Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/1-TZK_G6hwE-t-fU2NYP8ZvugDnw.roa
File: 1-TZK_G6hwE-t-fU2NYP8ZvugDnw.roa (raw, json)
Hash identifier: qg8DBlQriKARcHCeDE8QZVuHoTokdR4kMT39E92MHFQ=
Subject key identifier: F9:36:4A:FC:6E:A1:C0:4F:AD:F9:F5:36:35:83:FC:66:FB:A0:0E:7C
Certificate issuer: /CN=427cc552ab57dbafa4621fb5dc593a45607cfb0a
Certificate serial: 0194228DBDE827B5814894714CD5B32188DC
Authority key identifier: 42:7C:C5:52:AB:57:DB:AF:A4:62:1F:B5:DC:59:3A:45:60:7C:FB:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnzFUqtX26-kYh-13Fk6RWB8-wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/1-TZK_G6hwE-t-fU2NYP8ZvugDnw.roa
Signing time: Wed 01 Jan 2025 15:48:21 +0000
ROA not before: Wed 01 Jan 2025 15:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42636
IP address blocks: 91.192.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:bd:e8:27:b5:81:48:94:71:4c:d5:b3:21:88:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427cc552ab57dbafa4621fb5dc593a45607cfb0a
Validity
Not Before: Jan 1 15:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f9364afc6ea1c04fadf9f5363583fc66fba00e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:41:99:1b:6a:6e:a6:7a:7b:c1:ec:36:fe:10:
0b:80:a1:c9:47:fb:00:f1:95:7e:40:27:60:ed:e1:
d1:6a:de:d5:3e:3a:79:ca:aa:39:07:8b:de:42:dc:
65:24:ed:76:04:52:eb:4e:a0:10:94:ec:f7:32:7b:
0e:4e:f7:38:34:a4:6d:55:f5:ad:ed:33:ef:28:75:
1f:e2:65:9e:78:a3:1c:34:eb:4c:68:7e:0d:89:8b:
a4:ba:8b:5d:6d:93:d6:bd:13:70:59:ed:ea:25:70:
4a:6d:e7:5c:75:43:42:af:e2:04:11:b6:d3:81:f0:
6f:f3:11:ec:14:d6:78:55:60:6b:eb:b2:34:f5:0e:
ab:27:e3:d4:7c:80:bb:a4:98:41:58:27:46:d2:23:
f9:62:08:81:30:9b:63:ee:5c:47:97:86:64:06:35:
eb:91:7b:7c:6d:10:55:7f:f5:54:d9:66:58:2b:bd:
86:1d:f6:04:14:05:6d:0a:04:31:29:76:d4:ce:1c:
f3:01:b0:41:8a:fe:db:e9:01:b9:89:b6:40:ce:a3:
2a:25:69:1a:02:83:37:32:fb:27:f5:ce:7a:bb:8a:
5d:62:08:e8:38:11:25:1c:95:e4:f7:8e:4a:6e:9f:
cb:54:04:e3:44:07:cf:d2:a8:0d:8a:c7:58:8c:33:
33:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:36:4A:FC:6E:A1:C0:4F:AD:F9:F5:36:35:83:FC:66:FB:A0:0E:7C
X509v3 Authority Key Identifier:
keyid:42:7C:C5:52:AB:57:DB:AF:A4:62:1F:B5:DC:59:3A:45:60:7C:FB:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnzFUqtX26-kYh-13Fk6RWB8-wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/1-TZK_G6hwE-t-fU2NYP8ZvugDnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/QnzFUqtX26-kYh-13Fk6RWB8-wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.244.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:e9:81:b8:e0:88:c8:22:84:c3:85:0c:2e:2d:3a:fe:ce:df:
5a:51:91:13:84:6d:35:a2:41:d3:74:dd:df:e3:7d:d6:2f:df:
2b:7f:8f:f5:9f:c4:e7:86:9b:16:f7:c0:45:60:4c:c9:b3:e1:
e9:67:ac:24:73:bc:7e:c9:1f:13:71:0b:bc:29:50:ab:e4:a8:
f7:89:7d:75:48:78:f1:c8:ef:c4:03:af:d7:d1:2f:96:c5:5c:
2b:26:65:82:ca:58:fc:75:b8:79:94:06:aa:06:8e:47:03:89:
d1:6f:1d:9f:45:46:c9:87:18:e5:ee:5c:74:fb:0d:a4:01:1d:
84:7f:95:56:32:ac:d3:18:f7:18:29:15:85:ef:f9:43:73:9c:
47:e9:13:dc:08:26:62:54:92:92:d5:16:ec:0f:e8:d0:41:1a:
41:80:96:84:49:ee:c2:1e:3b:77:be:f2:ea:73:1c:f0:c9:c3:
e5:7d:d0:e6:a5:ef:b2:0d:b9:e3:1d:08:81:82:f8:66:65:7c:
be:08:5d:31:f0:dc:36:61:2a:4a:7e:83:bf:36:37:bc:37:e6:
00:f8:4f:59:a8:be:2a:d4:ef:42:a6:44:25:04:82:96:ef:80:
b9:29:96:02:85:54:4d:35:df:ea:6c:f5:43:25:db:37:d3:a7:
d8:5f:fe:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:24 2025 by rpki-client on console.sobornost.net