Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/be9dab-5f27-43ce-ab22-739a91c620ac/1/U8sue3gZLueOLUNHI3zh7NTbaBA.roa
File: U8sue3gZLueOLUNHI3zh7NTbaBA.roa (raw, json)
Hash identifier: aGzdRWMTM0/YLdPvutTc1s3WsmhuwZtks1XpZ/1ew6k=
Subject key identifier: 53:CB:2E:7B:78:19:2E:E7:8E:2D:43:47:23:7C:E1:EC:D4:DB:68:10
Certificate issuer: /CN=e0776b0838fa0e1da1be4edccf8924bd413b1db7
Certificate serial: 01953CD52AE0AC50556D7E2A4F6DEE69CF4D
Authority key identifier: E0:77:6B:08:38:FA:0E:1D:A1:BE:4E:DC:CF:89:24:BD:41:3B:1D:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HdrCDj6Dh2hvk7cz4kkvUE7Hbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/be9dab-5f27-43ce-ab22-739a91c620ac/1/U8sue3gZLueOLUNHI3zh7NTbaBA.roa
Signing time: Tue 25 Feb 2025 11:19:17 +0000
ROA not before: Tue 25 Feb 2025 11:19:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50398
IP address blocks: 91.245.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3c:d5:2a:e0:ac:50:55:6d:7e:2a:4f:6d:ee:69:cf:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0776b0838fa0e1da1be4edccf8924bd413b1db7
Validity
Not Before: Feb 25 11:19:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53cb2e7b78192ee78e2d4347237ce1ecd4db6810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:83:cc:62:ca:2f:8b:1a:f3:37:9a:f0:10:9f:
d1:ec:75:01:31:f3:b8:37:88:09:79:f6:e4:68:6c:
67:13:dd:b2:3a:98:8a:62:49:52:b3:3f:96:af:87:
2b:35:b4:6e:cd:d9:3d:80:95:57:f3:eb:a7:69:a4:
1c:67:92:bd:92:19:a2:62:bb:51:7b:ca:27:17:74:
30:3e:ac:a3:ca:c7:fd:7f:a6:bb:a5:cd:e6:d6:ea:
7a:e1:ce:f7:b6:05:d4:5e:2f:b7:02:d7:5a:02:ba:
cc:10:87:74:69:6f:0f:72:ae:a0:d7:56:95:ef:d8:
ad:ec:c7:0c:84:33:cf:e2:d2:ec:b6:07:47:a5:2e:
96:a5:78:d5:38:48:61:e7:76:58:00:ca:b0:54:de:
b3:d9:43:9b:44:d4:8c:37:ae:30:18:34:48:3a:f4:
98:d6:14:52:4f:bd:25:5b:c9:a8:b4:e2:f1:8e:8f:
32:4a:9d:26:59:d3:b0:35:59:26:28:55:f3:94:30:
3f:99:b3:c0:b9:47:c1:2c:9c:0c:c9:c6:b4:13:aa:
32:4d:17:65:67:e3:b7:cf:cd:42:ff:00:4b:be:31:
81:3e:30:bc:02:d9:6d:68:76:4e:06:0d:74:0e:66:
32:d2:cb:44:da:72:c2:77:0f:18:d2:10:70:6b:97:
6d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CB:2E:7B:78:19:2E:E7:8E:2D:43:47:23:7C:E1:EC:D4:DB:68:10
X509v3 Authority Key Identifier:
keyid:E0:77:6B:08:38:FA:0E:1D:A1:BE:4E:DC:CF:89:24:BD:41:3B:1D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HdrCDj6Dh2hvk7cz4kkvUE7Hbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/be9dab-5f27-43ce-ab22-739a91c620ac/1/U8sue3gZLueOLUNHI3zh7NTbaBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/be9dab-5f27-43ce-ab22-739a91c620ac/1/4HdrCDj6Dh2hvk7cz4kkvUE7Hbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.5.0/24
Signature Algorithm: sha256WithRSAEncryption
49:6c:f9:78:a1:10:97:8a:1e:44:86:87:16:f9:02:b4:8e:dd:
1c:f3:1e:06:bb:3d:c4:21:fd:dc:c4:c3:98:43:53:85:6f:c1:
a4:7c:51:b2:50:18:9e:da:8c:83:65:fa:bb:02:50:89:32:92:
c5:1b:cf:ed:90:10:2d:76:1b:9c:af:41:dc:75:f2:b0:2f:3c:
d6:66:bf:de:db:b8:c5:d3:31:ee:bf:32:4c:c2:4a:02:3d:af:
c6:7f:d3:64:d1:6d:df:f2:df:2f:e5:2a:38:82:14:dd:bb:c4:
bf:c6:31:9f:23:46:94:7b:7b:2c:ea:5b:5a:a5:29:f5:9f:82:
58:4b:ca:f4:af:07:57:3d:8c:1e:7b:a0:39:d6:08:d0:ad:86:
c9:f5:8c:e8:be:1d:89:61:95:59:bb:a8:63:30:22:27:d5:44:
c4:1a:ac:04:ba:1c:a0:e5:22:dd:0c:15:85:2b:f8:56:8b:40:
79:73:45:19:b5:d1:37:60:c5:c7:5a:6f:b8:90:6a:df:7e:97:
55:31:2b:6b:4a:1b:1d:de:3f:f4:ef:f6:8d:2c:8c:28:1f:99:
d8:60:d0:95:79:c8:48:b4:0e:ec:5d:7c:2c:be:db:9c:6c:cc:
3e:1d:8b:46:4f:03:d7:73:8a:58:49:25:81:a3:6b:c4:09:7c:
7c:60:d3:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net