Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/APV-yd4iM5ft2_CZQSdpqn3Znl0.roa
File: APV-yd4iM5ft2_CZQSdpqn3Znl0.roa (raw, json)
Hash identifier: zO2jXcNxwkx67uSbTL8ewK9Q+yKE4kHcIhGP4291jJw=
Subject key identifier: 00:F5:7E:C9:DE:22:33:97:ED:DB:F0:99:41:27:69:AA:7D:D9:9E:5D
Certificate issuer: /CN=27d7d0d37bf0494589472189e03c193057e373ab
Certificate serial: 019424B3B72D238E9DD3BDCE0936B7ECECE9
Authority key identifier: 27:D7:D0:D3:7B:F0:49:45:89:47:21:89:E0:3C:19:30:57:E3:73:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9fQ03vwSUWJRyGJ4DwZMFfjc6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/APV-yd4iM5ft2_CZQSdpqn3Znl0.roa
Signing time: Thu 02 Jan 2025 01:49:05 +0000
ROA not before: Thu 02 Jan 2025 01:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198306
IP address blocks: 167.247.86.0/23 maxlen: 23
167.247.86.0/24 maxlen: 24
167.247.87.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b7:2d:23:8e:9d:d3:bd:ce:09:36:b7:ec:ec:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7d0d37bf0494589472189e03c193057e373ab
Validity
Not Before: Jan 2 01:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00f57ec9de223397eddbf099412769aa7dd99e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4d:b2:11:c8:94:fc:37:8e:47:7a:22:41:cc:
24:7a:bd:bf:a3:b8:d7:16:f9:7a:6c:1c:1c:06:0f:
69:38:0b:86:a6:17:25:3c:ca:ac:d1:bd:d3:17:2a:
7f:04:87:52:08:a7:6d:d8:f3:73:cb:59:59:06:f6:
74:4b:21:17:ce:09:6e:df:2a:20:af:54:a6:b6:ca:
62:aa:0a:f1:d5:03:79:71:80:7b:23:81:2e:13:d2:
4d:96:b9:aa:22:69:51:85:e2:d3:9c:69:fd:e3:8c:
1b:9d:e0:21:bf:cd:8e:12:34:98:3d:a7:12:b9:78:
c2:11:0a:87:ed:de:20:95:90:86:de:b2:51:03:0b:
78:b8:6b:23:94:6f:c5:79:dd:91:1c:fa:03:91:e6:
28:13:58:1e:96:53:13:58:77:40:f4:8a:33:1e:85:
f8:34:a8:28:7c:d6:6c:58:a9:c6:18:66:e4:dc:5d:
40:8d:3f:37:61:e1:f2:d1:ea:d5:e2:5d:93:3f:4b:
78:08:6d:f7:bf:7d:aa:4c:0f:65:c6:06:53:60:c9:
1b:fe:c2:30:49:da:42:20:ab:fe:c3:6a:04:03:13:
90:8f:fd:1d:5c:11:d1:46:e3:51:6d:c4:72:32:11:
72:f7:04:c1:58:97:ce:b8:c2:a5:b9:fe:9a:a6:17:
0e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F5:7E:C9:DE:22:33:97:ED:DB:F0:99:41:27:69:AA:7D:D9:9E:5D
X509v3 Authority Key Identifier:
keyid:27:D7:D0:D3:7B:F0:49:45:89:47:21:89:E0:3C:19:30:57:E3:73:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9fQ03vwSUWJRyGJ4DwZMFfjc6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/APV-yd4iM5ft2_CZQSdpqn3Znl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/J9fQ03vwSUWJRyGJ4DwZMFfjc6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.247.86.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:df:d7:44:15:bd:dd:65:5b:ad:3e:8d:da:c5:c7:aa:da:56:
f8:65:9e:5a:92:0d:e3:90:d0:cf:a3:bd:f2:c5:fb:c0:63:49:
91:cf:f5:58:25:5e:3f:40:e7:2a:78:84:05:43:8f:04:bb:cf:
17:fb:15:12:18:79:86:89:16:de:be:93:a3:78:2a:42:28:c6:
79:6b:70:d1:c6:bc:c4:9c:eb:fc:e5:e3:38:78:5c:11:c9:5f:
63:62:2c:f8:f8:0b:6f:cf:5c:b9:cb:ed:1c:59:7f:bd:6c:7e:
7c:11:eb:22:98:81:9e:18:2b:41:71:2a:37:c5:d3:97:99:c8:
76:8f:f5:a4:48:e2:51:54:38:70:70:19:8e:16:d7:c6:01:4e:
ff:90:10:10:d4:2e:6d:6f:49:73:aa:5f:86:6d:ca:89:24:94:
88:f3:8c:b4:be:09:6a:00:d1:b7:a1:96:dc:3d:1d:49:a4:69:
84:01:d5:c3:67:a8:7d:93:dd:81:3b:25:31:34:76:be:23:4b:
47:9d:92:47:f5:d0:4c:58:e8:f3:b9:7a:04:0b:e0:0e:3a:6d:
73:e7:e2:fa:e3:41:4e:16:18:b0:0f:7e:88:a9:16:bb:41:69:
20:61:56:12:26:95:33:71:55:6a:58:cb:f2:08:4b:f6:2e:dd:
11:04:fe:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net