Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/WjHlxqu14v8phrZRkyuwZHi4tA0.roa
File: WjHlxqu14v8phrZRkyuwZHi4tA0.roa (raw, json)
Hash identifier: OgrQu5S4ReMsliJzFxYO2+I1LQQpOGuq17K/+Bl2UJs=
Subject key identifier: 5A:31:E5:C6:AB:B5:E2:FF:29:86:B6:51:93:2B:B0:64:78:B8:B4:0D
Certificate issuer: /CN=412abb114f32570c5dd52066259bdc80c98768fd
Certificate serial: 01941FFA5921987F73A1E429D481FBDCEB48
Authority key identifier: 41:2A:BB:11:4F:32:57:0C:5D:D5:20:66:25:9B:DC:80:C9:87:68:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSq7EU8yVwxd1SBmJZvcgMmHaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/WjHlxqu14v8phrZRkyuwZHi4tA0.roa
Signing time: Wed 01 Jan 2025 03:48:07 +0000
ROA not before: Wed 01 Jan 2025 03:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197684
IP address blocks: 91.201.202.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:59:21:98:7f:73:a1:e4:29:d4:81:fb:dc:eb:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412abb114f32570c5dd52066259bdc80c98768fd
Validity
Not Before: Jan 1 03:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a31e5c6abb5e2ff2986b651932bb06478b8b40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9c:f0:aa:98:91:d4:65:57:30:ed:b5:a1:6c:
a5:af:e1:66:be:69:b0:10:b8:35:90:11:b4:e9:5d:
ca:1a:1f:bc:c8:2f:de:4e:ac:0d:86:25:c7:b8:00:
79:47:c8:a3:bb:70:64:64:46:5d:67:06:b9:b9:37:
ea:0e:62:0d:07:e6:3a:79:43:ac:0a:0e:34:47:39:
de:5f:9e:ee:5d:7a:d5:86:1c:c8:ed:98:b9:ae:a3:
08:e0:35:cc:43:b5:f6:46:e5:e3:0b:8c:70:c3:2e:
23:78:1d:0c:72:9e:75:e0:f2:14:13:fe:b2:17:1f:
05:ca:2d:62:6d:98:b3:12:59:83:c8:fa:b2:f7:55:
5e:ad:cf:e3:9c:6a:c9:81:a4:36:2e:55:f6:83:e0:
3c:3a:ec:47:b0:ed:64:63:11:14:c7:41:c4:d9:d5:
46:16:3a:cb:af:48:89:52:bf:38:c7:8b:c5:1e:c8:
05:7f:95:e6:8b:b1:06:c3:85:f3:06:e0:a2:48:9b:
03:0c:5e:9f:d6:95:92:5b:7c:72:45:68:0b:aa:bc:
39:6b:52:6a:88:04:6c:31:da:85:47:3b:01:34:93:
69:67:cb:f1:8e:80:51:11:08:65:56:fc:5c:88:c8:
b1:27:53:fc:b7:15:fd:a7:d9:3f:1e:a2:7b:59:e2:
e6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:31:E5:C6:AB:B5:E2:FF:29:86:B6:51:93:2B:B0:64:78:B8:B4:0D
X509v3 Authority Key Identifier:
keyid:41:2A:BB:11:4F:32:57:0C:5D:D5:20:66:25:9B:DC:80:C9:87:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSq7EU8yVwxd1SBmJZvcgMmHaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/WjHlxqu14v8phrZRkyuwZHi4tA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/QSq7EU8yVwxd1SBmJZvcgMmHaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.202.0/23
Signature Algorithm: sha256WithRSAEncryption
53:57:3c:d8:96:99:7e:2c:e5:7b:05:ad:5a:7b:da:ee:ba:8f:
c8:a1:94:d0:22:cd:92:50:95:02:27:c1:35:8b:81:d1:cc:03:
58:48:71:34:54:44:ac:8d:be:5c:e8:35:37:10:35:8a:90:75:
12:67:65:5a:47:9b:90:ab:7e:7d:cf:a4:79:01:b5:ef:45:13:
8d:61:ff:ec:a8:e1:14:e4:90:24:84:17:f7:6c:51:69:4b:90:
39:3a:6c:52:8d:17:53:ac:d3:26:ad:60:97:24:81:74:fc:f1:
6a:96:a9:b9:6f:35:86:66:3b:11:aa:1c:dd:2f:81:93:dc:76:
2d:53:c9:6a:b5:c0:c1:a5:09:d0:e1:66:51:6c:de:fb:fb:e1:
48:74:38:83:fc:b5:d2:3a:60:0c:52:24:c0:55:cd:0e:97:51:
bf:08:4c:88:dd:37:b9:9d:0f:4f:03:56:c1:38:f1:29:c7:0e:
b9:09:48:6e:e2:08:4e:cf:ba:8c:56:23:d9:8e:c6:d0:be:ff:
d1:34:68:17:7b:f1:26:d4:32:44:f7:2d:44:f2:0c:29:9c:21:
57:bf:1a:7c:ab:f4:c8:66:dd:27:29:bd:f3:bc:b9:0b:10:de:
75:cf:77:b6:9c:79:7f:6b:ec:a0:b2:02:f0:e4:fd:48:87:ab:
f7:ca:54:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:43 2025 by rpki-client on console.sobornost.net