Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12c712-0c6e-4fb5-90d9-c1f9158243ea/1/0e3XvmLgCCLyXX2Pnl1oUQprG1Y.roa
File: 0e3XvmLgCCLyXX2Pnl1oUQprG1Y.roa (raw, json)
Hash identifier: FMORsyXFiyuBPfP/wfzNQt83A1mlYj2dL5G6obhc0aU=
Subject key identifier: D1:ED:D7:BE:62:E0:08:22:F2:5D:7D:8F:9E:5D:68:51:0A:6B:1B:56
Certificate issuer: /CN=9e456eb39c9cc06ce71c7754a03f3f3f009281dd
Certificate serial: 01942521D640588A90A7A00351508844C6A4
Authority key identifier: 9E:45:6E:B3:9C:9C:C0:6C:E7:1C:77:54:A0:3F:3F:3F:00:92:81:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkVus5ycwGznHHdUoD8_PwCSgd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12c712-0c6e-4fb5-90d9-c1f9158243ea/1/0e3XvmLgCCLyXX2Pnl1oUQprG1Y.roa
Signing time: Thu 02 Jan 2025 03:49:22 +0000
ROA not before: Thu 02 Jan 2025 03:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44264
IP address blocks: 91.199.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:d6:40:58:8a:90:a7:a0:03:51:50:88:44:c6:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e456eb39c9cc06ce71c7754a03f3f3f009281dd
Validity
Not Before: Jan 2 03:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d1edd7be62e00822f25d7d8f9e5d68510a6b1b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:46:6e:cb:ef:37:fc:43:75:8d:62:2b:1d:02:
55:c6:48:c1:97:8f:77:2c:4f:6a:e1:66:88:60:c6:
8c:f4:80:46:8b:4c:38:3a:ae:96:3a:d6:72:03:df:
af:f2:6e:5e:12:9d:fe:ce:da:01:91:00:b7:b8:89:
c8:3d:c4:11:9c:97:d2:48:3c:e9:60:ef:49:c1:32:
74:24:71:8e:a8:ab:d9:43:e1:4c:38:90:97:d7:4f:
88:0f:3e:f4:57:0a:3f:36:97:e2:33:c0:92:36:71:
31:a2:97:68:64:55:b7:63:db:bf:58:78:86:7a:12:
d3:9a:30:1d:af:61:47:49:8d:44:b5:d8:cf:e2:9c:
18:34:58:7a:a9:10:75:bd:3e:0a:dc:be:e6:0e:16:
a7:fb:68:cf:fe:47:27:b3:aa:56:1e:d4:75:4e:9e:
c8:85:3e:8b:cb:79:43:5f:86:ac:2d:32:b2:6b:81:
d7:47:cb:49:1d:73:d7:39:a8:ca:02:a1:20:ce:51:
b2:bf:84:3a:73:d7:23:2a:86:f4:a3:8e:6f:63:b5:
76:b9:d3:dc:0d:2c:7f:a5:ec:55:29:ee:fd:24:a4:
2b:45:d1:66:f4:08:6a:dc:d8:4a:45:68:a4:5e:32:
ba:be:94:17:4a:9e:62:7a:c4:a9:a8:0a:21:98:15:
b7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:ED:D7:BE:62:E0:08:22:F2:5D:7D:8F:9E:5D:68:51:0A:6B:1B:56
X509v3 Authority Key Identifier:
keyid:9E:45:6E:B3:9C:9C:C0:6C:E7:1C:77:54:A0:3F:3F:3F:00:92:81:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkVus5ycwGznHHdUoD8_PwCSgd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12c712-0c6e-4fb5-90d9-c1f9158243ea/1/0e3XvmLgCCLyXX2Pnl1oUQprG1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12c712-0c6e-4fb5-90d9-c1f9158243ea/1/nkVus5ycwGznHHdUoD8_PwCSgd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.72.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:5c:06:17:ac:37:ab:a3:6d:d7:2c:69:b1:aa:8a:55:22:be:
71:ff:60:bd:2c:0f:15:d4:4c:17:81:6d:4c:99:eb:4f:14:ee:
9d:50:0b:8c:4c:07:00:16:14:23:c0:53:ab:ee:e6:61:79:51:
a5:e1:dd:4b:1d:06:f7:e2:81:c8:a3:87:81:09:ed:b0:53:d0:
cc:c0:16:07:f2:92:0d:18:b0:ff:19:30:38:ec:3b:30:1e:a0:
e1:e7:22:49:58:5f:03:52:6b:38:a0:95:f2:15:c7:fd:97:ef:
70:65:f8:96:63:ea:2a:f7:99:8e:85:55:b8:d3:c4:bf:eb:c3:
b1:6f:35:69:6f:41:fe:18:c4:1d:c3:df:48:1b:52:14:f3:50:
1e:32:82:1d:d4:4e:05:af:74:15:58:02:c6:ca:7c:37:d5:93:
cc:9e:52:12:15:56:b1:00:14:c9:94:2c:8f:1a:7e:b7:7c:2f:
16:1b:dc:4e:22:ca:3e:36:88:6e:5e:5a:24:ac:71:7d:2c:b6:
ed:b2:04:19:41:89:ab:7a:64:1c:38:22:d1:d5:5c:0f:60:7d:
db:b9:bf:d4:6c:1c:3d:a5:c7:ff:76:90:88:cc:90:4f:9b:ae:
e3:e7:5e:d3:d4:7d:b1:c3:50:ec:e2:0a:e5:53:5d:04:46:53:
0c:59:57:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:31 2025 by rpki-client on console.sobornost.net