Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/A6dZ28bFySvaMBhoT9jt7DSRZlg.roa
File: A6dZ28bFySvaMBhoT9jt7DSRZlg.roa (raw, json)
Hash identifier: IQKtxSZapj5DsFmIvsYPoKUBH869918mHaZPMS57YRY=
Subject key identifier: 03:A7:59:DB:C6:C5:C9:2B:DA:30:18:68:4F:D8:ED:EC:34:91:66:58
Certificate issuer: /CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294
Certificate serial: 0196164DAF7C4C0E5055AA78DFB3651FCFC7
Authority key identifier: 91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/A6dZ28bFySvaMBhoT9jt7DSRZlg.roa
Signing time: Tue 08 Apr 2025 16:48:32 +0000
ROA not before: Tue 08 Apr 2025 16:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 394432
IP address blocks: 103.86.36.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:4d:af:7c:4c:0e:50:55:aa:78:df:b3:65:1f:cf:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294
Validity
Not Before: Apr 8 16:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03a759dbc6c5c92bda3018684fd8edec34916658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:e2:2c:da:43:e9:2f:72:49:f9:e0:36:3b:4a:
90:c0:7c:09:4d:1d:be:b0:3f:0c:ce:05:cf:48:be:
76:95:14:99:86:bc:d3:3f:ad:53:bc:cb:b1:37:de:
62:79:0d:07:e9:ee:51:dc:8d:82:36:bf:61:a1:54:
d7:f9:0e:f8:e2:87:8b:d0:c8:54:29:09:19:fb:82:
6c:92:95:15:9e:26:77:04:26:b0:0d:13:65:25:1d:
d8:1d:51:f8:cd:e8:09:25:4f:e8:0f:00:0a:41:32:
d8:c6:68:74:37:c8:00:4a:7a:74:69:e1:a0:b6:98:
fc:c6:82:8e:05:7f:51:22:65:a6:5f:76:fb:03:73:
50:8f:c9:c1:13:52:a2:8f:62:c5:b9:3f:d1:06:af:
de:5e:2b:68:0c:d2:c1:0b:17:cb:47:4f:1a:22:4f:
82:eb:2e:64:ef:b7:6d:3d:1a:4f:e5:6b:a5:11:78:
db:23:a2:ca:e7:15:a3:d3:b9:66:32:b3:de:3e:eb:
7a:2c:4e:d1:ac:50:53:d0:3f:ab:ab:69:5b:0f:84:
80:aa:bd:e2:ca:56:4a:fe:4f:ba:8a:1f:63:92:71:
bf:6b:c5:c4:ae:d8:a5:99:6e:f9:59:49:6d:94:bb:
a5:6a:98:16:8b:a0:fd:f7:b2:20:3d:3e:d2:bc:1c:
59:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A7:59:DB:C6:C5:C9:2B:DA:30:18:68:4F:D8:ED:EC:34:91:66:58
X509v3 Authority Key Identifier:
keyid:91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/A6dZ28bFySvaMBhoT9jt7DSRZlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.86.36.0/23
Signature Algorithm: sha256WithRSAEncryption
96:71:07:19:be:6f:d2:68:f9:89:63:4d:b7:32:44:85:a6:13:
d5:3d:5f:da:8c:04:53:6e:5c:24:fa:2b:40:32:56:32:64:24:
04:5d:d1:ba:41:13:08:98:c2:9f:d3:87:73:89:f3:b6:7e:53:
f5:6c:ec:55:27:79:68:ae:6e:61:aa:c3:89:aa:9e:d5:dd:00:
be:00:e8:57:86:d1:d0:0d:c3:10:fd:64:a7:15:e8:ba:8d:3f:
fb:8d:f9:ee:50:a6:30:fd:5f:7a:e8:fb:9d:5a:ba:2c:90:d6:
95:c3:0f:b1:32:e7:b4:f9:c0:4f:f2:51:d9:9b:9d:3f:70:54:
dd:c0:ee:3d:c8:70:ff:2e:2f:45:b8:8d:04:7a:52:6e:7a:82:
39:dd:e3:2a:91:0e:08:9c:10:ad:51:6d:e5:3d:4d:84:9e:41:
c9:ee:35:94:03:77:1c:68:45:ed:92:4f:49:df:ab:2a:62:68:
02:e2:4e:2c:8e:05:92:7c:8b:c1:26:64:f1:1f:e3:e8:8c:12:
aa:5d:0e:0c:de:a3:3f:df:30:59:47:2d:17:03:96:39:49:3b:
cb:25:4e:26:14:1c:6b:71:57:4c:3a:d4:ec:49:8e:1a:da:3a:
6a:70:ad:1d:74:7a:ad:98:d9:e8:49:80:56:8a:c9:1c:fa:12:
27:13:0b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:30 2025 by rpki-client on console.sobornost.net