Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/2NiHn34JPgLn7c-RHwoRuPR6WeY.roa
File: 2NiHn34JPgLn7c-RHwoRuPR6WeY.roa (raw, json)
Hash identifier: WEVKN3PxbC0bS7JDTvFGcGPR4DkenMAV10t+2kflVIE=
Subject key identifier: D8:D8:87:9F:7E:09:3E:02:E7:ED:CF:91:1F:0A:11:B8:F4:7A:59:E6
Certificate issuer: /CN=7728052ae7d10fd2261a2248fc00d202b0f25574
Certificate serial: 0196249C3762D778C0FC725730E846728523
Authority key identifier: 77:28:05:2A:E7:D1:0F:D2:26:1A:22:48:FC:00:D2:02:B0:F2:55:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dygFKufRD9ImGiJI_ADSArDyVXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/2NiHn34JPgLn7c-RHwoRuPR6WeY.roa
Signing time: Fri 11 Apr 2025 11:28:59 +0000
ROA not before: Fri 11 Apr 2025 11:28:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39864
IP address blocks: 91.213.144.0/24 maxlen: 24
91.232.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:9c:37:62:d7:78:c0:fc:72:57:30:e8:46:72:85:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7728052ae7d10fd2261a2248fc00d202b0f25574
Validity
Not Before: Apr 11 11:28:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d8d8879f7e093e02e7edcf911f0a11b8f47a59e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7b:22:0f:8a:c0:2f:75:11:b5:df:01:5a:5e:
a4:34:d2:92:ce:a5:99:53:6d:a6:fb:b5:07:52:ce:
ea:a3:13:d7:f5:d3:7a:14:56:10:e9:52:a2:ff:85:
03:82:b9:9a:29:2e:da:3c:56:09:48:b0:7a:db:0b:
00:98:0f:43:59:75:1b:cb:39:8d:b6:90:eb:67:11:
ed:66:56:02:27:25:6f:42:42:50:99:a5:81:40:18:
12:3b:71:8b:b0:86:f8:1c:27:51:2b:0e:2a:f8:fe:
7c:a4:4f:a3:c3:cb:0a:6f:65:9e:09:31:b5:b8:5f:
89:a9:22:a0:c4:f3:a6:28:30:21:67:31:2f:7a:79:
88:82:7b:51:d5:34:bd:af:ab:c3:47:83:d0:96:4b:
4f:e7:c4:75:63:2d:db:e2:92:51:9d:9b:67:cb:41:
1b:e7:33:1f:cc:38:dc:aa:3b:fe:88:dd:70:94:fe:
f6:6d:b9:5d:d1:2d:fb:ac:f4:86:27:cc:8c:f9:7f:
ca:9a:87:3d:92:bf:27:7b:2d:6d:df:3a:e0:2b:94:
24:e4:d9:97:95:e6:ff:3a:cb:c2:cc:85:b9:ec:ad:
94:d7:ee:63:a1:1f:48:98:bc:0b:fa:7c:33:1f:c0:
c0:14:1a:1f:00:d3:52:78:72:b3:05:28:a1:fe:15:
8c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D8:87:9F:7E:09:3E:02:E7:ED:CF:91:1F:0A:11:B8:F4:7A:59:E6
X509v3 Authority Key Identifier:
keyid:77:28:05:2A:E7:D1:0F:D2:26:1A:22:48:FC:00:D2:02:B0:F2:55:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dygFKufRD9ImGiJI_ADSArDyVXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/2NiHn34JPgLn7c-RHwoRuPR6WeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/dygFKufRD9ImGiJI_ADSArDyVXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.144.0/24
91.232.93.0/24
Signature Algorithm: sha256WithRSAEncryption
54:dd:6d:e7:c4:1a:3e:78:d3:b7:ef:34:3b:b9:3c:7f:d9:0b:
8e:d3:d3:4d:bd:c5:1f:e5:be:70:45:02:d0:4a:78:5c:8e:d1:
11:db:06:52:ef:c2:dd:1e:20:a2:1d:53:dd:74:91:45:c3:e2:
10:61:48:1c:d1:20:3e:4d:bf:1b:44:48:bd:1d:b1:b6:ba:0e:
04:9d:41:8d:a0:f1:f8:7a:e4:5e:5d:bf:5a:9f:88:f5:53:63:
22:34:6f:12:71:29:07:8e:a3:2f:c3:f6:50:d1:4a:39:da:9e:
b3:a7:6d:87:eb:e6:f2:c1:94:a5:96:ae:49:f5:e6:bc:65:e9:
ea:b1:6a:a3:86:9c:cf:2f:06:1a:c1:a1:db:44:96:43:4e:75:
a9:37:54:5b:8a:9b:39:3a:37:e6:32:1f:4f:62:7b:e0:dc:21:
a2:b9:a5:c4:df:d7:c4:3b:a8:94:5a:41:1a:e3:3f:5e:6b:75:
fb:10:18:5a:ae:94:51:67:f6:a5:87:6e:6d:17:b6:09:26:94:
93:8d:70:4b:9a:84:c8:a5:c0:f0:4e:6c:05:df:86:e2:58:28:
48:e0:2b:a6:72:2e:a9:14:5d:ef:ca:f9:79:35:e9:ff:fa:2d:
92:b2:19:55:9f:55:37:06:56:00:ab:44:0a:6b:65:d4:5b:6a:
c3:0f:cb:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net