Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/6f4bf4-f1aa-47e7-9df1-80070af0eb5e/1/keGJNieidYL1r09rKvuVYvj1tVg.roa
File: keGJNieidYL1r09rKvuVYvj1tVg.roa (raw, json)
Hash identifier: WKE9as92KP/uovsO0JAFz/5JHXNOjH33Qe02BBSBG6c=
Subject key identifier: 91:E1:89:36:27:A2:75:82:F5:AF:4F:6B:2A:FB:95:62:F8:F5:B5:58
Certificate issuer: /CN=e5e7b034b4e7ca86d716b1140fca5b590f3e78c0
Certificate serial: 01941FFA1B8A105CCE1633715CBA3EC3EDF3
Authority key identifier: E5:E7:B0:34:B4:E7:CA:86:D7:16:B1:14:0F:CA:5B:59:0F:3E:78:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5eewNLTnyobXFrEUD8pbWQ8-eMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/6f4bf4-f1aa-47e7-9df1-80070af0eb5e/1/keGJNieidYL1r09rKvuVYvj1tVg.roa
Signing time: Wed 01 Jan 2025 03:47:52 +0000
ROA not before: Wed 01 Jan 2025 03:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 38927
IP address blocks: 91.213.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:1b:8a:10:5c:ce:16:33:71:5c:ba:3e:c3:ed:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5e7b034b4e7ca86d716b1140fca5b590f3e78c0
Validity
Not Before: Jan 1 03:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=91e1893627a27582f5af4f6b2afb9562f8f5b558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d3:46:f6:72:9b:d5:85:21:a7:c4:83:ef:ce:
08:70:fc:82:7d:db:b5:38:30:28:b6:0e:48:79:8d:
7e:7a:15:46:ef:aa:56:e4:3e:07:4b:f1:fe:4d:1e:
d2:64:41:1c:e0:0e:7f:ba:db:f3:30:ea:c0:80:ed:
bb:64:1c:ab:c7:03:9c:ad:22:03:d7:94:25:95:1a:
9a:96:21:d1:c7:69:0e:6b:7f:62:3e:59:9e:b7:36:
7a:87:1e:1d:a5:d1:05:b3:d9:7a:96:86:79:00:f8:
29:69:ba:99:d2:32:88:fa:15:40:54:93:ce:d9:08:
81:89:42:20:07:19:2e:53:14:dc:c4:76:a2:83:59:
49:ab:9d:b4:af:86:5e:7b:f5:53:ea:81:9f:98:66:
0b:97:25:c3:5c:c4:20:64:0f:d7:2e:6e:44:1c:83:
e8:52:2c:c2:dc:bf:03:a4:f8:bb:b7:4b:3c:23:4c:
74:85:78:81:70:9d:8a:2e:14:d0:49:75:2e:78:38:
a5:ed:e7:2f:4c:8f:c4:d2:d6:6d:22:9f:1a:5b:9d:
d3:26:85:66:0f:db:c3:c8:a1:ba:f1:a2:0a:1b:d6:
93:48:56:50:b1:7c:85:d8:d6:fe:b7:90:ce:d3:5a:
cc:01:26:29:5a:23:92:a3:74:2a:3b:e3:58:51:1d:
cb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E1:89:36:27:A2:75:82:F5:AF:4F:6B:2A:FB:95:62:F8:F5:B5:58
X509v3 Authority Key Identifier:
keyid:E5:E7:B0:34:B4:E7:CA:86:D7:16:B1:14:0F:CA:5B:59:0F:3E:78:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5eewNLTnyobXFrEUD8pbWQ8-eMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6f4bf4-f1aa-47e7-9df1-80070af0eb5e/1/keGJNieidYL1r09rKvuVYvj1tVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6f4bf4-f1aa-47e7-9df1-80070af0eb5e/1/5eewNLTnyobXFrEUD8pbWQ8-eMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:9b:00:ad:0a:7f:96:ba:31:2f:f0:f1:c1:a0:31:9b:b0:46:
c6:57:49:fb:70:c7:d5:7e:7f:81:f0:c6:86:ec:65:31:f4:0c:
b7:10:75:5e:d1:4b:f6:26:2b:9c:a9:58:2e:31:84:7e:8a:8f:
28:61:52:96:0a:47:7c:49:39:30:4c:c2:c4:5a:42:a1:44:75:
7e:f3:84:23:17:71:9a:06:ef:69:d5:06:e0:d0:6c:e7:28:6c:
b2:71:3d:c5:36:dc:11:cc:e4:29:42:81:94:ac:ba:fd:e3:cf:
c2:67:72:c6:6a:35:0b:d5:14:1e:e2:64:58:02:f5:ff:6a:66:
a3:2b:bf:4a:7b:00:26:59:d0:43:d9:67:cf:77:56:d8:c6:69:
ae:0c:71:cd:f0:ee:ac:d2:ee:a9:49:14:f5:41:d9:85:da:36:
cd:4d:79:01:a0:2c:fe:dd:2d:f6:6d:77:41:45:b5:d0:1f:85:
76:20:49:9e:25:e4:0c:75:86:36:fb:7c:db:d6:b3:99:7d:35:
32:c6:42:37:13:c3:02:54:6c:b9:96:f7:6c:40:b5:87:5f:59:
15:6a:88:52:72:a1:8c:b2:52:e3:cd:db:3f:15:2d:55:2d:91:
6a:e0:33:98:12:a8:7d:90:7e:f2:d7:93:90:7b:57:32:36:f9:
d9:7f:f0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 16:55:16 2025 by rpki-client