Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/8wTHmWo4SSJsVc0t3sJFniZg3X0.roa
File: 8wTHmWo4SSJsVc0t3sJFniZg3X0.roa (raw, json)
Hash identifier: nwCEElQrpQEsbcFPrYoePVQv66vMAWow/x3hFkCdNgc=
Subject key identifier: F3:04:C7:99:6A:38:49:22:6C:55:CD:2D:DE:C2:45:9E:26:60:DD:7D
Certificate issuer: /CN=ffbcae2b290c801d57d09d025a9348e16706f182
Certificate serial: 019427B5905F684F33E6D540D762BD9C2FE1
Authority key identifier: FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/8wTHmWo4SSJsVc0t3sJFniZg3X0.roa
Signing time: Thu 02 Jan 2025 15:49:57 +0000
ROA not before: Thu 02 Jan 2025 15:49:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211430
IP address blocks: 91.209.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:90:5f:68:4f:33:e6:d5:40:d7:62:bd:9c:2f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffbcae2b290c801d57d09d025a9348e16706f182
Validity
Not Before: Jan 2 15:49:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f304c7996a3849226c55cd2ddec2459e2660dd7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:89:4f:b4:72:62:d4:68:32:51:64:ad:47:10:
9a:8b:c7:b7:5f:68:1e:6e:07:c5:96:64:ab:9d:40:
46:40:81:78:7b:b2:8f:60:8e:60:3b:fe:41:9a:05:
47:b9:4f:10:a6:fa:6b:78:2a:87:1a:04:bd:ea:f4:
e7:f3:13:41:23:ea:31:36:94:e1:b3:0c:93:af:dc:
6f:2f:59:99:f5:fe:1d:ff:2e:39:68:39:d7:fe:32:
e8:b9:11:80:84:f7:75:1b:73:c0:23:8b:6f:a7:89:
7a:87:bb:00:74:d3:ed:7c:40:ca:46:ec:09:a6:3d:
f0:84:fb:b2:2b:29:28:b3:8f:96:ba:cf:51:96:3c:
4a:2d:b1:58:2a:15:15:15:3c:9e:38:9f:f3:5b:6a:
f4:dd:1b:67:e6:3c:6e:c1:f9:41:ab:fc:44:19:ee:
97:a0:55:ab:c9:10:c2:a1:83:a3:f4:c4:ba:7f:d4:
fb:a7:74:b5:e9:0e:47:3a:3e:30:a8:e5:c4:1d:a0:
c5:0d:e5:8b:ef:87:46:f9:bd:6e:e6:40:5a:01:aa:
6d:9d:14:96:07:ba:fe:99:a2:86:41:7b:6c:73:00:
4e:ad:a6:fa:ed:86:af:d8:09:52:05:fc:f1:cb:8d:
59:d3:62:42:8d:a1:6a:72:91:38:80:6a:ce:86:9d:
f5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:04:C7:99:6A:38:49:22:6C:55:CD:2D:DE:C2:45:9E:26:60:DD:7D
X509v3 Authority Key Identifier:
keyid:FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/8wTHmWo4SSJsVc0t3sJFniZg3X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/_7yuKykMgB1X0J0CWpNI4WcG8YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.105.0/24
Signature Algorithm: sha256WithRSAEncryption
39:f1:c6:5b:d4:32:76:92:40:d6:49:e0:cf:ba:50:95:28:9a:
ae:39:96:5a:df:3a:8e:37:c9:2a:72:9d:6d:be:cd:b7:86:08:
1a:29:0f:7a:11:c7:d6:84:c4:ff:21:77:55:2d:db:b4:e5:c6:
71:ce:7b:71:59:21:67:a6:c6:f4:10:a4:45:b3:f4:80:ce:d5:
ad:94:9a:2b:b9:ab:4f:c8:31:88:81:41:af:0c:7a:66:1e:de:
11:30:e0:f6:11:9e:77:2d:e3:74:f6:ad:44:12:b9:93:a4:6b:
09:6c:2f:46:29:e4:be:e5:02:b9:6b:0b:1a:79:47:c3:1c:9d:
6c:0b:28:30:ae:bf:04:7a:b0:d2:c3:36:24:aa:61:b6:fe:7c:
de:07:f3:95:33:c3:3c:d5:fe:31:6a:6a:cb:bf:ea:5f:bf:63:
4f:d9:27:f5:76:8d:95:93:95:fc:9d:88:fd:fe:49:56:ad:25:
c2:9a:e9:03:63:88:83:a4:84:ec:a2:5b:a5:82:68:ad:d7:1d:
64:96:8e:17:ba:48:86:e5:43:58:0e:e5:32:2a:c6:ca:f8:98:
11:28:dc:68:87:a2:63:7e:13:6d:55:9a:cb:2e:8a:c8:65:23:
be:e9:ab:a2:9d:c6:15:ed:83:b2:35:41:8f:ec:e4:d1:f1:c2:
fd:bb:36:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:45 2025 by rpki-client on console.sobornost.net