Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f5b954-65b9-437a-b499-9c28e1cd197e/1/8Q2kvxICuLYKGd9hf_IIyXIT1hc.roa
File: 8Q2kvxICuLYKGd9hf_IIyXIT1hc.roa (raw, json)
Hash identifier: yrNqF5B7T7WDCBoaeIMMVXQKcasDPBiD4qiKZZx18VM=
Subject key identifier: F1:0D:A4:BF:12:02:B8:B6:0A:19:DF:61:7F:F2:08:C9:72:13:D6:17
Certificate issuer: /CN=3d3257a4cc2d989b3126d8b2cfdbbc2015e08bb4
Certificate serial: 06F13028
Authority key identifier: 3D:32:57:A4:CC:2D:98:9B:31:26:D8:B2:CF:DB:BC:20:15:E0:8B:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PTJXpMwtmJsxJtiyz9u8IBXgi7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f5b954-65b9-437a-b499-9c28e1cd197e/1/8Q2kvxICuLYKGd9hf_IIyXIT1hc.roa
Signing time: Sat 01 Jan 2022 01:53:01 +0000
ROA not before: Sat 01 Jan 2022 01:53:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 91.230.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116469800 (0x6f13028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d3257a4cc2d989b3126d8b2cfdbbc2015e08bb4
Validity
Not Before: Jan 1 01:53:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f10da4bf1202b8b60a19df617ff208c97213d617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d6:a5:0e:a1:e9:92:5e:3e:c8:ce:e4:2c:3a:
89:59:3c:7f:6d:f0:91:a0:e8:e0:17:cf:6c:28:17:
03:42:77:47:fc:74:51:12:d0:0e:f7:1a:e0:a9:c3:
ed:fa:f5:6e:7f:26:a3:c3:4f:e8:d5:64:f7:2e:3e:
65:be:55:52:77:49:e9:60:50:e9:8c:38:aa:dc:f8:
2b:0b:77:da:38:53:21:5b:c9:bd:91:bf:44:76:32:
80:df:1e:5a:4a:b7:5e:f7:e9:b4:a5:67:cc:8f:77:
40:45:06:4b:14:68:19:d0:80:5b:74:ff:f5:a5:cd:
ea:0b:f0:ee:d2:3b:dc:b2:b5:c3:02:7c:a0:96:73:
af:15:29:77:0e:75:f7:a2:b2:d2:e1:fe:f0:5c:19:
55:18:96:d3:63:2e:30:4f:e3:26:ab:e0:f7:af:b9:
92:ae:46:a2:47:92:dc:2c:42:29:9e:81:ab:8b:ee:
ba:86:54:b6:f0:49:c0:15:02:86:12:2c:bd:af:90:
63:6e:5b:85:4a:54:ba:c3:18:56:15:08:af:5d:c2:
2c:f3:74:9d:f1:03:27:82:78:31:ed:3b:c6:85:fd:
94:d2:06:e4:52:28:d3:cd:63:59:33:53:0a:25:b2:
8b:cd:a8:7c:f5:84:3a:cc:24:00:ae:c7:69:eb:85:
a4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0D:A4:BF:12:02:B8:B6:0A:19:DF:61:7F:F2:08:C9:72:13:D6:17
X509v3 Authority Key Identifier:
keyid:3D:32:57:A4:CC:2D:98:9B:31:26:D8:B2:CF:DB:BC:20:15:E0:8B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PTJXpMwtmJsxJtiyz9u8IBXgi7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f5b954-65b9-437a-b499-9c28e1cd197e/1/8Q2kvxICuLYKGd9hf_IIyXIT1hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f5b954-65b9-437a-b499-9c28e1cd197e/1/PTJXpMwtmJsxJtiyz9u8IBXgi7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.237.0/24
Signature Algorithm: sha256WithRSAEncryption
08:cc:b8:62:f7:08:fe:55:e9:13:bd:17:06:32:6c:52:22:38:
1b:72:ce:ab:cc:b0:a5:64:10:b1:09:e2:63:92:8a:55:98:69:
6d:76:80:9b:0b:bb:5a:f3:c5:57:2a:d2:dc:e1:81:e6:46:65:
ac:ed:8f:ad:cd:fe:8d:0c:bf:b4:03:6f:22:e3:aa:cd:42:c6:
8b:c0:ab:6e:f6:aa:8a:1a:c3:ee:0d:6f:11:d5:9b:9d:73:37:
f6:58:9d:30:ac:b0:c1:19:42:34:45:77:6a:ab:6d:38:2d:b2:
ec:c0:6f:5c:82:00:0d:17:d4:b6:19:18:d4:c9:1a:39:70:fb:
f3:b6:01:c0:44:14:9c:bb:66:42:c0:da:55:5d:31:d7:8a:29:
2a:a3:40:3f:aa:46:fd:f1:d1:46:24:94:89:e9:fb:0c:ee:26:
21:b7:27:36:bc:6e:ae:af:20:dc:e4:0c:0e:4a:98:62:a8:85:
91:fa:2d:78:e2:e8:c1:6f:ea:a3:97:11:e7:a6:53:77:14:4f:
7d:a3:47:1a:9d:aa:9e:39:8f:ad:05:56:a1:aa:f3:6c:ee:84:
47:45:6f:26:ff:60:ec:a0:00:99:2e:6e:ce:c1:d9:14:4c:6c:
4d:b6:b4:57:7c:ce:73:08:3b:c7:67:5f:c3:22:99:9d:66:44:
be:81:8a:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:34:00 2025 by rpki-client