Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/2W6axHjolbpaH6HEq0QZHunfxqw.roa
File: 2W6axHjolbpaH6HEq0QZHunfxqw.roa (raw, json)
Hash identifier: wviH1ELaB1e2Lcqmt6CIweQCBrQQn4JSYfHt2lakpZo=
Subject key identifier: D9:6E:9A:C4:78:E8:95:BA:5A:1F:A1:C4:AB:44:19:1E:E9:DF:C6:AC
Certificate issuer: /CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Certificate serial: 0194221FB9831503EB8E6F215579AC9B6BD6
Authority key identifier: 30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/2W6axHjolbpaH6HEq0QZHunfxqw.roa
Signing time: Wed 01 Jan 2025 13:48:11 +0000
ROA not before: Wed 01 Jan 2025 13:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197441
IP address blocks: 91.208.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:b9:83:15:03:eb:8e:6f:21:55:79:ac:9b:6b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Validity
Not Before: Jan 1 13:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d96e9ac478e895ba5a1fa1c4ab44191ee9dfc6ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:60:44:8f:de:3a:78:08:4b:08:8b:0e:23:76:
aa:70:68:56:d0:cd:85:10:91:be:cd:69:df:f6:1e:
ce:00:12:85:24:5c:07:5b:e4:bf:1b:15:42:ca:ae:
63:d2:6f:49:ba:52:3c:2d:31:67:6b:67:c2:bd:42:
a8:e2:4e:36:25:f6:1e:29:14:80:d1:1c:ff:aa:b8:
29:0f:19:33:15:ba:45:aa:10:14:bf:77:cb:ad:f7:
5b:77:87:62:63:65:b9:82:4c:6f:e2:fc:39:6b:33:
47:fc:e5:8b:bc:98:15:16:c0:c6:73:aa:c5:44:6b:
d0:ed:5f:94:81:aa:dd:a5:8d:cc:42:e3:2e:14:9b:
51:56:d4:44:15:72:aa:5c:b2:34:34:95:71:bb:1d:
59:54:d9:1d:f3:b5:a5:09:db:b1:15:d4:c9:b1:5c:
c8:48:46:73:e0:28:13:f8:04:68:d5:de:01:7d:3c:
1b:56:dd:f9:9b:09:04:c8:2f:5d:3c:b3:3d:6a:16:
87:f0:45:14:23:05:0e:d6:75:79:55:01:dc:f4:92:
39:b9:30:a5:d6:df:1e:9a:92:b0:f8:d3:b2:d3:28:
6a:66:bb:f0:2e:ae:92:2e:08:05:68:66:14:d5:d8:
c6:e4:46:08:b7:40:e4:2f:cc:f8:60:b1:c0:81:f6:
be:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6E:9A:C4:78:E8:95:BA:5A:1F:A1:C4:AB:44:19:1E:E9:DF:C6:AC
X509v3 Authority Key Identifier:
keyid:30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/2W6axHjolbpaH6HEq0QZHunfxqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/MDVUbqWweQVJyguhuyo-Hbrko9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.225.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:27:12:bd:79:9e:05:71:c5:a4:7b:82:4e:27:4f:f3:7e:e8:
c1:a1:21:ae:64:f2:52:3e:59:9d:62:f5:a5:e9:83:85:32:3b:
97:72:f8:a3:97:2f:da:53:cd:07:b4:dc:50:49:0c:d1:a7:95:
5f:11:72:bc:05:1a:c9:6a:a1:3a:47:15:ca:b3:c0:5f:19:e0:
a0:2c:b6:c1:88:d0:cf:7c:88:ce:c2:15:dc:c5:cd:95:d8:6e:
45:9d:6d:9e:ea:5b:fa:49:8c:7e:27:c5:03:f4:61:b5:99:2b:
d6:08:78:28:d5:3c:43:df:41:57:a1:b8:73:5f:4d:ff:d0:62:
17:d9:07:98:76:15:c2:6a:8b:de:67:5d:5a:4a:a4:27:d7:ec:
85:8b:25:3d:17:7d:fe:88:0e:f8:11:25:66:42:0e:63:e8:bf:
8e:7d:1f:6c:f5:9e:97:ff:4a:0d:36:49:ae:af:34:ee:70:62:
aa:9c:b0:f0:4a:38:7d:9a:bd:e6:99:65:36:57:59:b0:eb:90:
b3:f3:3d:37:5a:70:ee:9b:7e:e9:d7:2a:43:67:ea:19:10:4b:
5d:46:a3:77:23:0a:ae:b3:01:98:0b:e4:df:b8:13:b3:50:36:
45:29:fe:9e:c0:7e:db:18:7c:55:45:8e:43:99:6d:f7:46:7a:
44:cf:5c:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net