Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/2JA-ZwNyhJfjy4iRgBz6O7qcilU.roa
File: 2JA-ZwNyhJfjy4iRgBz6O7qcilU.roa (raw, json)
Hash identifier: CuX1HDub6jnp4XmLQgh/JslHvidglBPgi73piILRqao=
Subject key identifier: D8:90:3E:67:03:72:84:97:E3:CB:88:91:80:1C:FA:3B:BA:9C:8A:55
Certificate issuer: /CN=ef49cac151db158ed6a856335855557f4e75f725
Certificate serial: 019425FC3A8DFBD8B62C8A177309E9A90037
Authority key identifier: EF:49:CA:C1:51:DB:15:8E:D6:A8:56:33:58:55:55:7F:4E:75:F7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70nKwVHbFY7WqFYzWFVVf0519yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/2JA-ZwNyhJfjy4iRgBz6O7qcilU.roa
Signing time: Thu 02 Jan 2025 07:47:54 +0000
ROA not before: Thu 02 Jan 2025 07:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47958
IP address blocks: 91.208.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:3a:8d:fb:d8:b6:2c:8a:17:73:09:e9:a9:00:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef49cac151db158ed6a856335855557f4e75f725
Validity
Not Before: Jan 2 07:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d8903e6703728497e3cb8891801cfa3bba9c8a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:98:ef:21:06:c2:9d:15:17:57:56:53:69:0b:
f3:a3:8d:c1:13:03:8f:c0:b4:88:89:05:f4:c4:6a:
dd:d0:16:af:00:eb:d2:6d:4c:ae:2f:74:3a:dd:9d:
30:60:4a:0f:8e:a4:57:8e:72:de:08:f9:78:d8:dc:
2c:4d:11:c2:92:4a:e8:ad:11:f5:f6:02:3d:b7:a8:
a5:21:04:41:52:12:ad:4e:1a:b6:a9:77:68:bd:c1:
7b:d2:2a:54:a8:ac:9c:18:64:fc:32:bc:dd:5f:cd:
11:53:16:ca:02:22:fd:28:a2:ba:fe:d0:8a:ef:e6:
d0:ab:39:51:5f:41:58:9c:26:e1:dc:71:13:d2:a5:
0c:d0:27:41:c7:62:31:ef:cd:c0:62:d0:a8:ee:91:
e5:42:73:25:41:a2:a3:9e:62:bc:53:e2:e9:2b:ad:
25:83:f5:3a:75:23:bc:73:de:7a:10:f7:d1:4a:cd:
a7:8f:60:47:b2:46:e1:82:ce:73:b8:e0:ca:db:58:
2c:ba:4f:65:e0:d5:9b:87:c6:29:1e:c4:1b:70:6e:
af:49:e3:a8:10:cf:17:e8:a1:7c:f8:7d:73:a2:3a:
f5:82:63:44:a2:24:25:23:c1:7d:59:78:f6:e1:7a:
21:84:e7:e8:47:70:0e:eb:8c:2d:49:8e:d0:44:c7:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:90:3E:67:03:72:84:97:E3:CB:88:91:80:1C:FA:3B:BA:9C:8A:55
X509v3 Authority Key Identifier:
keyid:EF:49:CA:C1:51:DB:15:8E:D6:A8:56:33:58:55:55:7F:4E:75:F7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70nKwVHbFY7WqFYzWFVVf0519yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/2JA-ZwNyhJfjy4iRgBz6O7qcilU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/70nKwVHbFY7WqFYzWFVVf0519yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.215.0/24
Signature Algorithm: sha256WithRSAEncryption
11:cd:b3:91:e4:d3:11:db:15:e1:e8:e7:bd:29:2b:6f:bd:72:
24:a8:37:b9:35:18:ab:da:bc:c5:b8:ca:e2:0c:ef:0e:01:e0:
f8:1b:94:84:07:08:89:1e:e2:a9:f1:31:59:46:58:ff:5b:60:
3c:ee:af:d9:8e:13:17:b8:5c:58:a5:eb:72:f8:ec:88:9f:a0:
f3:b5:80:9c:45:b6:d5:1f:21:b6:ca:9c:5a:4c:46:e1:69:cd:
2b:62:10:58:16:35:10:8f:bf:e2:fc:aa:85:98:98:aa:1e:6b:
e1:f1:63:2b:c1:d8:5b:ff:c7:45:1a:81:04:82:40:53:f8:73:
66:8e:df:ac:25:c1:15:53:21:aa:ba:f8:12:ce:e9:a6:1e:af:
d7:6c:9b:5c:34:f3:11:d2:c3:5f:e1:26:80:c7:93:67:b1:20:
16:7e:f7:eb:2d:70:d8:af:20:de:9f:67:56:f1:c3:65:e2:15:
6d:ac:f7:5f:d6:7d:86:6b:e8:31:cf:0e:6e:7b:6f:f9:c9:5f:
79:6e:ba:10:19:2b:08:6e:42:61:05:e4:6c:1a:42:d2:2c:53:
7b:a5:ec:07:97:b3:41:87:b1:b8:4b:e6:e1:bb:7f:7a:e3:93:
76:9a:92:ae:15:1b:c9:32:45:16:4d:38:a5:9e:d6:bc:8d:cc:
31:09:e1:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:12 2025 by rpki-client on console.sobornost.net