Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/6XCQPd-gBaWI9uUfOl9Oxd_9HlY.roa
File: 6XCQPd-gBaWI9uUfOl9Oxd_9HlY.roa (raw, json)
Hash identifier: rYTYbZJWQOZnH0RagwK8UwoxwTXRP+nIxOLYvS6LJxg=
Subject key identifier: E9:70:90:3D:DF:A0:05:A5:88:F6:E5:1F:3A:5F:4E:C5:DF:FD:1E:56
Certificate issuer: /CN=bb9b56d8d96ebcb5fcf87de2ec2b52c194ccf9f9
Certificate serial: 0194228D53962AACE979CD6510A906E95B8E
Authority key identifier: BB:9B:56:D8:D9:6E:BC:B5:FC:F8:7D:E2:EC:2B:52:C1:94:CC:F9:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u5tW2NluvLX8-H3i7CtSwZTM-fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/6XCQPd-gBaWI9uUfOl9Oxd_9HlY.roa
Signing time: Wed 01 Jan 2025 15:47:54 +0000
ROA not before: Wed 01 Jan 2025 15:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48944
IP address blocks: 91.232.72.0/23 maxlen: 23
91.232.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:53:96:2a:ac:e9:79:cd:65:10:a9:06:e9:5b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb9b56d8d96ebcb5fcf87de2ec2b52c194ccf9f9
Validity
Not Before: Jan 1 15:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e970903ddfa005a588f6e51f3a5f4ec5dffd1e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:94:3f:0b:46:cb:25:04:9a:f8:e7:33:20:3f:
a4:bc:e2:1f:b4:48:1f:e1:42:17:50:7d:f7:3d:5c:
1f:11:12:8f:d3:26:7c:45:9c:61:26:9b:ad:5e:7d:
0a:7f:35:e6:66:71:79:97:bf:15:e7:59:57:a7:51:
cf:ce:f9:79:fd:f1:6a:42:af:df:19:d0:af:c6:f7:
44:f1:b0:a2:82:9b:1c:3d:81:1d:63:64:5d:19:de:
ac:0b:2f:77:d5:c1:81:2d:30:d9:1b:10:0b:82:c7:
de:2b:0c:3f:c9:61:6e:24:f4:0a:7a:02:76:d0:8b:
1f:38:01:7b:41:00:6d:54:e4:16:a8:bb:f2:c2:72:
24:87:37:6c:1b:0f:e4:b5:22:fd:1e:33:0d:e6:08:
c7:1a:15:43:8c:57:7a:fb:2d:83:70:c8:9f:5a:db:
e4:e9:4b:b3:37:78:21:85:be:bb:84:bb:aa:0b:54:
e9:a1:85:77:ed:9e:dd:b0:66:ea:b1:41:a6:76:81:
3c:a3:14:5e:b4:b0:6b:ef:3f:40:ba:72:d1:d4:96:
74:fe:69:2b:75:08:3c:ea:19:dc:a4:f5:dd:f7:b3:
4c:86:2d:ce:96:27:2f:de:e8:7a:4f:f9:0b:d2:f3:
9b:67:6d:3d:dd:f7:ac:65:66:b5:75:0a:0b:31:48:
20:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:70:90:3D:DF:A0:05:A5:88:F6:E5:1F:3A:5F:4E:C5:DF:FD:1E:56
X509v3 Authority Key Identifier:
keyid:BB:9B:56:D8:D9:6E:BC:B5:FC:F8:7D:E2:EC:2B:52:C1:94:CC:F9:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u5tW2NluvLX8-H3i7CtSwZTM-fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/6XCQPd-gBaWI9uUfOl9Oxd_9HlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/u5tW2NluvLX8-H3i7CtSwZTM-fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.72.0/23
Signature Algorithm: sha256WithRSAEncryption
29:0d:ac:5f:2c:9d:14:84:60:d4:f7:ad:77:11:74:35:28:fe:
12:50:57:85:5a:86:66:df:a4:3d:0a:0c:ed:78:61:0d:b9:76:
31:e7:8d:0c:7d:8a:75:71:be:3d:59:5a:1f:0d:49:82:98:d4:
a3:b3:19:6a:28:6b:50:16:7c:4e:dc:69:fd:ad:f1:2b:b9:b7:
14:8b:06:87:6b:8e:4c:bd:6a:6f:3e:52:f3:c8:17:b8:35:50:
d1:33:4f:22:d1:47:78:9c:77:86:4f:55:7c:bc:42:9c:a0:27:
d6:ff:ab:f2:f1:61:47:57:30:d2:43:d1:8b:27:a6:25:de:d5:
6b:90:eb:03:09:61:7b:fc:40:12:28:d4:0c:b8:80:a5:bc:b9:
af:ad:d1:3a:10:59:8f:a1:ce:19:45:31:c2:a0:e2:fd:c6:08:
3c:2c:ae:e2:44:f1:81:ad:4c:66:db:ba:ea:96:d0:e3:25:31:
e6:0c:e1:8c:ab:fd:e1:46:01:df:8f:d6:0c:f8:62:31:ce:46:
10:af:58:4d:c8:e4:e5:17:d6:06:51:4e:62:a4:b8:61:27:85:
cf:4e:fd:e6:c9:80:ce:a0:1c:96:44:a4:c5:7c:8d:b1:13:23:
82:66:87:c0:91:1b:33:76:a2:f4:34:59:1d:f5:87:52:da:bb:
8e:30:0c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net