Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0b447c-6d73-4a79-8e51-e409a8efadac/1/bPhuRniXhi6v8miKtxoaZnEn00A.roa
File: bPhuRniXhi6v8miKtxoaZnEn00A.roa (raw, json)
Hash identifier: xSundNXAHWzuOj0WfGOEO/7NeCRZEJh+UG6019ph0YU=
Subject key identifier: 6C:F8:6E:46:78:97:86:2E:AF:F2:68:8A:B7:1A:1A:66:71:27:D3:40
Certificate issuer: /CN=09f26bd6f46837e0afd9589d878efc3ec8967f02
Certificate serial: 019425FDABE543C2AE6B12F94905C5B99842
Authority key identifier: 09:F2:6B:D6:F4:68:37:E0:AF:D9:58:9D:87:8E:FC:3E:C8:96:7F:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CfJr1vRoN-Cv2Vidh478PsiWfwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0b447c-6d73-4a79-8e51-e409a8efadac/1/bPhuRniXhi6v8miKtxoaZnEn00A.roa
Signing time: Thu 02 Jan 2025 07:49:29 +0000
ROA not before: Thu 02 Jan 2025 07:49:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29314
IP address blocks: 31.41.208.0/21 maxlen: 21
91.226.6.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ab:e5:43:c2:ae:6b:12:f9:49:05:c5:b9:98:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f26bd6f46837e0afd9589d878efc3ec8967f02
Validity
Not Before: Jan 2 07:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6cf86e467897862eaff2688ab71a1a667127d340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e2:bb:83:b0:5f:0c:10:ad:2a:51:62:13:fe:
3f:19:21:16:10:86:15:35:cd:da:75:71:a4:43:35:
59:91:be:5e:ac:fe:2a:06:f0:f0:c6:d1:d4:51:e5:
16:3a:1e:f1:1e:9c:d6:48:e8:80:37:1f:39:75:48:
0a:06:92:b4:27:20:02:33:1c:82:83:c0:a5:ea:fe:
68:d8:f5:d8:d9:92:0b:5a:82:48:df:0a:1c:f6:a2:
e1:c6:65:3d:61:d9:28:6f:c8:2d:84:87:82:7e:df:
89:f7:11:88:37:98:61:e8:40:15:ac:75:81:0d:45:
ba:25:a7:e3:3e:25:0a:15:c6:0b:82:10:c3:56:5d:
9a:d1:e7:d6:2d:a6:ce:d8:f9:b8:ad:80:a2:26:10:
0c:fb:bc:4c:42:c6:7a:ff:60:fc:23:92:3b:2d:62:
46:11:2b:b9:44:57:a6:5f:5f:93:cb:75:7b:51:cd:
e3:95:d8:50:a0:cd:a2:67:31:b1:58:d4:be:68:81:
36:42:23:db:6c:75:55:d7:7f:bf:35:52:b4:15:9f:
15:42:88:bc:8b:6f:4d:d7:f0:b3:f5:26:06:8c:94:
4e:da:8c:fd:a4:83:c3:36:21:ef:9f:c5:b1:7a:f1:
f6:a8:ac:05:bc:06:10:ad:47:a7:ec:03:30:8f:45:
c0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F8:6E:46:78:97:86:2E:AF:F2:68:8A:B7:1A:1A:66:71:27:D3:40
X509v3 Authority Key Identifier:
keyid:09:F2:6B:D6:F4:68:37:E0:AF:D9:58:9D:87:8E:FC:3E:C8:96:7F:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CfJr1vRoN-Cv2Vidh478PsiWfwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0b447c-6d73-4a79-8e51-e409a8efadac/1/bPhuRniXhi6v8miKtxoaZnEn00A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0b447c-6d73-4a79-8e51-e409a8efadac/1/CfJr1vRoN-Cv2Vidh478PsiWfwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.208.0/21
91.226.6.0/23
Signature Algorithm: sha256WithRSAEncryption
07:e8:6c:4a:d1:43:9e:16:f8:c1:6e:a2:05:14:87:34:3d:b1:
0f:37:08:3a:00:a8:2f:e1:b6:40:37:16:d9:85:cd:6d:54:be:
e7:b3:8c:65:56:9f:a0:4e:41:9e:9f:11:03:0b:04:ff:3f:6c:
04:b0:72:e9:48:f8:5e:f9:9e:b5:da:1a:ea:16:50:79:22:8e:
c9:fa:b3:3c:44:6e:6b:6a:9c:2a:7e:28:75:3a:47:36:af:5e:
d6:72:e0:c7:ee:37:50:9e:ca:9c:a3:9f:96:96:80:98:eb:6e:
2f:09:34:79:6c:0c:90:4f:ac:77:9a:28:45:4a:8b:ac:01:2b:
d3:3f:e6:33:b6:8c:99:ed:c4:62:b6:d2:98:43:cd:81:53:96:
1a:f6:74:bb:92:6b:5c:34:c2:2b:ae:ea:54:41:23:7c:cb:9f:
d9:bb:bd:45:3d:eb:ff:3a:14:c1:e8:97:d8:83:65:af:da:b4:
f2:82:6f:af:c7:f6:05:df:74:9f:a9:78:14:3c:97:6e:34:29:
32:dd:cc:c1:64:e7:2d:01:1c:ba:a1:36:21:07:ad:14:31:2c:
1d:17:13:9c:ce:44:35:dd:2b:74:ba:98:c5:52:78:ed:c5:9b:
5f:84:2f:8a:71:5f:fe:55:2d:de:b5:bb:1f:e2:72:49:c1:26:
fb:5f:4e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net