Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/e6a120-41b4-4db4-83b9-eef529a477e7/1/h0CiyPqTT3nB3mru9Rx5ThXMJsc.roa
File: h0CiyPqTT3nB3mru9Rx5ThXMJsc.roa (raw, json)
Hash identifier: gn5UUlC6bwE9RLEUWaV0t2xvepay+0W+QHAMC8Fs/OE=
Subject key identifier: 87:40:A2:C8:FA:93:4F:79:C1:DE:6A:EE:F5:1C:79:4E:15:CC:26:C7
Certificate issuer: /CN=6c086192cb3f28f58b2144dde2d91a2312056fc8
Certificate serial: 01942444E99CAA7C7D85FAD9125FAA4D2BFE
Authority key identifier: 6C:08:61:92:CB:3F:28:F5:8B:21:44:DD:E2:D9:1A:23:12:05:6F:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAhhkss_KPWLIUTd4tkaIxIFb8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/e6a120-41b4-4db4-83b9-eef529a477e7/1/h0CiyPqTT3nB3mru9Rx5ThXMJsc.roa
Signing time: Wed 01 Jan 2025 23:48:03 +0000
ROA not before: Wed 01 Jan 2025 23:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58004
IP address blocks: 91.237.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:e9:9c:aa:7c:7d:85:fa:d9:12:5f:aa:4d:2b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c086192cb3f28f58b2144dde2d91a2312056fc8
Validity
Not Before: Jan 1 23:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8740a2c8fa934f79c1de6aeef51c794e15cc26c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fc:d6:4a:fe:ad:ce:6b:2d:7f:14:77:83:9e:
55:95:b4:fc:ba:5f:f8:a8:de:a5:d9:28:3c:16:4e:
c0:33:cf:f8:a7:ec:ae:9f:fc:84:28:a5:75:b0:5a:
95:b1:0d:a5:e2:7b:ea:00:4b:bd:fa:45:4d:83:b5:
be:b3:59:38:3b:3d:3d:0c:53:42:64:01:1b:07:24:
04:85:8b:1e:c9:63:49:5e:a7:35:a6:8f:72:a8:42:
f7:6d:20:db:8d:2b:7c:41:ca:c1:9c:90:99:da:0e:
be:a1:df:a4:e3:80:e2:9f:92:5e:b5:cb:d2:26:75:
66:c8:42:23:4e:74:d1:03:6b:62:5f:21:9d:d5:af:
5c:f7:c0:c4:b5:c0:f3:47:f2:03:f3:46:8d:1a:9c:
0a:47:81:43:ad:69:4c:01:de:ba:bc:8d:14:cd:b6:
a5:7f:ea:40:a7:ed:b2:f6:e3:c1:41:42:1e:f0:08:
7a:8c:81:f5:60:ad:f6:2a:95:f3:dc:1d:04:1d:14:
44:9a:b8:81:50:5d:76:e7:31:2e:b8:f0:73:17:cf:
bb:45:14:18:cf:2b:67:d5:0e:c6:c2:d3:db:10:f8:
cb:01:b3:28:b5:87:b6:b8:89:99:11:98:cc:bb:89:
84:dc:e6:e8:50:28:f4:be:78:6e:3d:cf:14:8b:0e:
e2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:40:A2:C8:FA:93:4F:79:C1:DE:6A:EE:F5:1C:79:4E:15:CC:26:C7
X509v3 Authority Key Identifier:
keyid:6C:08:61:92:CB:3F:28:F5:8B:21:44:DD:E2:D9:1A:23:12:05:6F:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAhhkss_KPWLIUTd4tkaIxIFb8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/e6a120-41b4-4db4-83b9-eef529a477e7/1/h0CiyPqTT3nB3mru9Rx5ThXMJsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/e6a120-41b4-4db4-83b9-eef529a477e7/1/bAhhkss_KPWLIUTd4tkaIxIFb8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.184.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:9d:a3:a2:b6:36:f2:ec:e9:b9:78:6c:f5:fe:95:1a:4c:94:
32:f3:a3:a7:d1:5c:47:68:b5:8f:cc:9f:9e:d4:8a:d7:c2:c1:
0a:94:2a:8c:32:6d:5c:2c:ae:5a:9c:a9:ce:bb:8b:e7:39:bf:
41:64:c8:ef:77:9a:b2:8a:4a:10:33:47:1b:79:85:bf:05:0f:
d1:48:6a:21:8b:74:0c:41:47:fc:f9:5a:75:1d:30:59:73:ba:
8f:ab:82:c9:73:02:fb:f4:63:12:6b:ed:c5:74:97:fc:77:34:
3e:dd:ab:96:da:35:f9:bf:d6:e4:99:e1:f8:8a:00:40:0d:33:
2e:45:3c:87:17:c5:42:77:c5:73:e6:5b:88:7d:40:bf:85:2d:
9e:69:5a:d0:41:9e:c3:15:d6:a0:4e:85:42:de:d7:a7:cf:c3:
ca:26:c5:83:60:50:a5:b6:5c:d5:6d:07:52:8e:dd:e9:7a:42:
85:98:ae:33:05:ab:d8:5a:90:b9:6a:dc:67:26:e5:75:6f:92:
ee:94:bd:1e:c0:e9:1c:3e:3c:e0:7d:43:b8:d3:05:54:b4:9a:
86:8b:97:ff:c8:58:d8:0a:51:ce:fa:70:fc:13:6c:20:f9:16:
a5:3c:3a:0c:25:32:bd:7a:7e:f7:c8:ac:4d:b7:28:3b:2c:49:
c6:16:c6:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net