Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/721745-cfe5-4161-b405-069996c630f0/1/UkbqnKEVQc19I4xiaGnllMIeIJM.roa
File: UkbqnKEVQc19I4xiaGnllMIeIJM.roa (raw, json)
Hash identifier: +7BrsyTUNmPDpU5nT2WX5eEhmb2ft1eu3yDXg9IZfaQ=
Subject key identifier: 52:46:EA:9C:A1:15:41:CD:7D:23:8C:62:68:69:E5:94:C2:1E:20:93
Certificate issuer: /CN=18abae0e1f216a321973ccc9c6537ec6197dab18
Certificate serial: 0194258F917A627C90EEF18946F1E9F12667
Authority key identifier: 18:AB:AE:0E:1F:21:6A:32:19:73:CC:C9:C6:53:7E:C6:19:7D:AB:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GKuuDh8hajIZc8zJxlN-xhl9qxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/721745-cfe5-4161-b405-069996c630f0/1/UkbqnKEVQc19I4xiaGnllMIeIJM.roa
Signing time: Thu 02 Jan 2025 05:49:13 +0000
ROA not before: Thu 02 Jan 2025 05:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35393
IP address blocks: 91.198.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:91:7a:62:7c:90:ee:f1:89:46:f1:e9:f1:26:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18abae0e1f216a321973ccc9c6537ec6197dab18
Validity
Not Before: Jan 2 05:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5246ea9ca11541cd7d238c626869e594c21e2093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:53:f0:c7:d2:ed:ff:60:93:2e:4e:bf:a4:cf:
96:53:b1:a1:52:71:c5:e8:10:34:0a:71:7c:2b:68:
5f:e7:69:46:56:2a:59:6b:e8:f2:71:10:01:1a:56:
9e:e2:93:f9:fc:b6:26:3b:db:ce:ca:3d:c2:6c:44:
a0:9e:03:cc:7b:c8:b4:1a:c8:c8:7a:64:e6:d8:70:
d3:9a:29:5c:b7:a9:6c:1d:70:22:75:f1:f1:db:9e:
ae:97:92:4a:be:85:e4:31:5d:aa:d0:85:3e:3d:39:
54:3a:1d:0d:5c:6d:c6:43:60:fa:65:34:8c:f9:dd:
2b:36:35:bd:bc:c7:5b:09:1f:66:b7:4b:38:58:13:
e9:f1:5e:64:04:d5:74:a2:ad:6f:60:39:15:9b:94:
e8:42:7e:50:f2:19:6f:e9:11:e4:f2:8e:0f:03:a8:
1e:3a:72:26:de:c1:61:0a:ff:bb:8d:4b:46:96:65:
57:51:35:5d:75:02:01:00:c4:d6:db:a0:25:01:6d:
51:1e:15:70:65:c3:1c:22:c7:b2:c6:09:43:fb:5b:
b4:5c:9f:48:99:0a:17:3a:9d:2b:a1:6a:11:50:a2:
c3:13:94:b4:1e:65:00:49:a4:a4:37:ce:22:de:5f:
9c:64:4e:3b:d7:e7:3e:2a:2d:52:bf:e6:1c:fa:6e:
96:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:46:EA:9C:A1:15:41:CD:7D:23:8C:62:68:69:E5:94:C2:1E:20:93
X509v3 Authority Key Identifier:
keyid:18:AB:AE:0E:1F:21:6A:32:19:73:CC:C9:C6:53:7E:C6:19:7D:AB:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GKuuDh8hajIZc8zJxlN-xhl9qxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/721745-cfe5-4161-b405-069996c630f0/1/UkbqnKEVQc19I4xiaGnllMIeIJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/721745-cfe5-4161-b405-069996c630f0/1/GKuuDh8hajIZc8zJxlN-xhl9qxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.105.0/24
Signature Algorithm: sha256WithRSAEncryption
64:04:7b:48:a4:45:52:11:a0:f9:d7:7a:cd:ad:da:bd:36:bf:
b0:50:ba:74:92:5b:c3:23:4c:32:d0:1c:63:1d:fb:c4:89:f6:
81:9d:07:09:87:1f:0c:76:95:e5:9a:ab:f8:0b:8f:b9:99:5d:
9b:60:c0:10:f5:a4:53:8d:64:64:16:8d:11:b1:c2:d0:cb:85:
41:02:f8:24:81:e3:da:e3:d7:ea:35:95:1b:5a:53:9d:b4:f7:
18:e5:61:65:e8:ca:58:80:8e:00:59:2c:cd:ce:4c:88:53:65:
35:c3:2e:55:bc:a5:35:0b:7f:89:da:1b:7f:ad:42:39:d2:16:
3a:c7:f2:e0:b5:ea:3b:a0:7c:34:32:b8:dd:8e:08:6f:51:a7:
84:7f:6d:c0:59:15:81:42:2b:c2:33:15:b8:1c:f5:1f:64:df:
34:bb:01:c8:69:aa:fc:36:a7:cb:54:f1:c3:1e:bd:91:f8:a9:
e4:c4:51:bd:8e:8c:ff:e4:b5:57:fd:69:47:9b:55:60:82:d8:
5a:0a:64:b2:26:c1:8a:bc:a9:62:54:43:0f:c4:66:ab:13:62:
95:c5:a1:f1:54:64:75:ce:49:e4:7e:c1:25:da:89:0c:3b:2f:
b9:cf:f9:33:7b:36:39:13:85:0b:a9:b3:0a:27:63:f2:8a:e3:
47:e5:bc:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 22:02:20 2025 by rpki-client