Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/rf8xmxH0lxQMZaEoNGLhxRtMOZM.roa
File: rf8xmxH0lxQMZaEoNGLhxRtMOZM.roa (raw, json)
Hash identifier: 8uXylOlK6BkO3v7SWg2Pp+uIEZNpg7MPKeK8yn1WMAc=
Subject key identifier: AD:FF:31:9B:11:F4:97:14:0C:65:A1:28:34:62:E1:C5:1B:4C:39:93
Certificate issuer: /CN=e6f824e4bc5cd81886ec24b5e15266e95f8ddf93
Certificate serial: 019422FB4B813818E9837030821F5593EC61
Authority key identifier: E6:F8:24:E4:BC:5C:D8:18:86:EC:24:B5:E1:52:66:E9:5F:8D:DF:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vgk5Lxc2BiG7CS14VJm6V-N35M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/rf8xmxH0lxQMZaEoNGLhxRtMOZM.roa
Signing time: Wed 01 Jan 2025 17:48:01 +0000
ROA not before: Wed 01 Jan 2025 17:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197266
IP address blocks: 91.217.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:4b:81:38:18:e9:83:70:30:82:1f:55:93:ec:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6f824e4bc5cd81886ec24b5e15266e95f8ddf93
Validity
Not Before: Jan 1 17:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=adff319b11f497140c65a1283462e1c51b4c3993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:a1:ad:f7:c0:79:dc:30:0f:63:6b:87:21:
73:59:43:aa:12:10:67:37:76:6a:cb:11:7b:30:6b:
7e:78:ca:a2:d6:2a:10:70:a0:da:15:1d:53:9a:62:
a0:e9:47:79:0c:95:fd:dd:4b:d6:4e:58:44:06:67:
f8:ad:83:b7:30:2d:35:84:3d:15:01:27:ac:5b:81:
37:55:00:77:25:34:aa:92:83:9d:04:df:07:cd:8e:
ad:75:83:48:bc:08:66:d8:74:66:4c:2b:5f:aa:b6:
25:86:2b:e9:b0:bf:a1:75:9e:ac:9d:2b:0e:63:85:
70:74:76:d1:7b:46:af:47:ca:fc:10:cf:c4:81:76:
38:3d:f3:f4:0e:be:4b:8f:d8:61:c0:04:7f:79:51:
e2:a3:f0:1a:5c:08:07:31:a3:fd:7e:c0:e2:e1:7b:
fe:fb:47:bf:90:2e:b8:eb:89:1e:aa:11:49:d0:5b:
25:a6:f8:9d:31:70:ee:a2:63:3e:16:9b:0c:76:39:
06:46:ec:4f:17:c7:02:33:14:c4:fc:ab:bc:86:9a:
67:3b:7a:02:36:6d:b3:9c:f9:5f:e7:49:ee:35:15:
29:00:e5:67:ca:ee:1d:c1:a5:29:a4:62:46:5d:58:
85:9e:d4:2c:c9:50:64:62:00:f2:84:ee:06:6a:81:
13:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FF:31:9B:11:F4:97:14:0C:65:A1:28:34:62:E1:C5:1B:4C:39:93
X509v3 Authority Key Identifier:
keyid:E6:F8:24:E4:BC:5C:D8:18:86:EC:24:B5:E1:52:66:E9:5F:8D:DF:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vgk5Lxc2BiG7CS14VJm6V-N35M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/rf8xmxH0lxQMZaEoNGLhxRtMOZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/5vgk5Lxc2BiG7CS14VJm6V-N35M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.222.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:28:4e:c3:bd:3c:62:b5:87:e9:44:c2:ce:00:a0:bb:d6:71:
e0:d9:68:e8:1d:e7:dc:d3:bc:c9:97:90:16:82:fc:1e:4c:8e:
c8:6b:98:98:41:e4:21:f3:67:35:4f:30:a1:fd:c2:a7:ba:b3:
eb:68:f5:bc:39:f3:e4:76:64:69:9c:6d:41:bc:bb:e0:c9:5c:
a2:91:94:eb:ae:c9:ba:0f:36:8a:d7:74:83:54:f3:27:a2:bb:
64:83:4d:20:0d:f3:5e:8e:b2:a8:d7:31:ea:64:81:3a:b1:cd:
49:cf:4a:9d:19:13:9b:f9:81:4d:91:97:e6:8d:a8:55:b4:72:
98:d3:db:d2:21:55:9c:7b:e1:ea:78:17:ea:43:1e:13:bd:f3:
6b:c5:25:68:d3:95:6a:25:6d:60:15:62:e6:43:cd:4e:7b:89:
aa:a8:1b:1b:70:58:f7:53:88:46:c2:97:88:44:81:23:f3:ec:
19:b1:c6:70:9f:13:54:64:ec:8c:ed:73:71:bf:c9:9e:b6:b5:
65:79:c0:3c:5c:d3:17:dd:c7:98:80:30:a1:f1:38:b7:f1:9b:
8a:07:1f:ee:bd:42:3b:58:ac:16:7f:11:13:37:ae:c1:81:6c:
47:f2:54:20:0b:96:6a:81:de:b5:fc:26:59:d2:32:c4:bb:c5:
d7:9f:d1:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net