Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/gWnW9lnMPM8qZ8END1_wzvVFr0k.roa
File: gWnW9lnMPM8qZ8END1_wzvVFr0k.roa (raw, json)
Hash identifier: c0ARRE6viXKVlOCnUB1u64Fg2irbTI2KZRKH/h8XIAg=
Subject key identifier: 81:69:D6:F6:59:CC:3C:CF:2A:67:C1:0D:0F:5F:F0:CE:F5:45:AF:49
Certificate issuer: /CN=e86adb23ca8df1e472c259f5e09cfe89ae250112
Certificate serial: 0194258F3B8645E902A8E1520D576FF31B27
Authority key identifier: E8:6A:DB:23:CA:8D:F1:E4:72:C2:59:F5:E0:9C:FE:89:AE:25:01:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6GrbI8qN8eRywln14Jz-ia4lARI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/gWnW9lnMPM8qZ8END1_wzvVFr0k.roa
Signing time: Thu 02 Jan 2025 05:48:51 +0000
ROA not before: Thu 02 Jan 2025 05:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52034
IP address blocks: 91.220.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:3b:86:45:e9:02:a8:e1:52:0d:57:6f:f3:1b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e86adb23ca8df1e472c259f5e09cfe89ae250112
Validity
Not Before: Jan 2 05:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8169d6f659cc3ccf2a67c10d0f5ff0cef545af49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d3:38:4c:aa:c4:b9:2b:58:20:e4:27:12:78:
11:47:c8:ae:d5:ef:f3:9c:52:5b:2c:61:b8:07:39:
0d:46:c2:82:14:2c:14:a7:7c:70:a2:e0:d8:29:eb:
33:02:fa:29:dc:42:49:73:a1:b9:92:86:83:60:3f:
d2:27:ce:a3:03:ea:28:fa:c7:93:4a:04:3c:03:75:
08:e2:92:64:ad:ed:36:fd:a9:71:50:65:3f:7b:3a:
85:ad:c2:d9:fa:cb:f2:0d:f1:26:5e:dc:5f:12:b6:
db:05:1d:a5:ae:fe:83:ff:49:f9:4e:00:3a:5a:fb:
ac:0c:ab:30:c4:f1:d4:99:94:7f:0b:54:cf:1f:0a:
62:44:23:a6:cf:ed:dc:97:fc:12:44:e5:ab:e0:70:
18:1a:ec:ad:ab:f7:b0:c9:f5:3b:f0:72:54:ae:da:
91:a5:b5:4e:d3:6e:fd:95:6c:b9:74:97:bb:83:a2:
f8:f5:4a:4f:ff:86:43:34:58:68:8e:db:12:3d:cc:
a2:93:db:bf:d9:f7:82:77:24:8e:0f:34:8e:db:74:
b0:17:69:19:aa:b2:68:58:e2:d8:93:f1:57:fb:a5:
2a:6b:b1:4e:5d:6b:4d:17:e4:bf:80:ac:b5:7a:bb:
e0:c9:cc:d7:f1:23:2a:f1:83:84:aa:ef:58:93:19:
5e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:69:D6:F6:59:CC:3C:CF:2A:67:C1:0D:0F:5F:F0:CE:F5:45:AF:49
X509v3 Authority Key Identifier:
keyid:E8:6A:DB:23:CA:8D:F1:E4:72:C2:59:F5:E0:9C:FE:89:AE:25:01:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6GrbI8qN8eRywln14Jz-ia4lARI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/gWnW9lnMPM8qZ8END1_wzvVFr0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/6GrbI8qN8eRywln14Jz-ia4lARI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.246.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:44:5e:4a:97:6f:b0:a0:03:f9:9b:1a:53:a4:87:14:2f:f8:
7c:0c:56:3f:27:79:56:b4:4c:41:e3:de:58:04:10:71:15:7a:
27:96:dd:1b:f6:cb:e9:c7:45:a2:3d:00:57:53:40:6e:4b:8d:
93:d0:79:27:19:87:40:8e:bb:3d:cc:be:a8:69:ab:93:e2:75:
ac:64:4a:8d:a4:1a:42:46:dc:13:cc:ec:c9:4d:05:2a:75:1b:
61:60:8d:11:7b:16:17:03:8b:cf:8a:81:5e:f5:d9:57:ea:e0:
07:0b:02:93:cf:28:82:eb:b3:dc:e9:59:3c:72:d9:87:74:5b:
cc:1a:36:68:77:bd:cb:a0:52:3c:cc:b2:98:35:22:b3:12:01:
8e:e5:ee:8b:12:72:b7:80:10:98:61:b1:21:74:52:42:72:25:
fc:c5:5a:78:08:ab:80:3e:5e:76:a1:8e:7c:f9:dc:b1:74:8c:
17:eb:a9:d8:11:0a:21:2f:55:5c:bc:c4:81:ef:49:ec:e2:7c:
89:c6:49:d2:c2:d7:21:5a:3a:a0:d9:0c:82:34:01:f2:ec:7f:
0c:1c:15:86:55:e6:9e:87:d8:45:62:2c:c4:54:1b:8e:2e:a0:
b7:34:1a:c1:0f:44:dd:07:d6:29:47:2c:5d:7c:64:bc:83:ef:
10:2a:a0:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:28 2025 by rpki-client on console.sobornost.net