Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa
File: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (raw, json)
Hash identifier: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=
Subject key identifier: 70:21:A0:79:74:06:EF:0E:C9:27:45:55:B6:80:9A:A8:AD:0D:BA:4D
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 019426D8B5160876B21F4B9A1566A45EE244
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa
Signing time: Thu 02 Jan 2025 11:48:43 +0000
ROA not before: Thu 02 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42199
IP address blocks: 91.189.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:b5:16:08:76:b2:1f:4b:9a:15:66:a4:5e:e2:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Jan 2 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7021a0797406ef0ec9274555b6809aa8ad0dba4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:48:aa:fe:ec:1f:39:10:2e:83:d6:e7:0e:72:
4a:e7:41:ae:1b:ae:65:ad:55:81:5b:80:cb:26:17:
65:d3:6a:03:41:4a:24:48:c9:9a:f9:44:c6:d8:73:
7b:63:51:56:7d:49:fd:14:d7:33:4e:7e:8a:84:25:
73:30:a5:2f:b3:4c:46:d7:d9:a3:0f:9c:28:6b:d2:
c9:9a:a1:4a:36:17:ca:d9:c0:17:b4:d1:a8:e3:f3:
85:f0:06:a0:de:2a:95:07:19:56:84:e0:a3:f9:d5:
8a:a6:48:29:50:12:f7:60:2c:7b:51:1d:53:04:44:
f1:bb:e1:57:8e:c2:62:4a:d9:cc:95:76:48:c5:e6:
43:af:4a:b5:12:dc:c4:1e:bd:84:e2:ab:d9:c3:13:
25:2a:dd:2b:b2:a6:62:c3:ef:f6:85:4b:dd:50:5b:
d0:3e:1f:e6:d2:0b:c6:db:a9:ba:6d:8a:7c:d3:21:
7d:02:1d:c2:bc:4e:c9:a8:80:00:fb:14:62:f3:2f:
22:dd:bf:f2:84:2a:a2:83:de:4f:b9:82:99:6b:49:
69:9d:eb:29:9f:28:c8:2c:dc:a1:c0:10:48:25:cb:
a4:d3:8b:a7:d1:e9:aa:98:4e:e1:67:f2:d0:2c:79:
3a:e9:6b:b3:73:83:23:03:22:a3:2c:c8:d6:66:90:
7f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:21:A0:79:74:06:EF:0E:C9:27:45:55:B6:80:9A:A8:AD:0D:BA:4D
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.189.63.0/24
Signature Algorithm: sha256WithRSAEncryption
81:02:2c:c8:1a:11:a7:34:0d:96:ee:c5:ab:17:18:d9:07:c0:
ff:a8:a3:da:fb:99:b5:47:8b:cf:a1:e6:fc:03:1b:7f:96:57:
08:4f:57:d9:d7:05:13:98:ea:13:a4:57:9c:18:6d:e6:da:73:
c7:5c:6d:dd:2b:32:99:63:62:da:26:83:68:90:64:6b:fd:31:
ba:88:56:71:64:bd:44:19:76:06:eb:3d:9f:80:97:69:86:17:
84:5b:20:c6:ad:c0:5f:3c:a9:75:4b:5f:01:1f:ee:6a:a9:df:
e8:05:c8:aa:6a:83:f3:44:8f:6a:f1:fa:b1:15:21:4e:fe:30:
07:d7:54:cf:e7:12:e9:ab:ce:d0:0a:bd:52:61:5a:0e:65:3f:
6e:c2:c6:8a:e6:97:c6:d6:bd:1d:bf:84:dd:36:b1:e2:0d:0f:
bc:da:0d:7d:11:84:29:c9:e1:44:0a:70:7a:bb:8d:89:2c:cf:
4a:79:6b:90:84:c3:b2:16:15:93:6a:ec:8d:ab:90:e3:55:1b:
8c:ed:d3:c7:a7:49:d4:36:08:ef:14:75:2a:3d:9a:93:b0:e8:
2a:a1:19:4b:f2:f3:19:c6:f4:02:b6:d4:fe:3a:81:94:cd:f1:
7b:79:a1:0e:2f:d2:b2:8d:d6:69:de:85:42:e7:59:3f:47:96:
a2:31:bc:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net