Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/0Je5Z-nMCx0Zkd418v5HueEhd54.roa
File: 0Je5Z-nMCx0Zkd418v5HueEhd54.roa (raw, json)
Hash identifier: pEX7Z7nPaiJOWyIs9b/nPIQ3gi19xivW2mZ533J3DJo=
Subject key identifier: D0:97:B9:67:E9:CC:0B:1D:19:91:DE:35:F2:FE:47:B9:E1:21:77:9E
Certificate issuer: /CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Certificate serial: 01941F8C7573891479B85F35765A5D9A72B6
Authority key identifier: 5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/0Je5Z-nMCx0Zkd418v5HueEhd54.roa
Signing time: Wed 01 Jan 2025 01:48:06 +0000
ROA not before: Wed 01 Jan 2025 01:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202532
IP address blocks: 91.107.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:75:73:89:14:79:b8:5f:35:76:5a:5d:9a:72:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Validity
Not Before: Jan 1 01:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d097b967e9cc0b1d1991de35f2fe47b9e121779e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:62:6e:89:5f:10:32:9a:0c:e8:f4:55:2e:2e:
20:79:21:c6:89:6b:5c:4c:51:3c:8d:ed:d0:64:c1:
22:38:e1:e7:d4:2e:e8:99:fd:1d:34:e7:a8:92:7f:
f5:bf:da:61:78:d8:db:7f:5b:2d:30:88:57:5d:f9:
8f:0f:58:4b:8f:4e:6d:c1:12:77:50:1c:58:4c:54:
de:44:0f:94:f1:32:14:ff:a3:6d:04:e4:fa:9a:5e:
2c:f3:60:1a:11:c5:7b:1f:a4:08:37:74:a9:f3:f3:
dc:9f:06:74:56:da:ba:60:f9:f6:d0:55:4b:44:e5:
dd:5f:74:ff:8b:a1:a4:3f:3a:24:2d:a4:19:40:43:
2f:d0:cd:95:6d:21:9f:cc:96:c7:73:73:9d:c0:f8:
97:4b:98:3b:93:ff:cd:e9:31:1e:8c:f9:a7:c4:54:
29:3a:de:f0:da:1b:6c:f6:06:c5:f5:4f:2e:d6:0a:
63:0b:7f:1a:d3:02:d0:a5:e3:37:e9:ed:00:03:81:
7e:1b:af:f4:ca:5f:e0:7a:9f:84:20:5c:b9:ec:dd:
62:8b:0b:49:46:bd:95:16:0b:83:20:4f:01:fc:1f:
5c:1a:b2:86:fe:cc:9b:e9:50:f0:89:81:f0:c5:04:
67:c5:ee:cd:c7:d2:a8:63:77:80:0b:83:0c:6f:29:
d0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:97:B9:67:E9:CC:0B:1D:19:91:DE:35:F2:FE:47:B9:E1:21:77:9E
X509v3 Authority Key Identifier:
keyid:5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/0Je5Z-nMCx0Zkd418v5HueEhd54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/XaQypOw7CsTKTk7OwOn01GtJevA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.107.84.0/24
Signature Algorithm: sha256WithRSAEncryption
37:b9:89:98:07:81:7d:21:2a:3a:a0:1b:c7:e5:80:fa:3c:ef:
e5:80:64:11:24:8a:8e:df:2b:f8:da:ee:cb:ae:18:0c:c4:ee:
3c:9e:67:30:f3:89:d6:9f:9a:c6:d3:ef:3f:dd:c3:e7:71:48:
a9:33:15:f2:c7:8e:d6:8d:4b:e3:10:66:90:ee:fa:a9:f7:f8:
9f:dd:6a:06:af:ab:6d:7e:41:02:c2:46:a1:dd:8a:68:4b:52:
95:ca:b1:55:3b:f3:9c:46:ae:3b:6c:9b:d8:a6:c8:a8:cf:94:
49:07:6b:cd:51:72:72:8b:2c:5c:be:0f:ea:87:f1:72:f7:df:
11:07:fb:87:cc:c8:3e:c4:93:e4:79:60:a7:6e:0e:bb:cd:2e:
ad:83:e7:50:da:e7:a2:55:99:3d:fc:7c:74:6d:ce:16:8c:cb:
37:37:79:d0:4c:43:f2:40:cd:e3:64:c8:eb:36:7a:0e:41:3e:
98:1d:b6:0a:d7:6c:b1:a9:e8:f0:e5:4a:82:2e:2d:de:f0:b9:
5f:1b:d1:a2:2c:7d:83:e0:02:ab:e1:7e:e1:ab:9a:81:ab:87:
3b:3e:0e:a5:e0:a6:24:f9:cd:32:2e:00:7d:0c:70:97:af:ba:
27:18:0d:21:f6:f1:17:64:9f:94:ba:3c:c2:04:2e:4e:f0:59:
ea:ac:5a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:44 2025 by rpki-client on console.sobornost.net