Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/S3W2ppn5lk20Aj8MVEUOEbDf3k4.roa
File: S3W2ppn5lk20Aj8MVEUOEbDf3k4.roa (raw, json)
Hash identifier: R7kQC03lqKwuWWDRl2P6LnNUl2gU+UQxb/V3srvulwI=
Subject key identifier: 4B:75:B6:A6:99:F9:96:4D:B4:02:3F:0C:54:45:0E:11:B0:DF:DE:4E
Certificate issuer: /CN=0794b700705e0baa736a5dd090acd1cb912c1719
Certificate serial: 019421B22871E7F39B02BBFF29DC4B00CDD1
Authority key identifier: 07:94:B7:00:70:5E:0B:AA:73:6A:5D:D0:90:AC:D1:CB:91:2C:17:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B5S3AHBeC6pzal3QkKzRy5EsFxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/S3W2ppn5lk20Aj8MVEUOEbDf3k4.roa
Signing time: Wed 01 Jan 2025 11:48:31 +0000
ROA not before: Wed 01 Jan 2025 11:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198437
IP address blocks: 91.234.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:28:71:e7:f3:9b:02:bb:ff:29:dc:4b:00:cd:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0794b700705e0baa736a5dd090acd1cb912c1719
Validity
Not Before: Jan 1 11:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b75b6a699f9964db4023f0c54450e11b0dfde4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ba:27:e3:56:2b:f4:f9:e0:26:2a:d3:d7:9f:
c9:b2:48:06:a7:b6:70:1e:2a:a8:76:a6:48:2e:19:
36:fd:80:9f:c3:42:bb:d6:02:56:81:95:2e:c1:33:
65:2a:a6:54:56:ec:c2:3b:07:34:a3:66:7e:30:e8:
03:31:8b:01:fd:48:d8:d2:33:62:eb:e4:0c:f3:55:
75:9e:7f:f4:3d:c4:89:4a:ca:65:ab:42:69:4f:f2:
88:5c:06:b2:31:69:91:13:8e:e8:de:b8:b2:5c:e8:
d6:16:fa:43:42:67:07:4c:c3:36:ed:ae:76:a5:89:
b5:a2:ac:1d:d5:a0:6e:8e:2c:0d:be:5e:75:c2:9f:
1d:dc:d0:21:17:ce:89:39:8b:07:8d:f4:b4:6f:b4:
ee:ac:e8:b1:63:c2:3d:31:32:7b:86:a5:96:ca:b5:
96:92:e2:d2:ba:1a:2d:82:39:0a:15:9c:17:58:d7:
4c:0e:e9:c5:fa:2c:e9:52:c3:2d:9e:06:7d:66:23:
57:1a:ea:b6:87:93:22:83:03:1f:01:50:b3:9c:4c:
74:32:be:b0:83:84:6a:96:e6:81:eb:9a:a4:15:27:
00:82:79:cb:aa:80:d4:5e:87:6f:8d:a2:b1:36:4c:
f0:fb:d2:86:91:f5:51:c3:ba:24:a3:0d:65:53:8b:
d0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:75:B6:A6:99:F9:96:4D:B4:02:3F:0C:54:45:0E:11:B0:DF:DE:4E
X509v3 Authority Key Identifier:
keyid:07:94:B7:00:70:5E:0B:AA:73:6A:5D:D0:90:AC:D1:CB:91:2C:17:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B5S3AHBeC6pzal3QkKzRy5EsFxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/S3W2ppn5lk20Aj8MVEUOEbDf3k4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6bac3b-3d0a-41c8-8936-94e02c9f150c/1/B5S3AHBeC6pzal3QkKzRy5EsFxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.188.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:b0:b4:47:93:68:e6:f5:d8:f2:8b:42:ab:c8:58:d1:b6:ce:
ac:a1:1d:d5:28:b0:ab:75:3e:dc:64:31:d5:33:95:9c:41:9d:
3f:dd:a2:cb:cb:19:c2:3f:eb:f2:a4:d1:71:a7:22:71:df:37:
97:c8:73:13:90:45:6e:06:cb:0d:26:7c:00:c2:f0:5a:8c:9f:
38:ee:97:10:4d:6b:5e:c8:92:19:2d:5b:f1:8a:9a:02:a3:96:
25:1e:af:2c:26:5f:a6:ff:9d:fc:8a:01:c4:0a:47:cf:34:0b:
f1:9a:40:4f:00:12:83:01:b6:eb:c3:41:55:13:76:97:e0:d4:
c9:97:7c:9b:17:7c:a4:49:b8:e8:da:b8:5c:7b:52:ed:b7:0a:
df:f8:09:5e:43:79:bb:66:f7:00:40:b2:88:a9:db:ac:6d:35:
3b:54:f1:8b:90:87:64:69:b9:e9:52:0c:de:33:39:35:41:1a:
40:58:dd:c6:b5:6b:de:29:ab:11:c4:54:a2:7b:e4:ab:23:73:
d1:5f:cd:a1:5f:51:5d:91:97:e9:77:a7:36:3f:5f:d3:29:ad:
bd:b7:b8:ad:ee:6b:27:8b:42:c5:f6:c7:3c:72:00:97:6f:c2:
7d:24:5b:91:b5:d9:4e:7c:06:1d:d1:06:ea:ce:58:34:f0:95:
56:b4:70:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net