Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/9xeSR24sxZMuke8WWQxRtYGVLEg.roa
File: 9xeSR24sxZMuke8WWQxRtYGVLEg.roa (raw, json)
Hash identifier: oz0m8zrhKTQoSNw6FTxtRasHRF9fge7GFhftXk33fk0=
Subject key identifier: F7:17:92:47:6E:2C:C5:93:2E:91:EF:16:59:0C:51:B5:81:95:2C:48
Certificate issuer: /CN=f341cfec38131f83ae3df6998fa02837585c91dd
Certificate serial: 019424B25BC2B39CADB68D2C25D36402B2EE
Authority key identifier: F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/9xeSR24sxZMuke8WWQxRtYGVLEg.roa
Signing time: Thu 02 Jan 2025 01:47:35 +0000
ROA not before: Thu 02 Jan 2025 01:47:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205530
IP address blocks: 91.214.252.0/24 maxlen: 32
91.214.254.0/24 maxlen: 24
91.214.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:5b:c2:b3:9c:ad:b6:8d:2c:25:d3:64:02:b2:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f341cfec38131f83ae3df6998fa02837585c91dd
Validity
Not Before: Jan 2 01:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f71792476e2cc5932e91ef16590c51b581952c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:38:b8:59:e2:81:99:ce:35:a0:a7:10:3b:e9:
85:4c:dd:5a:ec:fb:ee:9c:d8:de:98:a4:d7:bb:c3:
0f:28:1e:ba:c1:5d:47:74:c4:eb:8c:c0:03:01:9d:
9d:01:ae:ff:dc:0a:f0:d9:95:77:ea:d5:a7:80:41:
58:ea:20:5c:69:b4:c5:60:1a:2e:86:02:43:2e:55:
c5:5d:6f:64:ce:42:12:37:67:ab:c2:5b:12:ea:96:
ec:4a:71:ac:9c:e6:17:cc:89:bc:30:b3:b6:b2:eb:
d3:2e:b2:26:64:81:dc:a1:b0:05:bb:24:fb:d9:69:
0d:36:e1:e3:46:4e:d3:13:9e:0e:1d:79:ad:cb:fe:
d8:ea:d2:09:fe:f1:8a:81:f3:c0:8c:cc:ef:a4:52:
3a:ea:a4:3b:4d:d7:29:f7:47:b9:af:2b:06:9f:0a:
e0:eb:22:ba:5a:5b:d0:a7:27:61:9e:24:e6:78:5b:
aa:13:7f:b5:8b:c1:45:cc:8d:dc:ab:27:ba:31:9f:
ed:4d:7f:76:0f:f9:43:54:33:b0:99:4f:c5:e4:c0:
cd:3f:e8:49:17:ae:af:1b:28:da:f4:01:c0:c1:58:
4e:2b:10:eb:9f:8f:17:b1:b6:f7:d3:e2:fd:65:70:
0b:22:b3:18:59:8b:14:7a:65:82:b1:4e:a8:36:72:
2d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:17:92:47:6E:2C:C5:93:2E:91:EF:16:59:0C:51:B5:81:95:2C:48
X509v3 Authority Key Identifier:
keyid:F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/9xeSR24sxZMuke8WWQxRtYGVLEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/80HP7DgTH4OuPfaZj6AoN1hckd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.252.0/24
91.214.254.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:d1:da:ee:aa:f2:ce:76:fb:36:11:2e:2e:0d:94:45:06:d9:
c2:a1:b8:84:84:fe:9f:e2:f2:3b:c0:04:c4:25:92:fb:2f:06:
b1:59:33:7e:f7:1e:86:5b:c9:9a:00:32:99:92:cb:13:f7:34:
db:bc:12:81:aa:5f:bd:8b:f4:15:f2:67:15:d9:65:5d:30:cd:
7d:2b:4f:28:ac:f6:67:66:a4:9a:36:b4:5a:ff:ee:fb:50:1a:
6f:ae:2c:cf:2c:fa:28:0b:eb:53:aa:66:44:3b:7c:01:01:54:
2d:ed:bf:cc:a1:78:d1:bb:19:d7:c9:bf:7b:77:11:ed:e4:40:
a4:14:0e:39:4a:e4:0b:39:c6:2d:a6:e2:b5:3d:e4:9c:1e:4e:
f0:8b:5b:83:1a:0f:fd:66:f3:07:72:67:51:19:6a:94:99:a3:
9e:ed:ff:6d:b3:3f:01:67:55:62:df:a9:55:b7:6b:7e:38:71:
a9:01:f5:57:c9:a3:69:f8:48:67:df:2e:ca:5c:9f:cf:a8:cf:
e7:a3:fd:ff:ec:70:d5:c2:b3:90:59:a2:11:6c:3f:44:90:ee:
ad:8d:63:6e:10:43:e6:f7:1d:59:05:73:2c:7b:b4:7e:03:b4:
40:41:6d:f6:c8:df:9c:e0:39:62:c0:44:a7:57:ae:26:37:8d:
68:18:ce:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:55 2025 by rpki-client on console.sobornost.net