Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/vdjx6mVJjB2A5HRAp4zCXF1WOmI.roa
File: vdjx6mVJjB2A5HRAp4zCXF1WOmI.roa (raw, json)
Hash identifier: nZy4/J4/xAAVv0Nm8r/1Dh/36Nz5IhwHl0WfPkQGlFk=
Subject key identifier: BD:D8:F1:EA:65:49:8C:1D:80:E4:74:40:A7:8C:C2:5C:5D:56:3A:62
Certificate issuer: /CN=27b8abac20a598cca4b12f5d755d8e89321f4ec9
Certificate serial: 019427B59D9E761BCAE5F4BED7936C90A717
Authority key identifier: 27:B8:AB:AC:20:A5:98:CC:A4:B1:2F:5D:75:5D:8E:89:32:1F:4E:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7irrCClmMyksS9ddV2OiTIfTsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/vdjx6mVJjB2A5HRAp4zCXF1WOmI.roa
Signing time: Thu 02 Jan 2025 15:50:01 +0000
ROA not before: Thu 02 Jan 2025 15:50:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199015
IP address blocks: 91.217.54.0/23 maxlen: 24
195.20.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:9d:9e:76:1b:ca:e5:f4:be:d7:93:6c:90:a7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b8abac20a598cca4b12f5d755d8e89321f4ec9
Validity
Not Before: Jan 2 15:50:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bdd8f1ea65498c1d80e47440a78cc25c5d563a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ef:21:ed:34:fe:5a:26:03:d5:a9:86:dd:89:
73:62:23:c4:00:de:ff:6f:fe:97:8f:a2:e1:af:cc:
21:89:f4:ce:7c:4d:bf:30:5a:81:85:b3:a1:44:cb:
6f:48:fa:5a:01:b8:e9:06:5d:f1:24:de:d0:40:eb:
23:c4:17:da:11:61:2f:e8:6b:33:eb:5d:94:3c:45:
65:34:cb:f0:43:0d:ab:90:3d:d1:62:25:2b:06:64:
f0:e3:a3:16:e8:93:d0:1f:16:e8:64:53:90:18:05:
59:63:25:76:72:b3:af:8c:04:69:cd:50:e9:9b:ef:
b5:c6:80:50:df:e9:03:8e:bf:1a:6b:91:77:13:82:
a2:14:60:89:1d:dd:be:bf:ee:f8:3d:a2:ca:fc:48:
2b:19:fa:c8:e7:e7:76:4c:cb:cb:f0:80:73:3f:74:
a1:47:03:a4:14:27:aa:47:25:f1:3a:fe:a8:8e:43:
d2:56:90:bf:b3:4f:ee:e0:2a:21:f2:8a:69:41:c1:
4d:f5:52:43:bc:96:e9:4b:b1:ab:27:6f:1e:9f:1e:
e2:c1:a2:56:5f:44:76:d6:af:3d:70:b2:41:85:fd:
46:1d:d6:49:b1:6d:a2:52:95:45:a5:9b:a9:60:4b:
a8:0e:36:09:03:2b:ca:fb:09:36:6d:a5:89:fb:b9:
98:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D8:F1:EA:65:49:8C:1D:80:E4:74:40:A7:8C:C2:5C:5D:56:3A:62
X509v3 Authority Key Identifier:
keyid:27:B8:AB:AC:20:A5:98:CC:A4:B1:2F:5D:75:5D:8E:89:32:1F:4E:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7irrCClmMyksS9ddV2OiTIfTsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/vdjx6mVJjB2A5HRAp4zCXF1WOmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/729e1c-1cc0-427e-8f00-4b6fc7c06ae5/1/J7irrCClmMyksS9ddV2OiTIfTsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.54.0/23
195.20.158.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:73:04:ca:24:4e:01:34:12:6b:6b:26:e3:1d:82:32:99:c7:
32:19:71:fe:c1:36:52:20:53:5f:68:b1:64:b4:ba:54:57:91:
42:be:c9:ab:7b:a9:a3:e5:d2:76:72:74:38:a0:e9:09:a9:a6:
73:e8:7c:bf:b3:d2:8e:6b:d6:95:aa:5e:c4:05:5d:bf:00:bf:
27:52:45:01:e2:44:46:0a:99:46:e2:61:a3:7d:02:14:10:4f:
69:a1:27:af:b1:ba:bf:4a:83:ba:67:7e:78:5b:57:f3:39:9d:
2b:e3:79:57:e3:03:2f:8d:f2:7f:ef:f6:83:9e:56:ab:2b:5b:
ab:d2:31:be:fb:f0:c1:fd:6f:6e:db:cf:01:e9:c1:4c:6a:63:
cf:f5:62:d2:09:8f:f4:31:2f:1c:a2:6d:de:18:27:0f:a6:7a:
02:a3:1e:bf:b3:97:ff:7d:c2:85:f2:da:61:a5:39:b1:0d:54:
ed:39:96:83:65:37:26:f5:5a:aa:01:0b:25:27:d5:be:06:21:
69:c9:8a:f8:b2:8d:6f:c5:36:d6:cb:20:3d:03:4e:da:e8:f7:
94:43:ed:50:7a:bc:f1:72:bd:2b:bb:b0:6a:8b:39:70:3c:12:
5f:c5:ef:ee:ca:26:5e:42:c4:c9:db:d4:b7:57:ef:5a:87:68:
df:5f:4c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net