Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/QAk6JCs2jjSqyiQ-YA0VdOCDCeI.roa
File: QAk6JCs2jjSqyiQ-YA0VdOCDCeI.roa (raw, json)
Hash identifier: FpR2ZM6Bp7jsZvcIkRbwo6z9Bs9HecznXsZ9i9f2MH4=
Subject key identifier: 40:09:3A:24:2B:36:8E:34:AA:CA:24:3E:60:0D:15:74:E0:83:09:E2
Certificate issuer: /CN=9bdffc8bdb844970b8e28b9b4be6f2c06dfd7985
Certificate serial: 0194221F604061B42D0187BBB1F49AA08E34
Authority key identifier: 9B:DF:FC:8B:DB:84:49:70:B8:E2:8B:9B:4B:E6:F2:C0:6D:FD:79:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9_8i9uESXC44oubS-bywG39eYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/QAk6JCs2jjSqyiQ-YA0VdOCDCeI.roa
Signing time: Wed 01 Jan 2025 13:47:49 +0000
ROA not before: Wed 01 Jan 2025 13:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213138
IP address blocks: 91.218.57.0/24 maxlen: 24
2a07:fec0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:60:40:61:b4:2d:01:87:bb:b1:f4:9a:a0:8e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bdffc8bdb844970b8e28b9b4be6f2c06dfd7985
Validity
Not Before: Jan 1 13:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=40093a242b368e34aaca243e600d1574e08309e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bd:30:89:26:fe:4b:71:33:f5:9d:06:9b:64:
f2:65:76:4c:f0:e4:c8:cc:5e:a9:7f:93:31:0a:49:
06:f9:16:8c:45:0e:10:df:ed:68:c6:c5:a7:47:5a:
59:88:19:ba:04:39:c4:65:20:f7:81:c2:d6:f7:08:
64:d5:58:c2:6b:ff:8e:ea:1c:74:ac:1d:2f:9e:66:
9f:61:52:d0:51:74:c2:39:a6:48:8f:e9:05:ea:89:
b9:d2:62:77:69:7b:e7:8f:5d:59:5a:0c:a4:d2:0c:
47:f1:8e:8b:5c:c5:a8:fe:f4:b9:cf:12:de:40:da:
b7:62:e8:8e:79:0c:2a:22:44:60:55:15:47:e2:f3:
12:2b:7b:82:3b:80:55:88:bb:c8:14:1f:50:6d:b2:
81:18:8d:39:63:b5:7e:72:79:02:e3:07:f0:c5:3b:
bc:27:4b:05:ec:f6:b2:68:cc:a4:c2:37:3e:5d:71:
c1:4e:c6:20:04:d7:61:92:c7:14:6d:45:8b:6b:56:
37:c9:35:48:1e:09:f3:0b:ec:25:15:e6:23:38:ae:
78:40:48:3e:b5:b6:fe:95:42:0f:3a:a1:8a:ce:cd:
c3:3e:87:86:87:49:7a:64:bf:ff:55:9c:1a:83:6e:
f5:30:5b:1f:a9:9e:7c:24:1d:f4:0c:c3:9d:a7:cc:
e5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:09:3A:24:2B:36:8E:34:AA:CA:24:3E:60:0D:15:74:E0:83:09:E2
X509v3 Authority Key Identifier:
keyid:9B:DF:FC:8B:DB:84:49:70:B8:E2:8B:9B:4B:E6:F2:C0:6D:FD:79:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9_8i9uESXC44oubS-bywG39eYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/QAk6JCs2jjSqyiQ-YA0VdOCDCeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/m9_8i9uESXC44oubS-bywG39eYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.57.0/24
IPv6:
2a07:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
7d:1b:f1:4a:d4:73:66:a6:2f:79:e5:06:01:64:7f:29:42:ee:
e9:e1:77:3d:71:3c:19:6a:73:8f:50:99:2e:be:c4:94:61:1f:
75:ec:bd:3b:f4:5a:31:80:97:54:49:5b:a7:31:82:e5:b7:97:
45:7d:10:35:dd:35:c7:46:e1:00:9c:64:7c:bf:99:c3:57:2b:
24:95:9d:58:66:ab:d6:90:7a:09:05:fc:64:48:36:7a:91:08:
48:c4:5a:40:59:61:d7:ec:41:4e:f6:3c:f2:8c:7a:7a:9c:33:
fc:76:75:46:ee:e3:60:8b:2a:ea:c6:69:dc:3a:45:ef:b0:23:
5e:8a:7b:f9:8f:6e:33:13:1c:dc:a1:7b:28:4f:a5:d7:34:22:
c1:34:e4:ce:01:35:41:2b:4c:dc:95:24:1e:2f:53:89:b1:08:
55:1c:d7:ac:a2:63:3e:de:43:84:38:cc:b9:55:38:7b:2c:2c:
8c:f2:87:7d:cc:d3:62:76:1f:93:53:8c:9c:87:0c:a7:12:3f:
b8:da:7a:14:87:f8:2e:d5:23:de:ad:1e:bd:76:0f:8b:8d:a8:
c0:81:96:b3:dc:e8:55:90:49:8d:39:66:ce:f4:b6:79:63:a2:
bb:55:7f:dc:ea:2a:5c:18:0c:eb:d2:a4:60:af:4c:0c:3a:19:
e7:d4:8f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net