Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Aam9hDTsL5zI8dtWzZv5XUC3OR8.roa
File: Aam9hDTsL5zI8dtWzZv5XUC3OR8.roa (raw, json)
Hash identifier: dwClNq56wlC68hAxsnatZl0vbs/sVVnMz0c3H5mjrzg=
Subject key identifier: 01:A9:BD:84:34:EC:2F:9C:C8:F1:DB:56:CD:9B:F9:5D:40:B7:39:1F
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 019426D9EA501A1CF7D8794B67C7F15A350D
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Aam9hDTsL5zI8dtWzZv5XUC3OR8.roa
Signing time: Thu 02 Jan 2025 11:50:03 +0000
ROA not before: Thu 02 Jan 2025 11:50:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48241
IP address blocks: 91.210.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:ea:50:1a:1c:f7:d8:79:4b:67:c7:f1:5a:35:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Jan 2 11:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01a9bd8434ec2f9cc8f1db56cd9bf95d40b7391f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:af:07:36:10:39:d1:20:2f:7d:c6:57:e8:
bd:cd:52:f3:07:03:34:64:3c:f3:f5:44:81:ab:9c:
c9:a2:29:c4:5e:5b:c5:99:df:b9:36:6d:a0:d8:04:
9e:83:50:de:7d:83:a3:99:a9:30:f7:00:91:b7:2c:
62:e8:34:ca:15:e7:b8:3e:d7:10:a1:f5:e9:26:7e:
c2:c8:bd:52:f0:5c:94:88:99:ff:fe:ab:f9:77:7b:
e3:3b:fa:1d:f6:0c:ae:b2:d4:50:c4:d0:ea:8e:4e:
db:0d:da:f6:3f:ce:ab:d8:16:e0:1e:e9:28:1c:bc:
58:2f:65:ad:75:50:a0:bd:27:82:6b:88:ed:e7:fe:
85:f0:35:18:a6:8d:26:c7:8f:4e:37:0b:d5:66:c9:
6c:e4:00:20:fe:09:7c:8c:83:9c:5b:64:74:58:0c:
22:5e:7b:6d:4e:33:2f:02:32:a6:8e:03:c0:72:3c:
38:18:6a:42:cd:84:ed:1c:6c:1e:b8:c5:d4:f7:82:
ee:b5:7a:ef:89:31:37:ec:f9:4f:67:6c:6f:e2:28:
25:51:82:25:5d:ae:c6:1a:71:2c:82:d2:77:25:df:
52:33:75:7a:46:85:83:e1:ab:f0:3b:a9:2d:8f:8d:
76:ca:2c:a0:6a:db:5f:ae:0e:34:01:65:8e:27:5b:
cf:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A9:BD:84:34:EC:2F:9C:C8:F1:DB:56:CD:9B:F9:5D:40:B7:39:1F
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Aam9hDTsL5zI8dtWzZv5XUC3OR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.132.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:43:e2:51:59:46:84:52:55:ec:7f:f2:7b:63:32:22:4f:16:
0b:3b:d2:37:5a:3b:6d:dd:f3:6c:c1:7b:37:e6:14:c4:91:e2:
27:33:d2:c6:d7:8f:c0:9a:2f:eb:a8:55:2d:6a:a6:00:df:9b:
ca:45:af:ea:00:a2:88:7d:fd:68:b4:2e:71:ae:a6:f2:e9:46:
fc:36:bb:77:3d:a5:82:f9:3f:33:f0:e2:1a:23:ec:27:2e:30:
a5:de:b8:fb:e3:84:a4:8e:50:72:8e:9c:16:41:ad:a9:cf:90:
22:d6:40:33:b9:e1:84:d5:64:9c:56:49:3a:b3:a8:ad:48:8b:
3b:9f:6d:d7:86:56:10:00:74:0a:f3:f3:cf:ce:d9:0b:4c:93:
f3:ff:92:f1:31:78:e0:36:c4:23:3a:9b:ac:e6:41:b3:48:0d:
1c:b9:48:65:2e:93:99:49:f1:77:1d:7f:51:db:50:bd:35:57:
e4:9f:02:14:8c:8a:5c:a5:cc:09:78:3e:a6:74:9d:90:3c:62:
82:5a:11:0b:84:bd:22:46:45:31:a8:36:e9:c9:1b:33:c8:a1:
2b:83:07:0b:ee:aa:87:d8:3d:da:cf:b7:db:ba:e3:86:0a:cd:
ad:dc:6a:5e:ca:11:d6:71:06:67:d9:65:f6:e5:b4:f9:e4:b0:
30:96:0e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:54:45 2025 by rpki-client on console.sobornost.net