Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/XVIg7Iw5sXT2ZkOyT7HpZCPvnvU.roa
File: XVIg7Iw5sXT2ZkOyT7HpZCPvnvU.roa (raw, json)
Hash identifier: cDMVASSapAThOWP/FbHoF4m/68GYJdAzNjYRhh5TJ1Q=
Subject key identifier: 5D:52:20:EC:8C:39:B1:74:F6:66:43:B2:4F:B1:E9:64:23:EF:9E:F5
Certificate issuer: /CN=d38579e4c7da01df0465186236e9af27eb7312ed
Certificate serial: 01954282CD2D92BF853A86C69F8D58D94C88
Authority key identifier: D3:85:79:E4:C7:DA:01:DF:04:65:18:62:36:E9:AF:27:EB:73:12:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04V55MfaAd8EZRhiNumvJ-tzEu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/XVIg7Iw5sXT2ZkOyT7HpZCPvnvU.roa
Signing time: Wed 26 Feb 2025 13:47:03 +0000
ROA not before: Wed 26 Feb 2025 13:47:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61163
IP address blocks: 91.236.138.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:82:cd:2d:92:bf:85:3a:86:c6:9f:8d:58:d9:4c:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38579e4c7da01df0465186236e9af27eb7312ed
Validity
Not Before: Feb 26 13:47:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5d5220ec8c39b174f66643b24fb1e96423ef9ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ec:a1:51:08:99:74:89:78:44:94:fb:02:de:
71:9e:f3:c4:a7:ae:76:96:f6:8d:51:38:f3:be:24:
1e:02:bc:95:e6:0e:f5:75:c2:04:a9:c5:d0:1b:8c:
a2:5c:ca:95:11:dd:57:82:c3:e1:5d:68:77:0b:9f:
94:9f:94:91:f0:25:b4:7d:0f:a4:a2:be:e2:93:e5:
9e:39:05:55:ac:74:52:1f:86:4c:e0:fc:67:46:59:
4a:2d:c1:e2:d0:c9:7f:91:e0:4e:0d:19:c0:7d:b4:
01:10:28:45:e4:c6:47:3a:a3:e1:8b:cb:c6:7b:3b:
85:62:f8:77:91:bc:28:e8:45:97:76:b8:2b:06:50:
37:7a:20:e7:3f:31:b4:dd:8d:2d:ec:b6:d7:d1:4e:
a2:cc:aa:ed:b6:57:1d:37:f8:51:3d:04:45:bb:e2:
69:b5:58:cb:8f:b5:ca:11:1a:ac:a4:c1:8a:94:61:
e1:14:03:70:9d:5e:80:96:8b:cf:b5:c5:1f:7d:d4:
d2:79:61:0c:d7:ee:d6:1e:cd:51:9b:bd:54:50:88:
fa:35:a0:4a:f0:02:d4:df:d4:bd:d9:af:79:b5:a9:
8a:14:9e:5f:24:83:ff:eb:ae:75:f5:eb:fa:bd:27:
4b:bb:74:36:a3:23:f7:fc:38:a7:61:b3:b8:2e:c3:
3e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:52:20:EC:8C:39:B1:74:F6:66:43:B2:4F:B1:E9:64:23:EF:9E:F5
X509v3 Authority Key Identifier:
keyid:D3:85:79:E4:C7:DA:01:DF:04:65:18:62:36:E9:AF:27:EB:73:12:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04V55MfaAd8EZRhiNumvJ-tzEu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/XVIg7Iw5sXT2ZkOyT7HpZCPvnvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/04V55MfaAd8EZRhiNumvJ-tzEu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.138.0/23
Signature Algorithm: sha256WithRSAEncryption
18:68:f1:70:f1:d6:d9:f9:a6:6f:62:d9:ac:70:fb:2f:8a:39:
22:a0:5b:67:42:56:3d:a2:15:41:e3:75:58:c3:30:60:e2:09:
52:24:de:53:a9:d0:95:c4:ed:72:8a:d6:b1:d8:9b:b5:e3:15:
36:f1:01:a8:91:89:61:be:ce:8d:18:78:5f:54:19:3c:ba:ce:
50:2e:67:a3:c7:93:34:6a:dd:26:c8:65:c8:60:69:40:28:33:
ad:c8:28:d7:86:9c:b3:bf:28:c5:2b:c4:d4:d1:bf:69:c6:3b:
d6:56:a1:d9:38:01:6f:8a:17:51:87:99:c7:04:e3:15:44:b1:
ee:ec:0d:15:af:83:8e:f6:75:71:97:aa:f9:c7:e2:a1:24:a6:
b0:66:f5:6c:25:be:c2:ca:49:75:09:4b:78:b3:8b:59:00:c2:
62:2a:1b:3b:21:1a:c4:41:95:c9:dc:3e:fb:90:b2:19:38:34:
92:92:3e:81:d9:db:b1:1e:e5:62:26:03:e3:91:67:a8:da:e9:
71:e1:ae:62:f8:5d:c6:b8:a0:b8:be:0e:16:38:61:5b:f4:58:
69:55:13:c2:1f:68:b8:01:09:00:f8:90:ea:42:0c:17:27:f0:
cc:2e:e9:f2:5d:72:47:10:65:49:82:41:ff:de:c7:03:c4:29:
31:9d:a5:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:50:49 2025 by rpki-client on console.sobornost.net