Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/RxZdH8tJj14wo9lUz6xXNXqBRwA.roa
File: RxZdH8tJj14wo9lUz6xXNXqBRwA.roa (raw, json)
Hash identifier: 5ZzEhibv41QuiqdnfKIE7PgA9XlisOrBTAH+e4R62Ys=
Subject key identifier: 47:16:5D:1F:CB:49:8F:5E:30:A3:D9:54:CF:AC:57:35:7A:81:47:00
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 01942521A01E9D9D8D60C5F1A5BB6190F5B5
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/RxZdH8tJj14wo9lUz6xXNXqBRwA.roa
Signing time: Thu 02 Jan 2025 03:49:08 +0000
ROA not before: Thu 02 Jan 2025 03:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206953
IP address blocks: 91.150.186.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:a0:1e:9d:9d:8d:60:c5:f1:a5:bb:61:90:f5:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Jan 2 03:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47165d1fcb498f5e30a3d954cfac57357a814700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e6:79:f0:ba:98:c4:1b:ad:70:60:3f:70:69:
25:f1:22:14:9f:2d:ab:a9:41:ae:ac:7f:1f:31:9d:
c5:92:8c:88:f6:d2:c8:9c:58:88:9f:fc:a6:65:d7:
5d:1d:a5:61:66:77:20:8d:68:4c:4e:e7:82:cd:a5:
04:5d:a1:c3:8a:fd:86:c7:57:6b:0f:02:3b:9c:1d:
b6:c5:11:d7:42:aa:d2:91:4e:4a:51:cd:e9:87:01:
ae:06:e5:f1:92:f3:c6:86:3d:42:c9:b2:ea:e7:3f:
3d:ac:d4:e3:44:7b:aa:89:92:54:62:fd:29:7e:0a:
39:03:f9:5a:82:76:8b:44:be:33:58:4e:b1:5e:f3:
88:fa:50:51:47:51:07:2e:d8:49:8a:de:7c:0e:52:
2a:c9:1b:4f:5f:f0:54:a3:29:54:34:8d:32:63:bd:
ae:d8:88:41:b6:60:15:38:e9:d4:34:d1:f8:a1:e6:
67:f5:87:35:a4:2c:16:06:f2:ac:2f:4c:2e:c5:06:
c8:8c:f2:88:36:e1:16:db:b0:af:94:f0:30:fb:dc:
a0:ab:08:4a:8d:4a:13:80:23:15:66:d5:bb:ca:b7:
dd:c1:2a:00:16:07:1c:34:4f:ed:03:02:90:47:64:
cb:ea:74:03:ee:77:53:8a:65:61:cc:41:75:00:e5:
94:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:16:5D:1F:CB:49:8F:5E:30:A3:D9:54:CF:AC:57:35:7A:81:47:00
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/RxZdH8tJj14wo9lUz6xXNXqBRwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.150.186.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:bf:6d:a4:c3:ba:4f:70:77:d7:90:26:b9:f5:6c:2e:39:2c:
15:ce:bd:bb:98:f3:15:99:93:e9:48:d1:6f:b6:08:87:d1:cf:
fa:79:f6:e1:98:c4:b1:a1:39:32:66:b0:16:ff:ff:78:6e:28:
ca:8b:fb:38:ed:34:78:8f:00:db:db:5e:47:8b:ce:6e:eb:9a:
58:f5:bd:bc:39:59:f6:73:25:e4:84:76:e2:d3:81:19:42:01:
36:2a:fc:81:70:e3:82:26:ef:7c:67:7e:de:bf:d7:26:77:bf:
61:09:71:f4:73:4e:0b:b7:4d:0a:d6:50:ba:08:51:f0:65:22:
fb:1d:55:28:33:bb:c1:eb:c8:d0:14:bc:66:ae:0f:04:07:7f:
87:50:14:20:34:8f:28:b7:6d:92:c1:9f:33:53:7c:da:7c:63:
7c:d7:6b:20:c1:26:fa:90:68:4f:6c:e1:c5:b9:cc:73:01:b7:
b7:f6:17:94:77:d0:16:8e:8c:53:f0:a4:dd:80:57:77:79:c2:
77:3d:57:0c:69:db:4f:4a:b9:67:dc:5a:5c:87:83:86:94:a2:
b5:47:cd:67:da:02:37:c6:31:59:2d:f8:a0:97:12:d0:83:7d:
31:67:5e:5b:a1:e7:a9:32:4d:33:4e:96:5a:64:ef:8d:58:b2:
81:8c:b4:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:11 2025 by rpki-client on console.sobornost.net