Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/c2dc50-f895-4757-ae8b-afb500a4482a/1/H2ZOh9fIAnQ96NovacR2PdzVa0g.roa
File: H2ZOh9fIAnQ96NovacR2PdzVa0g.roa (raw, json)
Hash identifier: +nBuIb1Jhz2syXSr6RgoJwf6cbGP9SV27ZeU9ljDCeA=
Subject key identifier: 1F:66:4E:87:D7:C8:02:74:3D:E8:DA:2F:69:C4:76:3D:DC:D5:6B:48
Certificate issuer: /CN=09d4773bb43db6b29e87de02e3653fa7d8f26f65
Certificate serial: 019528988671721BF63364BF315571FC6DC0
Authority key identifier: 09:D4:77:3B:B4:3D:B6:B2:9E:87:DE:02:E3:65:3F:A7:D8:F2:6F:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CdR3O7Q9trKeh94C42U_p9jyb2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/c2dc50-f895-4757-ae8b-afb500a4482a/1/H2ZOh9fIAnQ96NovacR2PdzVa0g.roa
Signing time: Fri 21 Feb 2025 13:00:39 +0000
ROA not before: Fri 21 Feb 2025 13:00:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56713
IP address blocks: 91.226.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:28:98:86:71:72:1b:f6:33:64:bf:31:55:71:fc:6d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09d4773bb43db6b29e87de02e3653fa7d8f26f65
Validity
Not Before: Feb 21 13:00:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f664e87d7c802743de8da2f69c4763ddcd56b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:77:43:db:d0:c9:eb:98:af:df:cd:66:bc:6e:
3c:fa:ed:09:03:2f:5f:f6:67:2c:35:2a:de:42:52:
e0:1b:de:90:2f:b2:cb:4e:4e:94:4b:54:11:fb:86:
a6:37:89:e9:c7:2b:38:7f:ec:b3:d9:4b:50:7a:8c:
4a:7d:f6:8b:06:3c:67:12:27:36:0e:1b:2c:a9:78:
bf:f1:37:21:8f:77:b6:f7:72:d7:41:b2:e3:9a:50:
d3:bc:80:86:f3:54:a7:a2:36:a9:95:d0:ae:17:37:
87:a8:d2:ee:ab:f5:92:b1:bc:90:b3:a9:98:d6:da:
91:b5:1f:f7:d3:c9:d7:ce:c8:ca:e7:42:b5:37:d2:
25:97:93:40:8a:b5:61:c3:7b:fc:94:45:d7:f6:3f:
12:3f:2c:02:1e:0c:4f:89:88:54:7a:56:3b:b4:e1:
8b:a3:bb:8a:86:bb:9b:1c:1b:70:e8:83:e4:a3:2c:
c6:02:d0:99:2f:24:fb:af:f8:c3:c6:31:fc:62:c1:
1c:3c:ff:49:5c:fa:c2:d9:f8:1a:46:84:28:96:54:
c9:a5:16:4f:0d:98:da:0a:2d:3c:cc:41:0e:c2:42:
5a:1e:bd:e0:1e:50:2f:12:96:a3:15:66:4c:ff:04:
eb:61:d8:7a:65:5b:f0:38:c3:18:ff:ba:ad:89:d5:
40:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:66:4E:87:D7:C8:02:74:3D:E8:DA:2F:69:C4:76:3D:DC:D5:6B:48
X509v3 Authority Key Identifier:
keyid:09:D4:77:3B:B4:3D:B6:B2:9E:87:DE:02:E3:65:3F:A7:D8:F2:6F:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CdR3O7Q9trKeh94C42U_p9jyb2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/c2dc50-f895-4757-ae8b-afb500a4482a/1/H2ZOh9fIAnQ96NovacR2PdzVa0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/c2dc50-f895-4757-ae8b-afb500a4482a/1/CdR3O7Q9trKeh94C42U_p9jyb2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.251.0/24
Signature Algorithm: sha256WithRSAEncryption
03:c7:1a:2f:39:50:f7:5c:a3:49:d2:dc:78:a9:cf:0c:07:83:
99:be:07:30:bc:3c:2b:8f:6a:9e:e6:a3:bc:97:51:19:8a:52:
c3:b5:e0:7f:ca:34:34:b5:02:75:83:4f:93:31:ed:23:f9:9e:
6e:a9:22:80:e9:2f:cd:e8:5b:50:45:92:af:05:86:94:44:c2:
9f:06:44:31:17:11:1e:6b:e7:2c:c4:d0:b1:e8:36:82:c5:4a:
73:c3:a5:fa:da:60:68:94:b1:95:a0:5d:9c:d0:6d:07:cd:4a:
21:47:c9:c8:67:03:0c:cb:de:db:81:ec:a6:92:4c:84:ea:56:
d2:0f:98:b6:8a:3a:7e:ad:a3:88:4f:0f:97:e1:50:17:8c:56:
65:12:28:14:e3:d1:a5:6a:df:c7:8b:f7:30:a3:70:88:e1:5f:
5b:5b:b8:0d:65:a8:ea:b2:88:79:75:52:d5:29:f5:fc:6c:69:
a0:1d:f8:c9:4f:48:4d:41:d1:c4:1e:92:6e:da:fe:98:aa:6e:
94:c5:98:c0:5c:77:70:c7:37:44:1c:74:c7:ee:77:bd:0e:31:
2e:e2:e8:2f:1a:64:45:a6:cf:da:58:a9:61:59:bd:50:48:29:
27:46:bf:c5:66:15:b6:d3:e3:39:c5:b4:83:17:ae:fe:21:ee:
8a:bc:3a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:30 2025 by rpki-client on console.sobornost.net