Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/9ud9lsADK6hpkEDUzemkgV7iNg0.roa
File: 9ud9lsADK6hpkEDUzemkgV7iNg0.roa (raw, json)
Hash identifier: du1uoZGOulxQJtn441q28GXXfSH6yxg8t4Ll01hAzDY=
Subject key identifier: F6:E7:7D:96:C0:03:2B:A8:69:90:40:D4:CD:E9:A4:81:5E:E2:36:0D
Certificate issuer: /CN=9155641a07b1e455b7892b92d80d60912391b20d
Certificate serial: 0193F0104BE90537B3C74D43B7B41B825B06
Authority key identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/9ud9lsADK6hpkEDUzemkgV7iNg0.roa
Signing time: Sun 22 Dec 2024 20:30:20 +0000
ROA not before: Sun 22 Dec 2024 20:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51146
IP address blocks: 91.203.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f0:10:4b:e9:05:37:b3:c7:4d:43:b7:b4:1b:82:5b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9155641a07b1e455b7892b92d80d60912391b20d
Validity
Not Before: Dec 22 20:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6e77d96c0032ba8699040d4cde9a4815ee2360d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:10:a8:d5:07:09:6b:62:af:e5:69:22:13:b4:
84:91:9b:b8:96:dc:a5:ed:a7:4c:0f:fa:ae:3b:85:
e8:a2:ea:14:68:dd:74:62:2d:d0:23:63:3e:58:93:
22:4d:92:d2:0a:50:93:f0:0e:e2:5c:cf:b8:32:fd:
9f:f9:f7:f4:75:cb:b2:3a:3a:ec:69:2a:fd:29:18:
75:9f:b8:29:09:0a:09:22:05:6d:95:a0:f6:22:85:
fa:02:44:98:8e:16:17:29:8e:d4:60:26:1e:8a:5e:
e1:9a:92:65:38:9b:e2:57:b7:b9:a0:79:eb:47:10:
f8:37:35:e2:f4:78:70:1c:e3:71:81:50:f3:50:08:
c2:c8:0d:7a:66:0a:b5:ae:01:b6:f6:cf:14:60:fa:
ae:bb:ea:f6:e4:44:84:33:d6:ab:d2:6c:c6:ff:e7:
55:c9:57:6a:ab:c6:f3:8f:d6:34:96:fb:45:ab:b1:
f1:74:f9:7e:55:5b:61:72:55:bb:b6:97:00:5a:ff:
46:b6:e3:55:95:00:c1:52:36:4f:ff:ab:de:44:8d:
a1:a2:b0:a6:8c:05:76:06:a5:96:a8:33:d5:ab:03:
01:07:39:db:09:fa:38:d7:43:8b:40:46:bf:e5:10:
c2:50:b1:03:da:1f:21:26:31:30:f1:70:a4:e5:b8:
8c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E7:7D:96:C0:03:2B:A8:69:90:40:D4:CD:E9:A4:81:5E:E2:36:0D
X509v3 Authority Key Identifier:
keyid:91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/9ud9lsADK6hpkEDUzemkgV7iNg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.156.0/22
Signature Algorithm: sha256WithRSAEncryption
15:41:6b:1a:7f:44:de:61:0b:8e:ba:06:a1:a2:ed:32:4f:58:
db:78:15:40:b6:8e:93:8c:e6:e3:0e:ae:2f:5f:06:86:fc:e6:
25:bf:9d:03:05:f7:c0:38:45:81:b7:6a:d6:1b:a2:a1:05:15:
38:51:ae:9d:da:6e:f3:b6:f4:ab:73:01:67:2f:ca:63:b1:78:
b7:b4:29:78:af:c4:7d:b8:3e:58:42:e1:28:e5:6d:f8:36:80:
15:91:fd:00:d2:b6:67:b7:91:fe:ca:b4:61:d2:b8:8c:8d:6b:
bb:0f:75:a2:6e:9d:14:10:3d:1d:45:de:92:b6:88:4e:03:0a:
ae:21:58:03:e6:e3:0f:2e:c6:cd:a1:6a:e8:d6:c6:a7:31:79:
cf:0f:c2:70:75:f2:77:2a:10:76:33:5a:bf:25:e8:1c:b6:1d:
ef:95:3e:ae:ad:c5:e4:df:5b:f0:90:3e:09:db:be:81:ab:da:
bb:39:6c:5d:aa:34:05:2a:31:99:49:c1:05:4d:9e:a8:0b:45:
fe:36:21:70:88:7f:ab:64:c7:a9:5e:87:b8:01:a0:e7:ee:c6:
61:a6:61:93:8d:3a:4e:f9:a7:df:ee:1e:8c:dd:88:d7:e8:80:
87:27:e9:fa:91:2a:a4:2e:84:f1:3a:b5:7b:05:d8:b9:c6:a5:
6d:04:a4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:24 2024 by rpki-client on console.sobornost.net