Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1-WBvajt9a9vMz3Gf-bxrEIk5KFI.roa
File: 1-WBvajt9a9vMz3Gf-bxrEIk5KFI.roa (raw, json)
Hash identifier: ixOZ900fztMk7OjhYh4vnjfATcXP54nswes8la4aLuA=
Subject key identifier: F9:60:6F:6A:3B:7D:6B:DB:CC:CF:71:9F:F9:BC:6B:10:89:39:28:52
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0195EC9913BF9C23B18239A6A72100E064B3
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1-WBvajt9a9vMz3Gf-bxrEIk5KFI.roa
Signing time: Mon 31 Mar 2025 14:26:49 +0000
ROA not before: Mon 31 Mar 2025 14:26:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7029
IP address blocks: 103.136.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ec:99:13:bf:9c:23:b1:82:39:a6:a7:21:00:e0:64:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 31 14:26:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f9606f6a3b7d6bdbcccf719ff9bc6b1089392852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:78:1b:26:80:2f:96:6d:47:e2:bb:ff:56:95:
41:b6:cc:f9:a0:fe:04:75:8e:51:e1:48:2f:7f:4d:
ee:9c:db:53:6d:41:71:af:1c:36:46:f4:69:3c:60:
4a:4c:8d:7a:c6:bf:56:9d:e7:21:c9:8d:0e:20:9d:
8d:97:e6:d6:31:a7:8d:1f:fc:f1:c9:ef:1d:fa:d9:
2f:71:e1:09:3a:5d:25:4f:2c:83:e0:a7:0f:31:ea:
6f:54:1a:1f:f4:ae:51:3f:80:aa:1a:5b:60:a1:76:
15:9a:db:cb:ed:49:7a:ae:36:ae:4e:1d:0e:02:00:
01:69:0e:98:ed:8d:3a:f5:8e:f5:82:3b:20:0a:05:
15:b0:49:df:25:c2:eb:1a:86:e7:56:cd:26:b9:ee:
87:0f:3c:bc:6c:06:02:e8:38:1e:6c:54:3e:37:ad:
ee:c5:85:cd:a9:69:2f:56:03:0a:52:68:c5:41:2d:
31:13:b0:60:d9:23:ad:bd:3f:58:eb:c9:05:e7:3c:
ba:46:d7:82:c7:3f:e7:77:07:42:67:ed:a3:88:c5:
11:d9:54:e8:7d:c6:8c:54:6e:22:ca:21:86:0a:d5:
f0:af:68:46:64:b5:e0:57:db:cc:66:07:dd:62:7b:
17:26:58:04:f7:e8:2d:66:ae:80:34:92:93:2e:c7:
8f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:60:6F:6A:3B:7D:6B:DB:CC:CF:71:9F:F9:BC:6B:10:89:39:28:52
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1-WBvajt9a9vMz3Gf-bxrEIk5KFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.136.71.0/24
Signature Algorithm: sha256WithRSAEncryption
e7:16:8f:12:b0:78:f2:3f:6d:26:65:c8:74:7a:93:dd:29:fe:
a0:4f:b1:cb:0d:1c:6d:ef:95:0d:b4:fd:20:d2:4a:e1:ec:b3:
8f:26:bf:ed:46:3a:3c:dd:37:b9:4a:b2:4a:b2:c2:e0:98:27:
f5:4a:17:e4:5e:fc:94:ef:e5:03:dc:b6:66:9e:22:99:9e:d8:
56:37:fc:ae:96:de:4f:c9:05:70:ce:39:cf:17:0d:f9:81:f7:
c0:2a:78:b4:04:b1:4c:58:61:23:3d:05:ef:01:3d:35:7d:09:
9a:cb:80:05:83:7d:1e:35:bd:5f:c8:aa:e7:9a:21:c0:50:58:
ba:c2:0c:13:67:b4:5a:5d:75:e9:4f:67:44:75:bf:9a:5b:d8:
68:af:6f:08:c4:39:4a:bf:69:21:fe:e5:15:b6:bd:40:fd:a7:
de:0a:59:66:71:ff:fc:a6:93:9e:de:e3:3e:61:29:e4:da:e4:
18:fc:22:8d:f2:b9:13:1e:a3:3c:df:b9:e9:c4:c5:13:68:0f:
56:08:a0:1e:f9:e6:ab:9a:08:3a:96:de:1f:85:b1:8e:05:23:
a9:c1:4b:8d:1a:4e:51:6b:bc:85:f8:5e:be:3b:3c:46:ff:bd:
17:10:4e:19:37:58:d4:a7:9b:a9:df:aa:cb:4a:54:ea:2b:38:
95:88:1f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net