Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/0206ff-7e87-44a6-9a56-ba3c64e14a1d/1/nlnO4JKY-WF4fIugSDLHCsqmWG0.roa
File: nlnO4JKY-WF4fIugSDLHCsqmWG0.roa (raw, json)
Hash identifier: DJjNZidMjIF4HJL9vIPp8VXmueVkZHkNUSbULfgn0Q0=
Subject key identifier: 9E:59:CE:E0:92:98:F9:61:78:7C:8B:A0:48:32:C7:0A:CA:A6:58:6D
Certificate issuer: /CN=363cb5c6a05cdd481f304c0cd95e86d722d96d3c
Certificate serial: 0193E38A1EAAE3CC5A0BAAEEA0D104D3A4E1
Authority key identifier: 36:3C:B5:C6:A0:5C:DD:48:1F:30:4C:0C:D9:5E:86:D7:22:D9:6D:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Njy1xqBc3UgfMEwM2V6G1yLZbTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/0206ff-7e87-44a6-9a56-ba3c64e14a1d/1/nlnO4JKY-WF4fIugSDLHCsqmWG0.roa
Signing time: Fri 20 Dec 2024 10:08:20 +0000
ROA not before: Fri 20 Dec 2024 10:08:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198890
IP address blocks: 91.239.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:8a:1e:aa:e3:cc:5a:0b:aa:ee:a0:d1:04:d3:a4:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=363cb5c6a05cdd481f304c0cd95e86d722d96d3c
Validity
Not Before: Dec 20 10:08:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e59cee09298f961787c8ba04832c70acaa6586d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:59:d3:b5:1e:02:37:e8:2b:06:16:7e:d0:13:
1c:6a:ef:07:e3:64:67:79:47:48:e0:39:57:84:76:
77:33:16:9a:aa:c2:c9:39:32:3e:8e:8d:c0:f6:69:
a1:6a:d5:be:98:00:52:a0:5f:25:fa:9d:94:7b:e4:
c1:eb:e9:e3:b6:24:2f:f6:c5:63:b3:ea:22:68:11:
01:cf:c5:7d:c5:55:fe:e7:f4:fa:90:4e:b1:b9:c5:
f8:26:1a:cf:e1:1c:f0:78:33:e5:bc:e3:a9:45:b4:
64:e1:fa:d8:2c:10:94:34:58:24:60:1c:1d:da:df:
57:c1:83:91:bb:49:34:52:8b:e1:ce:02:ca:9d:b6:
a5:1a:03:a1:88:ed:b1:b8:6b:12:2a:31:e3:01:81:
ec:dd:7a:8b:2a:27:a9:a4:05:c6:ec:d5:ee:7e:3b:
40:0a:24:47:19:ea:09:7f:37:62:97:71:7c:2f:47:
b6:13:a1:26:a9:2c:6f:71:ac:a0:c7:23:98:cc:f6:
02:a9:5d:52:a0:e9:19:17:2f:0d:fa:7d:50:54:e9:
96:4d:92:9b:8c:4c:72:fa:88:85:61:2a:c6:03:e8:
26:0b:15:a1:2d:b7:6e:37:bf:37:90:95:f9:6a:a3:
a7:bd:c9:c3:89:a7:71:c1:f1:81:b9:47:ec:29:cd:
d8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:59:CE:E0:92:98:F9:61:78:7C:8B:A0:48:32:C7:0A:CA:A6:58:6D
X509v3 Authority Key Identifier:
keyid:36:3C:B5:C6:A0:5C:DD:48:1F:30:4C:0C:D9:5E:86:D7:22:D9:6D:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Njy1xqBc3UgfMEwM2V6G1yLZbTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0206ff-7e87-44a6-9a56-ba3c64e14a1d/1/nlnO4JKY-WF4fIugSDLHCsqmWG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0206ff-7e87-44a6-9a56-ba3c64e14a1d/1/Njy1xqBc3UgfMEwM2V6G1yLZbTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.6.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:7f:96:6d:35:d3:6c:90:d0:85:6d:c2:97:06:17:62:33:88:
a0:5d:68:93:10:23:a7:fe:37:78:80:82:bb:22:09:fa:ff:78:
d6:c6:84:bb:b4:41:ca:9f:77:a4:f2:59:66:1b:92:96:a4:ac:
9f:50:ea:5d:de:85:fa:c8:ff:2b:82:30:6d:c7:ba:d0:74:ac:
80:6a:5b:78:7b:8e:e7:a3:4b:fd:10:1c:41:73:4b:03:dc:87:
5b:de:79:d4:82:9f:02:2c:0d:43:82:05:b0:37:22:d3:48:7a:
45:e8:19:f6:99:40:69:99:92:34:55:8f:e0:3c:04:b0:98:a5:
35:63:f0:9a:74:8f:0f:3e:ce:09:39:1f:5f:6b:f6:8c:7d:3a:
36:51:67:a8:ab:54:1f:45:e5:4f:7b:af:1b:ed:df:bc:74:e9:
8b:01:fb:ae:42:9d:84:10:3c:b6:53:8d:d3:4a:9b:f7:d5:7c:
88:c2:81:df:6d:81:16:30:c3:08:cd:59:b4:c8:6a:2d:8d:a1:
78:11:b3:3d:a9:62:e1:31:da:e3:db:87:02:5f:e9:d4:04:20:
75:02:22:1f:2f:7d:85:6e:28:e7:22:39:ee:85:66:58:2c:1f:
38:81:43:68:4c:a9:14:25:eb:a2:41:b5:5f:df:1e:6a:08:31:
a9:9a:4d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 24 21:25:09 2024 by rpki-client on console.sobornost.net