Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/73x2Y8rtkrW56QrQQDyvuiFLG40.roa
File: 73x2Y8rtkrW56QrQQDyvuiFLG40.roa (raw, json)
Hash identifier: oxRcUfzeJXkoQZbB0gN4SvScUE5rLGzaBI9pXSTycUY=
Subject key identifier: EF:7C:76:63:CA:ED:92:B5:B9:E9:0A:D0:40:3C:AF:BA:21:4B:1B:8D
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 019424449BF6B663DC90C7451F2A29C4938F
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/73x2Y8rtkrW56QrQQDyvuiFLG40.roa
Signing time: Wed 01 Jan 2025 23:47:43 +0000
ROA not before: Wed 01 Jan 2025 23:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199062
IP address blocks: 91.103.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:9b:f6:b6:63:dc:90:c7:45:1f:2a:29:c4:93:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Jan 1 23:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef7c7663caed92b5b9e90ad0403cafba214b1b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:25:8d:8b:be:96:1d:f2:b9:86:77:94:f5:
5a:b4:1a:b6:27:bb:29:85:13:d4:9e:49:3a:30:b9:
2a:9b:55:60:2f:de:9f:84:2b:9e:f5:d2:d4:ea:a1:
7f:6c:2e:cd:13:a6:47:c0:55:7d:dd:bc:03:90:06:
b1:89:1e:a3:2f:2c:cd:e7:5d:c1:3e:7c:e2:5a:e6:
3a:7e:bf:4d:3c:de:fd:ae:da:dd:12:5d:c7:3c:16:
d5:b0:5b:30:30:e7:c2:a4:77:dc:68:7a:ea:d1:9c:
88:ce:c5:f2:67:94:d5:1e:7b:ac:69:8c:16:db:9d:
bc:8f:d0:4d:70:8b:56:d2:72:30:25:05:a1:07:f2:
1f:0d:c9:63:29:48:01:d0:75:8a:a7:b8:74:90:11:
c3:4a:59:f7:bc:8a:28:34:46:1e:2a:1a:7c:15:36:
fc:01:31:e3:bb:3b:21:e3:7c:11:dd:8e:8b:d7:6e:
b6:bf:51:61:ab:61:02:9e:72:b8:c0:9a:4e:06:64:
31:3d:93:04:56:61:f5:0b:f3:33:13:b6:33:96:19:
4a:64:ad:e8:65:4e:ca:08:99:92:1f:9e:cf:a3:77:
60:be:b4:24:62:96:cd:07:0b:fa:eb:15:3b:1b:93:
b6:d2:8f:89:1b:6d:84:bc:94:2b:21:81:8b:40:17:
48:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7C:76:63:CA:ED:92:B5:B9:E9:0A:D0:40:3C:AF:BA:21:4B:1B:8D
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/73x2Y8rtkrW56QrQQDyvuiFLG40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.58.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:55:99:3e:dd:c5:2d:28:9a:4d:ba:12:7d:ae:78:bd:7e:75:
70:10:90:6a:c3:a9:b3:f9:dc:52:19:ca:be:dd:73:27:b8:1d:
95:d7:b8:56:62:b0:3b:86:76:bb:ac:d8:44:45:80:25:91:d6:
dc:52:29:9c:87:26:3b:24:8f:9d:00:77:75:0c:15:2d:71:3e:
9e:82:8b:d7:ac:c6:bb:de:43:06:a0:47:6c:e3:bc:76:4a:38:
a6:07:25:61:a9:a8:00:6a:04:87:76:be:c3:78:92:9f:12:96:
bb:2f:e7:88:0d:b2:95:60:86:0f:51:e9:29:c1:dc:c0:f1:89:
eb:80:0d:a0:57:5e:9f:32:39:68:50:0f:79:cf:5f:f0:25:dc:
98:e5:b0:81:cd:9c:45:11:78:d3:b7:78:1e:54:18:c8:e5:70:
32:7c:f3:cc:8e:c4:70:7c:6a:24:6b:59:22:01:16:85:ae:11:
0b:6e:32:7e:78:96:da:33:0a:54:37:86:37:fb:5c:b3:3b:68:
63:ca:65:c2:c4:80:92:8b:4f:a8:7c:bb:44:39:ec:60:40:d9:
1c:df:07:35:e1:1d:cc:eb:ed:45:1d:0c:c5:7c:c4:21:d2:05:
04:99:08:16:e7:0a:b1:a7:94:59:0f:89:3a:49:43:e4:08:02:
22:81:ce:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:59:07 2025 by rpki-client