Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/_iMkYM2SlDhb8BiWpSMXooueyD8.roa
File: _iMkYM2SlDhb8BiWpSMXooueyD8.roa (raw, json)
Hash identifier: S5QL6kGITU62oZ1okwVbSjZ25wXtKrDyDz3OlnPy3eo=
Subject key identifier: FE:23:24:60:CD:92:94:38:5B:F0:18:96:A5:23:17:A2:8B:9E:C8:3F
Certificate issuer: /CN=d5ee40f4589d6a11b24f7bbcc29ab9f9ae689719
Certificate serial: 0194228DF34C776827BBC6B715D1C0BDB5EF
Authority key identifier: D5:EE:40:F4:58:9D:6A:11:B2:4F:7B:BC:C2:9A:B9:F9:AE:68:97:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1e5A9FidahGyT3u8wpq5-a5olxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/_iMkYM2SlDhb8BiWpSMXooueyD8.roa
Signing time: Wed 01 Jan 2025 15:48:35 +0000
ROA not before: Wed 01 Jan 2025 15:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49321
IP address blocks: 91.196.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:f3:4c:77:68:27:bb:c6:b7:15:d1:c0:bd:b5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5ee40f4589d6a11b24f7bbcc29ab9f9ae689719
Validity
Not Before: Jan 1 15:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe232460cd9294385bf01896a52317a28b9ec83f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:29:69:fb:03:8d:a5:47:f1:a4:68:22:79:f1:
91:33:fd:de:0c:45:17:97:64:76:b4:9f:b9:ed:6f:
8e:c4:94:b4:29:03:19:ff:fd:cf:df:db:55:b9:53:
c2:69:66:cc:f2:76:4d:b5:80:76:1e:b8:65:5f:fb:
7a:e9:58:a7:d3:dc:b4:ed:64:86:7d:c2:b4:e8:40:
ec:f7:80:d7:3c:77:a3:37:09:99:01:f7:ee:44:e5:
60:f1:4b:2a:b1:79:cc:c8:b6:aa:50:18:b2:20:4c:
b8:10:d2:8e:99:c3:20:ed:b8:bd:de:51:eb:c0:6f:
d1:a9:99:72:d2:6f:bb:b7:b7:f8:a8:ec:1d:8b:68:
79:91:8b:eb:47:9b:22:f6:df:f7:be:67:37:9e:eb:
d9:84:7b:8e:c7:bc:33:88:37:bb:ad:e7:74:eb:1d:
fa:eb:48:3e:c6:50:d5:73:c2:46:89:85:59:5f:e3:
25:33:4e:72:95:5b:f9:0d:83:97:43:8b:d3:37:ca:
3e:c1:96:8b:9a:df:4d:d1:13:83:8b:39:6d:0e:bd:
38:be:ca:bf:25:cc:21:cc:1f:aa:bd:78:7e:dc:96:
a4:9b:26:c7:d3:49:14:92:7d:11:17:f5:70:07:f2:
81:32:43:58:54:35:a2:3d:47:28:6f:fe:87:ae:d8:
4e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:23:24:60:CD:92:94:38:5B:F0:18:96:A5:23:17:A2:8B:9E:C8:3F
X509v3 Authority Key Identifier:
keyid:D5:EE:40:F4:58:9D:6A:11:B2:4F:7B:BC:C2:9A:B9:F9:AE:68:97:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e5A9FidahGyT3u8wpq5-a5olxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/_iMkYM2SlDhb8BiWpSMXooueyD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/1e5A9FidahGyT3u8wpq5-a5olxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.155.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:9f:32:c9:33:91:5c:c7:12:80:4a:b2:98:6c:71:62:58:4e:
c4:ca:cc:db:d9:9c:86:12:2a:00:7b:60:38:bc:0c:59:bd:84:
40:d5:e2:7e:ff:d2:94:4c:04:94:3c:b4:f8:df:3e:20:f3:0e:
ae:2f:16:f4:52:65:1e:28:87:91:0e:f2:53:ea:b8:26:9d:44:
b6:06:5d:cd:50:fd:a1:d5:52:ca:e0:09:30:9f:99:23:74:e1:
72:23:d7:14:2e:95:b1:15:a2:9a:1d:fa:4c:17:89:ea:1c:87:
bf:a3:e2:7f:29:61:ee:31:33:5d:77:74:3f:f7:96:83:78:2e:
3e:dc:f9:e5:c4:ca:79:d3:e1:8a:ef:22:a0:cd:f5:9c:85:46:
37:ea:cb:5c:cb:73:1b:32:24:d5:f0:4d:8e:89:73:f2:f1:f6:
df:88:ec:0b:f4:68:52:18:52:ae:1d:48:06:31:b9:2e:ad:91:
58:29:91:14:24:19:a0:0b:35:2b:db:04:67:9a:d9:bc:78:99:
95:38:e7:0c:39:63:be:b8:60:f1:dd:48:31:c8:bc:dc:8a:82:
9a:f9:a3:d8:ee:e6:3c:df:f5:74:27:08:c4:87:8c:b1:41:3a:
02:1d:1c:63:db:53:1b:57:d3:48:37:20:cb:28:6b:04:e6:7f:
12:73:65:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net