Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/AfwJnib3HYEEvfX22iQD4QQrJJU.roa
File: AfwJnib3HYEEvfX22iQD4QQrJJU.roa (raw, json)
Hash identifier: ZxsajNoVQaxEO2iOv8vpTbsfS52PxCBiq/kifGttXT0=
Subject key identifier: 01:FC:09:9E:26:F7:1D:81:04:BD:F5:F6:DA:24:03:E1:04:2B:24:95
Certificate issuer: /CN=e6153fcea19f1d49faf3e47e989db6bf5e6fe5a9
Certificate serial: 0194228E4075ABE455DA73A2A136CDB50E8C
Authority key identifier: E6:15:3F:CE:A1:9F:1D:49:FA:F3:E4:7E:98:9D:B6:BF:5E:6F:E5:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hU_zqGfHUn68-R-mJ22v15v5ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/AfwJnib3HYEEvfX22iQD4QQrJJU.roa
Signing time: Wed 01 Jan 2025 15:48:55 +0000
ROA not before: Wed 01 Jan 2025 15:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21470
IP address blocks: 81.17.64.0/20 maxlen: 20
81.17.76.0/24 maxlen: 24
91.102.0.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:40:75:ab:e4:55:da:73:a2:a1:36:cd:b5:0e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6153fcea19f1d49faf3e47e989db6bf5e6fe5a9
Validity
Not Before: Jan 1 15:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01fc099e26f71d8104bdf5f6da2403e1042b2495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d1:48:8c:89:0e:53:6d:c9:72:c3:4a:52:cb:
65:4d:55:9a:36:43:e7:45:55:47:8b:f2:f6:da:70:
6e:ee:e3:e1:2d:de:27:30:69:a2:03:50:18:7f:aa:
5c:2b:db:fa:80:74:a7:25:ef:c1:97:7a:40:f9:d1:
e4:0e:f7:88:db:f1:36:5c:37:5e:f9:8e:d6:1e:cd:
a6:a1:f4:ed:7f:7b:e8:b4:c4:e5:12:e2:48:f2:21:
9a:84:33:e7:ed:f0:92:a1:dc:49:5e:59:73:18:83:
4a:0d:6d:68:ce:26:e5:bd:df:f3:be:7f:64:0f:22:
a7:0e:90:22:34:3f:35:4d:16:f6:24:1a:a8:1b:ec:
6b:cb:a9:06:df:44:28:c9:29:4d:8d:7a:34:07:38:
f5:44:e2:08:d7:b1:d7:1f:fd:c9:20:c8:f0:fb:88:
2a:b7:60:84:40:49:8c:59:53:c2:8f:ea:3c:50:66:
a6:37:6b:e2:5a:01:0a:62:10:1e:e1:36:0a:b8:38:
40:d6:f5:8d:f6:4b:a9:c6:78:13:53:1c:5b:67:17:
9e:93:7d:05:ab:fb:2c:9c:ca:61:0d:fa:55:f5:c4:
6e:cc:48:f4:d0:d7:db:34:2a:44:fe:0c:f5:48:8c:
a9:68:1b:80:00:aa:b9:5f:db:c7:9d:c4:1c:2f:70:
48:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FC:09:9E:26:F7:1D:81:04:BD:F5:F6:DA:24:03:E1:04:2B:24:95
X509v3 Authority Key Identifier:
keyid:E6:15:3F:CE:A1:9F:1D:49:FA:F3:E4:7E:98:9D:B6:BF:5E:6F:E5:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hU_zqGfHUn68-R-mJ22v15v5ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/AfwJnib3HYEEvfX22iQD4QQrJJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/5hU_zqGfHUn68-R-mJ22v15v5ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.64.0/20
91.102.0.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:37:1e:25:09:9d:69:ff:4e:31:d7:04:54:d7:e3:90:07:60:
d4:0f:7e:12:ac:71:ff:31:b8:c1:06:47:05:30:5a:b6:0e:68:
4f:b7:73:68:f2:0b:02:d8:02:71:00:c2:97:00:6b:9c:0c:2c:
8c:8e:bd:f5:29:c2:91:97:20:1a:99:9f:04:65:6f:1b:b1:93:
ed:e2:07:b9:5d:d7:7b:5e:19:c8:a2:b5:e1:fa:ed:ea:01:e8:
94:3e:13:3c:59:14:d5:bc:50:69:32:4c:e3:e8:34:9d:ee:28:
9e:47:71:da:fa:9e:fc:44:1a:c0:76:23:7a:71:97:06:01:a5:
fa:4c:37:37:8e:ea:d3:1c:da:5c:ca:f7:72:2f:7d:20:4f:d3:
09:ac:4d:d7:97:65:c3:29:99:c9:e7:b1:e0:cb:97:da:f9:07:
7f:07:b5:cc:f0:ba:1f:a2:87:20:21:cf:8f:b2:58:9e:86:a6:
04:3b:0d:f9:f2:55:54:b1:8f:93:00:cf:2d:98:30:00:94:e7:
3f:3f:e0:bd:c6:75:17:c4:9d:f2:6a:45:62:53:47:12:ec:7d:
95:a0:e0:f3:9c:88:a4:1a:ab:d3:d7:0c:14:98:5e:09:4a:23:
53:2a:f3:7e:10:6e:ea:9a:d3:4a:a9:27:ad:5e:71:a1:78:6a:
79:d1:00:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net