
71:a7:f5:24:31:bf:82:ef:c2:e5:06:92:fb:20:9e:
3d:a8:f5:c8:7a:7c:00:46:5f:a9:d9:cd:8d:8e:46:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:27:FE:5B:BF:FD:07:A9:DD:57:06:B8:09:72:9B:5E:57:D8:8A:96
X509v3 Authority Key Identifier:
keyid:C2:2D:55:3B:28:C5:D0:EA:5B:1E:F6:0C:9B:CE:33:DF:50:BC:B4:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wi1VOyjF0OpbHvYMm84z31C8tJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/2if-W7_9B6ndVwa4CXKbXlfYipY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/wi1VOyjF0OpbHvYMm84z31C8tJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.220.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:95:be:34:58:d8:67:89:1e:d3:2c:a0:97:7f:f9:89:95:1d:
68:99:2d:65:23:af:bc:03:a5:0c:4d:9f:81:70:70:23:a5:30:
1e:29:26:c5:bf:ba:d0:8f:91:07:9e:6d:25:0f:55:ab:a2:29:
69:f4:ae:d2:4b:1b:a5:83:76:52:0e:46:1a:b7:cc:3b:b1:52:
d7:45:e6:db:7c:36:0d:ad:5c:f5:ae:1b:29:5d:41:74:08:1c:
cf:c7:06:03:4c:27:ef:ee:ca:6f:57:35:3c:3f:54:d5:7a:15:
e2:15:d1:e2:9e:74:9f:75:24:6d:0d:97:29:b3:e0:5e:7d:17:
bd:aa:e8:e1:16:8f:76:67:39:b3:fe:51:3e:a7:c2:60:8f:f6:
7c:04:e7:41:76:63:71:bd:94:34:c1:69:e9:ef:54:30:1d:95:
ff:97:02:b0:e3:33:4c:8c:66:36:45:ca:ce:d8:24:f0:f3:64:
5e:9b:0e:86:db:b5:50:26:42:d1:62:f8:55:6f:5a:5b:cf:6e:
9f:2d:35:98:ad:c1:a9:20:a7:7f:9f:42:85:71:c2:26:b8:86:
18:15:b7:1d:ef:03:c2:c6:2c:18:62:ce:03:82:bc:3f:ee:b1:
1c:3d:a7:c0:cc:c5:d5:4e:b5:7b:44:b3:0d:51:77:43:35:be:
7f:ad:d9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:11:41 2025 by rpki-client