Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/8wprXMKHFgaJbtrRl-7EoukrioE.roa
File: 8wprXMKHFgaJbtrRl-7EoukrioE.roa (raw, json)
Hash identifier: q8PQ3gfYER2buU7f4CIdxjaKSrkMPorOzRr37JwbNA8=
Subject key identifier: F3:0A:6B:5C:C2:87:16:06:89:6E:DA:D1:97:EE:C4:A2:E9:2B:8A:81
Certificate issuer: /CN=f341cfec38131f83ae3df6998fa02837585c91dd
Certificate serial: 019424B259A989AE9885DBF88A809D168889
Authority key identifier: F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/8wprXMKHFgaJbtrRl-7EoukrioE.roa
Signing time: Thu 02 Jan 2025 01:47:35 +0000
ROA not before: Thu 02 Jan 2025 01:47:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 196610
IP address blocks: 91.214.253.0/24 maxlen: 24
91.214.253.0/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:59:a9:89:ae:98:85:db:f8:8a:80:9d:16:88:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f341cfec38131f83ae3df6998fa02837585c91dd
Validity
Not Before: Jan 2 01:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f30a6b5cc2871606896edad197eec4a2e92b8a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4b:0d:d5:b0:aa:79:20:ad:0f:07:fb:1e:a7:
54:11:13:92:3a:9c:42:03:49:93:ea:b8:71:40:97:
11:0d:26:6d:e2:ef:52:f0:d6:1a:14:36:28:ee:d3:
ba:40:0d:1e:69:fe:a2:87:13:e7:72:c8:11:16:d3:
d9:6b:be:a2:39:b5:af:2f:67:56:16:55:d3:cd:e6:
1e:a1:df:b7:07:d7:b1:d8:18:3a:82:77:7e:69:5c:
33:b4:9a:2d:95:17:78:d7:1e:f2:1c:87:af:43:be:
5d:a4:9d:23:dd:2d:7a:b6:61:08:c4:3b:5d:d0:40:
b9:a9:22:2f:a5:47:54:2a:24:c5:95:86:46:16:b6:
0f:03:10:86:54:d7:b1:dd:c2:28:c4:1c:f4:1e:03:
7d:5e:8c:bd:d6:56:aa:99:7e:b5:64:49:60:de:11:
2e:06:8c:e2:69:b7:d6:33:6b:72:de:b6:69:ba:f4:
7f:ba:17:44:2c:bd:7a:95:4b:f7:49:3e:2e:0c:c8:
b4:54:72:31:ef:41:61:7c:27:e8:6d:61:80:ff:d0:
89:f5:35:a6:4b:af:94:66:d5:e0:c9:d7:90:bc:40:
70:c6:0a:95:20:ec:06:c0:71:05:3f:c3:f5:1f:fc:
a7:35:5a:f3:d0:bf:ce:50:35:e3:67:b1:62:4b:ce:
40:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0A:6B:5C:C2:87:16:06:89:6E:DA:D1:97:EE:C4:A2:E9:2B:8A:81
X509v3 Authority Key Identifier:
keyid:F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/8wprXMKHFgaJbtrRl-7EoukrioE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/80HP7DgTH4OuPfaZj6AoN1hckd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.253.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:5c:a6:02:b6:6f:70:0a:29:95:1f:9d:28:1b:48:7c:76:c5:
52:e9:b7:fb:3b:b4:45:35:7f:c7:44:44:7e:db:43:90:9a:43:
ce:d1:f7:09:65:78:1f:2b:b5:2a:c2:7d:c5:fe:1b:74:d1:17:
68:3b:5e:06:2e:98:f2:22:56:d0:92:ff:44:3f:cc:5f:75:0d:
b4:8c:59:63:02:f1:98:70:6f:06:f9:9a:88:01:ba:f2:58:c3:
2a:9a:03:65:ac:0c:da:b8:96:9c:8a:c7:f8:8d:b2:83:2d:62:
36:f3:3e:46:3f:5b:02:3a:97:8f:8d:f7:cb:91:87:b6:fa:2c:
1c:ee:c0:a4:b2:c2:c2:ee:39:f2:8c:6a:49:64:41:48:80:70:
0d:60:19:00:6e:5d:fc:78:41:67:14:66:98:a8:b0:0a:21:1e:
96:d0:56:96:2c:7e:0f:4b:3b:de:98:39:3f:56:6c:6e:70:62:
70:2e:03:10:ab:0a:e3:dd:fc:61:38:be:eb:14:b6:d0:d6:89:
97:05:43:7a:40:88:42:19:d5:95:c8:f0:2c:f3:87:cb:96:52:
67:8b:79:f5:fa:5d:fc:21:1f:f6:ac:f9:13:17:be:8d:9d:e4:
5c:a0:ed:ed:76:50:38:79:97:7a:a1:71:69:b4:24:90:f1:2f:
78:ed:f9:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:55 2025 by rpki-client on console.sobornost.net