Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/f80d27-18af-4982-bb07-e72fa5531d45/1/1-lCQIu3wKSeUq2VrUD5tWenu5SY.roa
File: 1-lCQIu3wKSeUq2VrUD5tWenu5SY.roa (raw, json)
Hash identifier: uGVhG0epQ2wGofSbe1ShOYtQrordv9iVyPvHij3V4P4=
Subject key identifier: FA:50:90:22:ED:F0:29:27:94:AB:65:6B:50:3E:6D:59:E9:EE:E5:26
Certificate issuer: /CN=345eecab9570cf0affa81be748e9128f55e416c2
Certificate serial: 019427B3CE37DCBDCABA01B612B2325B7D28
Authority key identifier: 34:5E:EC:AB:95:70:CF:0A:FF:A8:1B:E7:48:E9:12:8F:55:E4:16:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NF7sq5Vwzwr_qBvnSOkSj1XkFsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/f80d27-18af-4982-bb07-e72fa5531d45/1/1-lCQIu3wKSeUq2VrUD5tWenu5SY.roa
Signing time: Thu 02 Jan 2025 15:48:02 +0000
ROA not before: Thu 02 Jan 2025 15:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51101
IP address blocks: 91.237.72.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:ce:37:dc:bd:ca:ba:01:b6:12:b2:32:5b:7d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345eecab9570cf0affa81be748e9128f55e416c2
Validity
Not Before: Jan 2 15:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fa509022edf0292794ab656b503e6d59e9eee526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d5:ea:a8:58:0a:6b:95:64:17:d4:a8:88:6d:
8c:bc:12:c8:ec:a0:eb:64:a4:e9:1c:4e:92:2b:4a:
c3:f2:07:45:8d:5a:53:15:cc:95:3c:20:cf:ec:6d:
af:ae:16:c6:ec:dc:ba:a7:b6:9f:11:23:6e:4a:f9:
20:0b:65:89:92:fc:f5:cd:06:be:37:17:b8:55:d8:
7a:0d:6c:3b:c7:e4:63:12:53:fa:61:a8:c6:e9:97:
8b:30:73:bb:10:5b:56:af:06:e4:40:be:3c:2b:cb:
28:ce:d7:5f:13:4d:11:fa:68:d5:59:d7:06:42:6a:
06:46:c2:83:81:54:e4:4d:51:46:08:2b:8e:97:a9:
04:bc:37:4f:0a:84:3b:d0:fc:db:d3:b2:b1:ce:3d:
16:5c:6c:37:f1:8c:65:ca:9c:67:3f:6e:e6:c7:2b:
ac:b9:0e:89:df:02:27:b7:a1:60:70:20:ed:cf:41:
2c:5b:0b:65:46:a9:9e:0a:ae:b6:bf:c2:6d:f6:55:
14:0c:03:75:b7:e3:5d:61:ce:8c:e7:dd:12:5d:83:
a2:5e:22:35:91:09:a0:90:5c:7d:b4:e8:14:d3:40:
56:7f:df:f1:55:79:0f:7d:d9:ff:52:80:8f:f8:5e:
f0:6e:a6:79:43:d1:c5:61:2b:be:37:98:28:39:19:
aa:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:50:90:22:ED:F0:29:27:94:AB:65:6B:50:3E:6D:59:E9:EE:E5:26
X509v3 Authority Key Identifier:
keyid:34:5E:EC:AB:95:70:CF:0A:FF:A8:1B:E7:48:E9:12:8F:55:E4:16:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NF7sq5Vwzwr_qBvnSOkSj1XkFsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/f80d27-18af-4982-bb07-e72fa5531d45/1/1-lCQIu3wKSeUq2VrUD5tWenu5SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/f80d27-18af-4982-bb07-e72fa5531d45/1/NF7sq5Vwzwr_qBvnSOkSj1XkFsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.72.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:79:da:42:a0:28:72:be:0b:d3:9c:99:b0:ea:fb:c7:9d:c8:
6b:1b:a1:80:d4:98:86:45:7b:08:66:e9:83:e1:5b:4a:f5:73:
a4:da:96:be:e7:3b:53:2c:aa:50:55:41:7b:c2:0e:d2:1a:3d:
27:fb:35:86:12:a9:b9:b4:f7:2d:0f:fa:fc:fc:2d:0d:61:36:
59:44:df:ed:cd:0f:93:7b:00:18:cd:fe:de:e9:fa:c8:06:18:
77:48:5f:20:c2:66:da:2c:d6:d8:40:64:16:8d:c8:19:a0:37:
36:39:fb:f2:20:10:44:29:2d:2e:c8:53:90:6c:ac:fe:3e:1f:
89:51:cc:31:b7:02:f8:e0:dc:29:43:ce:27:8c:0d:45:cc:8a:
34:cf:04:e0:3b:4f:7a:0f:b1:8d:ba:bc:0b:e8:ad:06:28:9c:
6b:88:92:a3:52:d7:ec:1e:b5:aa:72:80:94:52:09:e2:48:64:
59:c6:c0:34:08:62:e1:cd:04:eb:f0:1a:99:c7:76:44:e4:3a:
fe:08:9f:1a:54:0a:27:77:ed:56:96:95:f4:2a:3d:9a:c7:95:
33:aa:21:fb:35:98:38:be:ed:1f:49:80:5e:39:a0:43:11:e9:
10:ae:46:6e:5b:96:ac:c4:28:3d:b8:09:c1:0e:f4:98:b9:8b:
b7:4d:d4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net