Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/xNtGHv1YLmz0baQ6fFAsVkQIQLw.roa
File: xNtGHv1YLmz0baQ6fFAsVkQIQLw.roa (raw, json)
Hash identifier: glTrDTx+iBPrwn7/BNyzFNiZr9vyz3H84OvS4u/lrN4=
Subject key identifier: C4:DB:46:1E:FD:58:2E:6C:F4:6D:A4:3A:7C:50:2C:56:44:08:40:BC
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 019600CEB87D39F104CEA6BE7E0684B9D92F
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/xNtGHv1YLmz0baQ6fFAsVkQIQLw.roa
Signing time: Fri 04 Apr 2025 12:37:49 +0000
ROA not before: Fri 04 Apr 2025 12:37:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48241
IP address blocks: 91.210.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:ce:b8:7d:39:f1:04:ce:a6:be:7e:06:84:b9:d9:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Apr 4 12:37:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c4db461efd582e6cf46da43a7c502c56440840bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:de:d8:48:e3:54:48:9f:b8:de:0d:60:ea:56:
d2:a5:92:c5:6b:5e:aa:07:f3:e6:1d:68:79:cc:db:
d0:fe:12:b0:68:d0:35:2a:4d:bc:59:a3:ee:72:04:
da:59:0a:d9:88:1a:df:0b:a4:b9:46:57:c4:a7:1d:
90:a9:c1:97:6c:81:eb:37:8e:b6:2f:21:38:80:ba:
27:f3:80:35:1c:e6:1c:45:b9:85:8e:d3:16:03:3e:
bf:2a:da:cc:4a:bc:12:b3:8b:d6:09:bd:1b:eb:ef:
1e:f6:64:e4:61:39:1c:e5:d1:74:e1:ce:0d:09:4c:
ae:c1:44:48:1c:b5:36:f1:ad:0e:e1:9e:e3:14:9c:
72:d7:d6:7c:4f:75:1a:b4:32:bb:6a:49:d5:90:30:
b7:4a:ee:48:1d:de:ec:2c:02:ce:ce:00:0a:99:7d:
65:77:4f:8f:7c:2d:c5:6f:4f:10:36:04:cc:78:f7:
99:77:d1:1f:8c:fc:3f:bd:19:be:b5:d9:7b:b6:4b:
2a:ba:80:7c:25:45:b6:2a:f7:d6:fa:29:ef:c5:6f:
e7:e0:58:77:a6:ad:08:4c:88:cc:f2:06:cd:f1:74:
a1:fe:c9:53:8a:8d:5e:ae:62:a4:fb:bd:e6:40:fe:
05:a6:b0:e1:8c:da:54:dd:3d:0e:7e:7e:21:80:0b:
16:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:DB:46:1E:FD:58:2E:6C:F4:6D:A4:3A:7C:50:2C:56:44:08:40:BC
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/xNtGHv1YLmz0baQ6fFAsVkQIQLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.132.0/22
Signature Algorithm: sha256WithRSAEncryption
15:0d:5a:d6:0b:df:e7:87:54:49:4a:07:53:02:87:95:fb:9e:
9f:84:f3:a5:50:4a:32:e5:bc:9d:e6:24:0c:b3:80:59:1f:fd:
f8:b2:fc:5b:fc:26:87:46:c9:41:b3:76:9f:6c:41:ed:37:ae:
0e:e8:ac:ab:5d:e2:c9:f0:4a:53:58:98:7e:4a:a3:ee:ef:8d:
d1:4c:49:a2:22:48:d3:20:be:b1:13:46:55:0c:6c:af:8d:09:
97:1d:f5:4c:7d:76:59:14:9f:bc:d5:3c:0a:88:99:a7:dc:f9:
13:64:d6:ac:87:69:3b:aa:03:b4:97:99:5a:b9:bf:8e:e9:f2:
e5:cb:6a:3c:ff:58:f1:65:9d:d0:7f:0b:b6:b6:73:12:62:9a:
51:9d:16:fd:d0:e3:c0:a3:a7:1c:11:04:8a:ce:4e:1e:ee:51:
56:07:93:c8:bb:99:75:0e:43:50:e3:ff:2c:2f:09:35:dc:55:
76:5e:26:c8:48:00:3f:e1:ff:37:7b:5b:f6:1c:73:be:4f:2e:
44:18:77:28:9d:a2:b3:76:cd:ec:a2:bd:5c:dd:59:39:a3:21:
37:d6:e8:c8:8a:e5:8c:a7:73:6e:b8:8b:39:87:97:ab:eb:34:
44:ea:ea:3e:23:3f:89:1a:ed:f0:0d:a8:eb:27:43:ac:a8:bb:
6b:38:f1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net