Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/dyWZ1snIdkm7MzI4bl5TDSV-wlw.roa
File: dyWZ1snIdkm7MzI4bl5TDSV-wlw.roa (raw, json)
Hash identifier: c5Q5HYNXnXOXbjKeML4h1NiOwHlTy2XijhCu+thdxhI=
Subject key identifier: 77:25:99:D6:C9:C8:76:49:BB:33:32:38:6E:5E:53:0D:25:7E:C2:5C
Certificate issuer: /CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Certificate serial: 019425FDDD6B15CD4394957CFD21C3EF0163
Authority key identifier: FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/dyWZ1snIdkm7MzI4bl5TDSV-wlw.roa
Signing time: Thu 02 Jan 2025 07:49:41 +0000
ROA not before: Thu 02 Jan 2025 07:49:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214793
IP address blocks: 91.214.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:dd:6b:15:cd:43:94:95:7c:fd:21:c3:ef:01:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Validity
Not Before: Jan 2 07:49:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=772599d6c9c87649bb3332386e5e530d257ec25c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2f:8c:fd:f7:c5:cd:17:36:07:0f:2f:59:aa:
e9:bd:c9:02:be:55:c2:c4:e4:7a:db:38:8d:fe:ff:
45:57:ba:c1:7a:66:50:27:94:c4:f7:3b:b9:e0:41:
a9:80:0d:1e:9b:ef:af:61:2e:77:cd:2b:a5:7c:ad:
64:da:b7:86:48:bd:42:d3:bb:0b:5c:26:ff:db:8c:
00:31:fd:64:da:9a:76:14:0b:08:3c:6e:58:b4:54:
e0:e1:3f:66:4a:68:c2:eb:ac:ff:4d:6d:91:8d:3c:
97:03:6c:87:8b:40:63:41:ab:5c:d7:36:ab:fe:2b:
a6:f8:11:c3:11:44:71:b2:49:fd:09:30:d5:50:a8:
85:04:68:50:95:88:2c:8e:17:16:52:8b:1e:0b:54:
67:09:a4:ba:8e:ba:d4:76:2a:67:f4:f0:be:5e:45:
d4:87:d3:84:ce:ec:84:fd:20:66:a8:e8:30:d9:26:
e3:b6:8b:6a:05:f5:f5:2a:ae:18:f9:14:cd:f9:e0:
3c:9f:30:8f:51:2f:b9:79:c9:07:f3:f3:6d:53:e6:
7f:34:36:cf:4e:f9:75:0a:74:c1:d0:8b:b0:a5:85:
93:1b:07:9f:4d:ec:29:4b:05:84:78:25:a8:1b:6b:
03:22:17:b1:5a:9d:e0:d8:6a:fe:45:b2:94:34:f6:
bd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:25:99:D6:C9:C8:76:49:BB:33:32:38:6E:5E:53:0D:25:7E:C2:5C
X509v3 Authority Key Identifier:
keyid:FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/dyWZ1snIdkm7MzI4bl5TDSV-wlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.79.0/24
Signature Algorithm: sha256WithRSAEncryption
96:d4:d9:3c:a6:04:20:c3:f7:79:7d:56:5f:4d:ac:25:30:a1:
dd:a0:ec:e8:53:1a:8b:68:e8:77:ba:c4:6f:a2:54:0b:cc:29:
32:fa:b9:62:3d:49:ba:72:a6:d3:d8:6a:e3:34:68:80:f2:c5:
f9:a6:5f:b3:18:42:88:0f:5d:40:49:19:67:e9:48:c9:6e:6b:
75:13:5e:2c:ad:d6:8f:8a:83:c1:c0:63:45:d3:c7:eb:4e:8c:
94:4b:5e:3d:46:9b:2c:91:02:3c:ab:7d:84:42:65:95:b1:2d:
f3:b6:60:cd:f7:27:65:a4:8b:eb:c8:2c:ae:46:22:e9:78:3a:
19:b1:cd:0d:b0:ff:73:1a:62:8c:54:9d:a9:63:5a:c3:bc:e8:
b2:07:c8:4f:af:fa:1a:9a:16:60:52:88:52:5f:da:29:c6:90:
fc:7c:ce:8e:cf:0f:a8:5a:24:34:68:73:17:bc:2c:98:d8:90:
84:21:17:01:27:7b:1b:d1:1b:3d:fe:dd:0b:8b:aa:03:96:3b:
96:fc:86:3c:e6:96:68:18:1e:a4:55:60:40:43:41:51:a1:71:
4d:26:02:9f:fd:9d:92:c9:ec:96:5a:f9:27:68:a9:04:03:98:
20:9c:c1:f0:fd:62:93:62:57:c1:ff:33:db:2c:f2:5c:26:1b:
9e:3b:f0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:10:27 2025 by rpki-client