Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b52e02-3af8-4ebb-99d3-851d9c044e70/1/eomnWpCslgeCaa51BTRoWoL-Dts.roa
File: eomnWpCslgeCaa51BTRoWoL-Dts.roa (raw, json)
Hash identifier: R37kjawZPWc41dECHjh1nfSRxDJRDo74kjG54DNadwI=
Subject key identifier: 7A:89:A7:5A:90:AC:96:07:82:69:AE:75:05:34:68:5A:82:FE:0E:DB
Certificate issuer: /CN=d716209d7def98a2bb34977f65009b3520da256e
Certificate serial: 01947B51CFCFA6A3DDABB776D82D2F99A3D5
Authority key identifier: D7:16:20:9D:7D:EF:98:A2:BB:34:97:7F:65:00:9B:35:20:DA:25:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1xYgnX3vmKK7NJd_ZQCbNSDaJW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b52e02-3af8-4ebb-99d3-851d9c044e70/1/eomnWpCslgeCaa51BTRoWoL-Dts.roa
Signing time: Sat 18 Jan 2025 21:29:06 +0000
ROA not before: Sat 18 Jan 2025 21:29:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62425
IP address blocks: 91.239.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:7b:51:cf:cf:a6:a3:dd:ab:b7:76:d8:2d:2f:99:a3:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d716209d7def98a2bb34977f65009b3520da256e
Validity
Not Before: Jan 18 21:29:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a89a75a90ac96078269ae750534685a82fe0edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:34:ac:21:6c:01:97:79:4a:89:9c:c4:d3:
d0:9f:19:22:ff:75:2c:64:97:ec:45:88:61:d8:9b:
d6:d7:38:8a:7f:00:b4:d9:54:00:0f:da:49:b0:11:
2c:1e:b9:22:b0:64:2f:f6:5f:f4:b2:ca:25:05:0f:
0c:68:d5:89:a1:1e:cf:cc:24:5b:25:1c:79:39:ba:
bd:cd:90:8d:7d:75:3b:d7:e1:a6:5a:b1:9f:21:e9:
40:68:d6:23:e9:93:d7:a4:83:b4:f8:db:93:35:3e:
dd:97:7a:d7:90:ed:e7:89:6b:4b:8d:5d:5f:42:72:
c1:92:d0:67:96:ce:be:ad:4e:85:0e:db:1b:9c:35:
30:e5:b4:11:6c:c5:c6:31:65:72:c6:40:ee:f6:0a:
69:85:97:ba:ab:10:71:bb:ea:35:5c:b7:ff:a9:df:
6b:9b:08:d0:0c:77:6c:a4:38:97:68:2c:b5:bf:c5:
4c:c6:52:3d:89:24:44:24:f6:0c:62:b4:6f:e1:7d:
b0:fa:a3:d2:a5:89:6f:cc:66:83:66:54:8a:71:37:
9b:f1:dd:18:98:55:48:fd:f3:be:2a:5c:3f:06:f3:
17:37:3c:28:ca:fc:49:81:9f:d0:cb:bc:de:15:a0:
ff:8e:62:f7:a0:29:5a:d8:ae:33:f3:52:e9:ab:2f:
51:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:89:A7:5A:90:AC:96:07:82:69:AE:75:05:34:68:5A:82:FE:0E:DB
X509v3 Authority Key Identifier:
keyid:D7:16:20:9D:7D:EF:98:A2:BB:34:97:7F:65:00:9B:35:20:DA:25:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1xYgnX3vmKK7NJd_ZQCbNSDaJW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b52e02-3af8-4ebb-99d3-851d9c044e70/1/eomnWpCslgeCaa51BTRoWoL-Dts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b52e02-3af8-4ebb-99d3-851d9c044e70/1/1xYgnX3vmKK7NJd_ZQCbNSDaJW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.192.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:07:03:9f:5c:0b:76:f9:ea:e4:c3:c2:9d:6b:55:25:53:4b:
c3:d2:9b:ae:a2:4d:41:b2:9f:73:d8:a8:1b:de:31:1c:15:97:
49:ff:f2:74:0a:d9:94:74:62:e1:c9:59:85:4a:26:38:9c:0f:
c2:49:55:76:c7:31:9d:98:f1:67:56:02:46:7c:d9:3e:d6:7e:
40:48:e9:70:c6:10:d2:a6:53:24:db:3d:3d:48:5f:45:9d:e8:
71:ca:44:21:11:be:58:42:fa:03:ae:dd:78:9a:8d:9a:bf:69:
ba:db:23:45:c2:55:29:b4:64:71:ee:bd:5f:93:f3:d0:75:75:
cb:ef:b4:0f:1b:18:e5:e2:e8:47:b1:70:52:cf:55:70:60:35:
a1:fb:77:40:e1:db:5d:41:8c:ad:93:2e:ea:b1:15:9a:59:77:
c7:49:69:40:26:98:2d:23:35:ff:b7:d1:6f:e2:32:5a:ce:f4:
e8:4a:7d:a6:26:c6:1a:76:77:7a:17:ba:26:72:65:2c:34:c3:
b1:4f:8d:a3:f5:07:40:83:b5:84:e9:0e:26:be:ee:be:01:a7:
d0:c1:fe:b9:b8:9d:c9:60:7b:ff:16:4d:fb:da:96:89:8f:42:
83:8a:e8:ab:3f:52:bc:27:c7:a6:f4:8c:a4:f8:8d:4c:2e:37:
9d:63:93:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:37 2025 by rpki-client on console.sobornost.net