Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/4fbea8-5e79-46a2-ba5c-a16d97afa643/1/Jz6Plky4nRwLQTJJcOF7jGNXrSw.roa
File: Jz6Plky4nRwLQTJJcOF7jGNXrSw.roa (raw, json)
Hash identifier: /BEPfzyhvzI281lagKYoLrBP/3LTnv9Sk0+qZpDUYPQ=
Subject key identifier: 27:3E:8F:96:4C:B8:9D:1C:0B:41:32:49:70:E1:7B:8C:63:57:AD:2C
Certificate issuer: /CN=43772b99993b0608d2782af45a22eb93c7fda63b
Certificate serial: 01942444D5A252B123D28ADA38F6175CFB0C
Authority key identifier: 43:77:2B:99:99:3B:06:08:D2:78:2A:F4:5A:22:EB:93:C7:FD:A6:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q3crmZk7BgjSeCr0WiLrk8f9pjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/4fbea8-5e79-46a2-ba5c-a16d97afa643/1/Jz6Plky4nRwLQTJJcOF7jGNXrSw.roa
Signing time: Wed 01 Jan 2025 23:47:58 +0000
ROA not before: Wed 01 Jan 2025 23:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198593
IP address blocks: 91.237.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:d5:a2:52:b1:23:d2:8a:da:38:f6:17:5c:fb:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43772b99993b0608d2782af45a22eb93c7fda63b
Validity
Not Before: Jan 1 23:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=273e8f964cb89d1c0b41324970e17b8c6357ad2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:55:f7:46:2e:c0:5d:45:b3:72:43:fd:6a:44:
c7:7e:16:a9:44:d0:06:d9:68:11:c4:7a:4f:b8:b4:
8c:bf:92:3b:72:d0:d3:90:87:4c:b3:81:99:2e:09:
bb:4a:6e:e7:ba:0e:81:1f:a3:74:ad:b0:f9:e0:cc:
1c:2d:31:f4:07:27:91:31:ff:09:1f:5b:46:98:04:
4b:6f:41:29:60:78:72:8d:c2:3f:36:5c:08:66:4f:
b0:1c:c8:a0:1e:70:4a:48:9e:fc:2a:21:af:ff:c4:
66:89:b1:48:02:d4:15:0b:81:21:f6:5b:bc:94:a2:
38:6b:d1:95:70:5c:22:d5:92:82:7c:45:43:b9:53:
5c:9c:9c:8e:e2:f8:f0:c4:ff:e1:43:7e:48:e9:d4:
f4:c7:0c:11:7b:3f:a2:40:61:38:a3:7b:63:bc:c6:
06:15:f6:2b:00:35:16:e2:c5:61:ee:d4:d7:55:b8:
21:4f:57:d8:37:44:24:96:23:70:e0:ee:f0:ba:5f:
ed:be:e6:aa:5c:13:fc:e5:6f:eb:b4:82:cb:a3:9a:
6b:c5:37:6f:58:49:bc:04:c6:16:42:6f:ed:32:c2:
d1:de:83:96:b3:6b:98:52:fd:7d:98:b1:98:c8:0a:
c1:01:14:6a:c4:c8:7f:ea:3c:43:86:b8:84:61:a4:
c4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:3E:8F:96:4C:B8:9D:1C:0B:41:32:49:70:E1:7B:8C:63:57:AD:2C
X509v3 Authority Key Identifier:
keyid:43:77:2B:99:99:3B:06:08:D2:78:2A:F4:5A:22:EB:93:C7:FD:A6:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q3crmZk7BgjSeCr0WiLrk8f9pjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/4fbea8-5e79-46a2-ba5c-a16d97afa643/1/Jz6Plky4nRwLQTJJcOF7jGNXrSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/4fbea8-5e79-46a2-ba5c-a16d97afa643/1/Q3crmZk7BgjSeCr0WiLrk8f9pjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.5.0/24
Signature Algorithm: sha256WithRSAEncryption
29:72:c0:1f:46:8b:20:51:2d:2f:2e:67:9c:9a:0d:93:e6:1f:
d2:57:9c:3e:91:4d:f9:87:a6:bc:f5:cf:66:29:28:17:33:17:
be:d4:0c:d0:dc:89:ec:a3:96:56:d2:fa:f4:21:8c:cb:6b:b0:
d8:d6:7b:11:31:73:0a:67:a8:15:f3:68:d0:dd:8e:21:72:75:
3d:6f:66:1b:36:e6:66:ac:66:d2:33:95:33:05:97:7f:03:21:
1d:0c:1e:7c:56:15:6d:c2:ad:a5:73:87:15:0c:25:42:f5:25:
b0:3e:2c:2e:fe:da:1d:5a:f4:ea:c8:d1:5f:3d:12:bb:47:41:
2d:65:5f:6a:8f:b7:db:26:f8:4b:3c:85:75:c8:ad:b2:3c:c9:
68:5c:7d:31:89:6e:d4:c4:e7:eb:d6:d1:20:88:3c:1f:ea:2b:
55:03:63:99:3c:0d:ca:cd:3e:08:27:f7:29:e8:ef:7a:95:e2:
97:da:5d:b7:20:e4:7e:9a:e1:49:97:f9:3f:f5:30:9d:27:f3:
0c:2b:cf:da:e9:c7:27:a4:13:15:64:50:f1:7e:20:d0:25:5b:
a2:8c:f8:91:c8:2f:98:42:74:be:9a:8f:b8:b8:fd:46:0f:0f:
32:a2:df:e9:b7:4d:64:6b:c7:cf:19:60:01:f8:1d:a7:29:6a:
99:d1:c6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:11 2025 by rpki-client on console.sobornost.net