Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/JUuxGv_Lm_wDAeQKgUpF0b2dN-E.roa
File: JUuxGv_Lm_wDAeQKgUpF0b2dN-E.roa (raw, json)
Hash identifier: LxGPc9DuVZu7AFf7wSLnWbscOl013tf3bR9ibnxaHEM=
Subject key identifier: 25:4B:B1:1A:FF:CB:9B:FC:03:01:E4:0A:81:4A:45:D1:BD:9D:37:E1
Certificate issuer: /CN=cea179e4f353ea9dcaf02f37a72b750ecfa1c354
Certificate serial: 0194228DE8E6B6CF33920A4F5C09A0C23E8C
Authority key identifier: CE:A1:79:E4:F3:53:EA:9D:CA:F0:2F:37:A7:2B:75:0E:CF:A1:C3:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zqF55PNT6p3K8C83pyt1Ds-hw1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/JUuxGv_Lm_wDAeQKgUpF0b2dN-E.roa
Signing time: Wed 01 Jan 2025 15:48:33 +0000
ROA not before: Wed 01 Jan 2025 15:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48666
IP address blocks: 91.223.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:e8:e6:b6:cf:33:92:0a:4f:5c:09:a0:c2:3e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cea179e4f353ea9dcaf02f37a72b750ecfa1c354
Validity
Not Before: Jan 1 15:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=254bb11affcb9bfc0301e40a814a45d1bd9d37e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:72:7f:02:e2:a4:07:01:d9:d4:8b:70:b1:bb:
83:a4:8f:1f:e9:23:2b:a4:a4:28:b8:22:31:39:04:
4f:16:f3:3b:57:2d:d0:5d:9b:05:99:8c:93:0e:d2:
36:05:9a:b0:bb:fc:91:04:49:25:3d:86:c4:c5:16:
8e:db:dd:3e:b7:31:9d:cb:a3:64:89:ed:77:21:ca:
80:41:4a:84:58:06:ab:b6:1a:d8:f5:6a:a9:b4:8b:
d8:d9:ad:14:93:b0:69:8d:ec:87:48:6a:56:de:c0:
3c:43:70:45:56:8c:88:1b:6d:a0:18:7d:fd:71:6d:
8b:b1:9f:ff:67:77:13:85:55:14:b0:25:f8:d9:6e:
dd:67:f5:87:20:3e:fe:e2:4c:c3:c9:60:6e:53:0a:
af:29:be:c5:d9:8b:30:b9:00:fb:ee:3a:e6:e6:83:
87:2d:e7:29:1a:4a:0c:7f:b1:21:15:8c:3b:7e:f0:
69:a3:ce:da:c4:80:91:a7:c1:71:36:45:71:d5:76:
16:5d:a2:ae:19:54:0a:55:a2:e9:4c:5f:03:0c:ae:
2d:22:6a:7c:0a:ef:1e:34:0a:ac:be:9c:97:f1:57:
ce:ea:be:44:a6:dc:b3:ff:ca:46:cd:f6:8f:c4:77:
93:ff:4c:0d:40:76:9d:76:89:7e:73:32:cb:fb:78:
62:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4B:B1:1A:FF:CB:9B:FC:03:01:E4:0A:81:4A:45:D1:BD:9D:37:E1
X509v3 Authority Key Identifier:
keyid:CE:A1:79:E4:F3:53:EA:9D:CA:F0:2F:37:A7:2B:75:0E:CF:A1:C3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zqF55PNT6p3K8C83pyt1Ds-hw1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/JUuxGv_Lm_wDAeQKgUpF0b2dN-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/zqF55PNT6p3K8C83pyt1Ds-hw1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.144.0/24
Signature Algorithm: sha256WithRSAEncryption
65:55:c0:ed:5a:64:b2:a4:42:98:5e:ae:3a:bc:00:83:ae:cc:
a8:ee:65:38:4f:b4:bb:e8:b2:20:fd:7f:c4:d7:7d:c3:b3:91:
0a:bc:ca:08:9c:00:c9:c2:0d:26:c0:b5:f0:68:a4:fe:3d:b6:
d0:15:00:74:e0:a6:e1:5e:5a:6d:a7:a0:b3:ca:ef:98:2d:02:
c0:f6:c9:8b:48:7b:fc:be:4e:41:02:66:d2:48:9e:96:bd:49:
85:73:2b:0a:af:0d:92:77:88:36:e4:0d:ba:75:cb:66:cf:f6:
bc:cc:2c:51:5e:26:3a:3f:32:23:b6:d7:de:0e:bc:43:dd:bf:
5a:87:c6:e1:89:85:5e:6c:84:03:bb:db:1e:5f:9a:3b:b3:35:
b7:79:c3:1f:d1:0c:26:5e:a4:41:70:ad:f2:16:97:3f:be:0d:
15:11:04:52:86:2e:0e:26:b9:bd:d5:55:05:03:56:bb:cd:da:
4a:1e:9b:50:b1:8c:44:14:0a:5d:75:91:79:08:19:71:a5:de:
50:34:17:a0:98:3b:10:f9:0e:9b:51:5e:c3:9b:69:a2:16:c5:
6b:fd:39:73:83:86:af:d2:4a:36:b1:75:bb:68:42:87:96:2b:
34:23:e0:b5:d1:a3:d5:da:d0:e1:e3:13:43:50:6e:1c:3d:f4:
f0:ad:d4:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:51 2025 by rpki-client on console.sobornost.net