Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/28c5b6-23f0-45fb-9b21-294d9cf79e2e/1/i2M6rq1mSxd454EFcJs47ZfxfI8.roa
File: i2M6rq1mSxd454EFcJs47ZfxfI8.roa (raw, json)
Hash identifier: x+6kMu73XXcjQUZNpiQj7d3/5eInEGiFNdUUMK9AZB0=
Subject key identifier: 8B:63:3A:AE:AD:66:4B:17:78:E7:81:05:70:9B:38:ED:97:F1:7C:8F
Certificate issuer: /CN=4728eba001359cdd418346f651c0a187c89fbabf
Certificate serial: 019424455DACCD835C23AB528D332965669F
Authority key identifier: 47:28:EB:A0:01:35:9C:DD:41:83:46:F6:51:C0:A1:87:C8:9F:BA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyjroAE1nN1Bg0b2UcChh8ifur8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/28c5b6-23f0-45fb-9b21-294d9cf79e2e/1/i2M6rq1mSxd454EFcJs47ZfxfI8.roa
Signing time: Wed 01 Jan 2025 23:48:33 +0000
ROA not before: Wed 01 Jan 2025 23:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198286
IP address blocks: 91.233.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:5d:ac:cd:83:5c:23:ab:52:8d:33:29:65:66:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4728eba001359cdd418346f651c0a187c89fbabf
Validity
Not Before: Jan 1 23:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8b633aaead664b1778e78105709b38ed97f17c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8e:5f:8b:1b:e2:6e:49:ed:af:b1:06:90:e9:
57:d9:9d:f5:09:ed:2c:e4:fe:16:85:60:16:70:b8:
ed:8c:47:55:24:fd:c8:db:a0:c3:f1:dc:47:23:15:
07:8f:82:11:64:c0:7d:57:fc:10:0e:84:2b:c1:39:
15:03:dd:b3:b4:5e:0e:12:10:95:3d:e0:f5:cd:65:
ac:ce:52:ba:d6:22:03:02:28:32:33:d7:39:d8:4d:
4a:58:ab:51:9a:93:7d:57:3e:64:a7:54:68:03:ac:
22:04:86:b5:2c:74:03:73:91:9b:62:80:6c:6f:e8:
7b:f4:4a:d0:f1:cf:88:5e:2b:da:f7:19:77:dc:8a:
a9:6c:89:8b:02:a1:e3:0f:a4:66:b0:7c:97:73:09:
d3:63:d6:a8:5c:b2:87:65:84:66:76:8f:a9:e5:f1:
87:33:96:c3:ad:4b:ef:19:f5:17:7a:15:a4:1f:d4:
f9:92:ba:dc:ee:08:e0:be:5a:bf:be:50:86:a4:60:
73:ed:66:b3:5b:09:0f:07:8d:0f:f6:6b:08:25:dc:
6d:77:4b:67:d2:fe:5e:25:69:a3:61:34:7f:9f:15:
0c:ec:19:0e:a7:42:ac:5b:4a:53:43:22:73:49:d9:
14:71:ab:6b:29:14:73:3a:1b:a1:c9:bc:80:53:55:
3b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:63:3A:AE:AD:66:4B:17:78:E7:81:05:70:9B:38:ED:97:F1:7C:8F
X509v3 Authority Key Identifier:
keyid:47:28:EB:A0:01:35:9C:DD:41:83:46:F6:51:C0:A1:87:C8:9F:BA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyjroAE1nN1Bg0b2UcChh8ifur8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/28c5b6-23f0-45fb-9b21-294d9cf79e2e/1/i2M6rq1mSxd454EFcJs47ZfxfI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/28c5b6-23f0-45fb-9b21-294d9cf79e2e/1/RyjroAE1nN1Bg0b2UcChh8ifur8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.51.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f9:85:f7:32:15:a0:62:f6:c8:ce:8a:c2:cc:c2:ef:4d:6a:
4c:32:b9:b0:16:6c:4e:ac:8e:4e:f0:7c:1f:7e:80:3c:fe:6c:
4a:e2:ad:20:ef:94:af:ad:c4:bd:3a:de:3c:c5:46:a4:15:46:
13:12:72:84:cb:d8:2b:19:34:ef:68:91:f2:86:70:49:94:92:
fe:31:13:c5:f7:1d:57:37:78:69:70:c6:d7:bc:63:c9:f5:02:
a5:6a:28:f4:79:a3:c5:2b:51:6e:d5:4e:43:8e:07:8d:a6:bd:
0d:e7:18:75:d6:38:ba:b7:02:b7:ae:04:c7:e4:d5:3a:5d:e4:
bb:c3:6d:15:bd:f6:70:ac:7f:ed:de:88:7c:5d:b3:49:a2:65:
42:2e:2c:c0:ca:f5:01:b8:64:ce:7a:87:9c:38:7f:d2:dc:08:
4b:d7:43:66:ff:14:7d:c0:04:e0:58:67:93:78:34:50:81:3a:
1d:37:cf:47:86:78:2b:a9:b3:49:ad:a8:0e:b3:3d:7f:86:76:
03:bd:de:be:cd:da:6c:f3:b6:1b:d8:67:3a:dc:67:38:ce:90:
65:cb:44:cd:5c:bf:ab:93:1b:7b:28:ec:14:7d:46:5d:4d:ed:
43:06:13:aa:28:fb:70:31:4e:b0:7a:a2:bc:64:e0:51:6a:46:
c7:04:f8:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:30 2025 by rpki-client on console.sobornost.net