Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/fFstVPrb_3K-jl7g58_b4ihHTfY.roa
File: fFstVPrb_3K-jl7g58_b4ihHTfY.roa (raw, json)
Hash identifier: sDN8YMAsFynzsUb+KhP7tCE7b4tst1zO6K3vmsmzSlI=
Subject key identifier: 7C:5B:2D:54:FA:DB:FF:72:BE:8E:5E:E0:E7:CF:DB:E2:28:47:4D:F6
Certificate issuer: /CN=426446a4a1cb56b3f76fe6b4defabad3bd9b5207
Certificate serial: 0194258F61FEA529FA9FE52121FF0E46E35D
Authority key identifier: 42:64:46:A4:A1:CB:56:B3:F7:6F:E6:B4:DE:FA:BA:D3:BD:9B:52:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QmRGpKHLVrP3b-a03vq6072bUgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/fFstVPrb_3K-jl7g58_b4ihHTfY.roa
Signing time: Thu 02 Jan 2025 05:49:01 +0000
ROA not before: Thu 02 Jan 2025 05:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51780
IP address blocks: 91.209.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:61:fe:a5:29:fa:9f:e5:21:21:ff:0e:46:e3:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=426446a4a1cb56b3f76fe6b4defabad3bd9b5207
Validity
Not Before: Jan 2 05:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c5b2d54fadbff72be8e5ee0e7cfdbe228474df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:fc:46:70:bd:73:f2:02:8e:6d:73:db:7a:
17:77:ea:5d:d1:6e:d1:35:3f:5f:6f:7a:c1:65:79:
85:7a:b5:3f:75:f0:9f:07:99:21:9e:65:eb:8f:47:
ae:e5:15:a6:92:71:d5:7c:3d:3b:64:28:6c:80:5e:
37:b6:e8:2c:0a:5d:6a:6c:46:11:c8:aa:f1:7d:42:
36:0c:28:53:a9:36:2a:ad:46:f0:02:e2:75:87:5c:
f8:d7:d2:ff:07:ed:95:04:a9:dc:73:d2:00:d0:60:
07:6a:bb:91:8f:f0:ef:27:c8:c3:1a:8f:c0:64:5e:
22:6b:1a:df:bd:ce:54:6b:e1:51:f9:d5:c4:34:62:
c4:0f:29:89:70:ea:f5:8a:93:05:be:39:9a:c7:42:
dc:33:55:c9:f5:c0:85:f3:76:23:e2:aa:14:6b:b8:
62:cd:a7:f8:93:3c:9c:0c:fa:29:a2:7c:95:db:5b:
7b:c5:7d:ba:95:13:6e:11:62:cf:68:60:7b:da:20:
bf:a5:5e:10:b4:21:1c:82:d5:6f:3b:92:c9:25:48:
62:ac:1b:a1:6e:08:04:7c:51:e9:b2:fe:9a:14:c4:
dc:14:0e:53:fc:bc:b2:3e:ce:ad:a2:3b:71:98:5e:
ad:1b:9e:3c:96:1e:49:7d:4e:68:1c:ae:9d:3d:c6:
0b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5B:2D:54:FA:DB:FF:72:BE:8E:5E:E0:E7:CF:DB:E2:28:47:4D:F6
X509v3 Authority Key Identifier:
keyid:42:64:46:A4:A1:CB:56:B3:F7:6F:E6:B4:DE:FA:BA:D3:BD:9B:52:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QmRGpKHLVrP3b-a03vq6072bUgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/fFstVPrb_3K-jl7g58_b4ihHTfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/QmRGpKHLVrP3b-a03vq6072bUgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.233.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:87:db:6b:32:f2:fb:a4:8c:af:00:73:c5:f9:c6:9e:08:2c:
d2:e0:56:40:c4:b2:6c:25:64:56:1d:ac:a7:ed:fa:46:31:72:
30:8f:0f:44:52:4b:f5:b0:d3:47:78:21:81:98:1c:05:6a:18:
1d:e6:a4:44:bb:80:79:68:59:df:62:6b:f1:1b:11:70:91:03:
1e:b6:a1:81:ba:68:62:44:91:34:c2:61:7a:b6:2e:18:70:67:
d2:69:15:12:94:98:5e:21:cc:9e:40:b7:d7:0d:3b:42:cf:d6:
8a:c8:66:45:1d:ec:09:48:e9:3d:63:68:3c:85:f2:a6:76:cc:
45:c3:a0:1e:db:d4:eb:02:44:66:47:19:31:36:f7:88:8e:1a:
79:da:11:6c:f0:40:a6:a0:d8:fc:b0:25:1e:6b:90:55:0a:6c:
2f:8f:68:eb:4d:db:b9:20:42:28:c4:98:f0:38:3f:68:89:9e:
26:5e:63:97:43:f5:05:39:c4:dd:ab:0e:34:d6:08:16:4d:5d:
d2:20:4a:dc:cc:e4:f9:f7:5d:62:57:14:ff:3a:92:5e:1f:a2:
05:19:fa:f8:16:20:81:cd:cc:08:e0:c7:38:9e:6b:0f:1f:64:
57:89:42:df:94:4b:04:18:6b:61:fa:42:6b:1e:e2:7c:ed:14:
45:16:16:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:51 2025 by rpki-client on console.sobornost.net