Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/pruyBDp_cEEXKvqRx1kQTDgs6oI.roa
File: pruyBDp_cEEXKvqRx1kQTDgs6oI.roa (raw, json)
Hash identifier: noTc5adRBPeIH3/LBjn/ftfA3EYuQEQb7IQr66+/vn8=
Subject key identifier: A6:BB:B2:04:3A:7F:70:41:17:2A:FA:91:C7:59:10:4C:38:2C:EA:82
Certificate issuer: /CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Certificate serial: 0194236A378D69E3DD2E8857EC83D8F0F44A
Authority key identifier: 84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/pruyBDp_cEEXKvqRx1kQTDgs6oI.roa
Signing time: Wed 01 Jan 2025 19:49:11 +0000
ROA not before: Wed 01 Jan 2025 19:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208855
IP address blocks: 109.71.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:37:8d:69:e3:dd:2e:88:57:ec:83:d8:f0:f4:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Validity
Not Before: Jan 1 19:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6bbb2043a7f7041172afa91c759104c382cea82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0d:b1:4c:7d:4b:ed:c6:96:bf:a1:81:78:09:
51:f3:63:88:88:cb:16:f6:e5:90:3c:56:04:8a:49:
46:b2:b4:6d:53:0d:46:fe:d1:5d:1f:4d:fc:b7:78:
25:66:2e:88:bd:2b:60:57:78:d8:b0:16:09:84:39:
bc:3b:3f:c8:cb:39:cd:33:e4:aa:13:6a:bb:a3:24:
a6:53:60:fe:b0:7e:2c:52:f6:88:98:64:ff:de:09:
94:18:6a:84:55:36:46:5c:7e:71:46:c7:6b:eb:25:
30:a8:ab:3e:e6:68:ae:0a:33:9f:1b:d1:4d:32:a4:
83:2b:eb:15:50:26:0d:50:28:43:00:65:29:25:15:
1b:03:7a:07:f7:e2:ed:ba:23:91:42:a1:6f:93:ef:
2a:f3:93:dc:e6:5a:f9:83:33:3b:47:8b:a1:d7:a4:
3e:37:68:80:e3:62:99:19:79:23:bb:3f:75:ee:29:
f5:6b:97:9e:bc:86:ba:34:84:fb:6f:73:9a:64:0b:
3f:e6:f1:ee:65:ca:75:09:42:34:49:fa:c8:34:58:
2d:c4:88:74:56:ff:06:21:f8:16:98:e6:ab:74:7c:
9b:3a:df:26:08:69:b3:f7:c9:5f:ff:51:83:46:3d:
a3:44:61:60:43:1b:64:f6:51:c3:d6:0e:f1:49:73:
67:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BB:B2:04:3A:7F:70:41:17:2A:FA:91:C7:59:10:4C:38:2C:EA:82
X509v3 Authority Key Identifier:
keyid:84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/pruyBDp_cEEXKvqRx1kQTDgs6oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/hKvwyYFwGrqX5PzQvtTkzbhpIEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.152.0/22
Signature Algorithm: sha256WithRSAEncryption
07:d2:f7:e3:44:52:09:62:47:88:eb:89:1c:b6:9a:aa:f9:fd:
e1:06:ce:81:87:ab:06:de:60:f3:00:68:3d:33:0a:c5:91:70:
31:00:86:92:25:40:aa:f0:f0:59:98:76:da:d3:82:11:54:a3:
82:e5:f8:3a:68:48:61:87:41:8d:c5:12:2c:60:e9:ec:47:58:
bb:b5:cb:81:4d:2e:d1:c3:a6:b4:23:28:c4:4d:4c:1c:46:4c:
a6:7c:3d:ce:47:76:73:25:1b:07:b2:20:23:7a:2d:13:81:64:
8b:0f:cf:dd:50:94:41:5c:71:30:da:13:7e:14:45:37:b6:e7:
49:56:72:4e:12:f3:54:0c:f7:27:d2:0f:d5:90:12:e8:81:15:
c0:a4:04:14:af:22:78:94:46:2a:d8:81:f6:77:90:ac:c2:3c:
9a:a6:ff:4b:74:63:c7:a9:a8:df:72:2b:72:fc:18:61:c1:3e:
20:0e:e1:ad:27:1f:94:ff:4d:65:38:01:33:7b:36:95:11:f0:
59:17:ce:08:1e:91:c9:86:8a:a5:61:0d:13:1f:76:42:57:93:
c6:c2:59:cc:f7:e8:35:ac:03:a3:e6:ee:18:26:6c:6f:23:f1:
4c:39:a2:7a:99:d0:e2:8b:29:e6:80:96:3c:60:8e:58:05:93:
0c:84:c7:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net