Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/pGhFSYKZpUat85kiXiiCd2_IqX0.roa
File: pGhFSYKZpUat85kiXiiCd2_IqX0.roa (raw, json)
Hash identifier: rRFD7qwRqqnJAuhQ1luySoQoJ9GoQlnTCcam7ZPbXJk=
Subject key identifier: A4:68:45:49:82:99:A5:46:AD:F3:99:22:5E:28:82:77:6F:C8:A9:7D
Certificate issuer: /CN=a67f1cf27426070aeda7b26053453c283fdf7537
Certificate serial: 0194228E1CF98955FAACF9B28594EA6E7913
Authority key identifier: A6:7F:1C:F2:74:26:07:0A:ED:A7:B2:60:53:45:3C:28:3F:DF:75:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pn8c8nQmBwrtp7JgU0U8KD_fdTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/pGhFSYKZpUat85kiXiiCd2_IqX0.roa
Signing time: Wed 01 Jan 2025 15:48:46 +0000
ROA not before: Wed 01 Jan 2025 15:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3242
IP address blocks: 91.207.150.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:1c:f9:89:55:fa:ac:f9:b2:85:94:ea:6e:79:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67f1cf27426070aeda7b26053453c283fdf7537
Validity
Not Before: Jan 1 15:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a46845498299a546adf399225e2882776fc8a97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c1:1f:c2:2a:04:f1:ab:b4:2d:18:4b:47:b0:
9c:4b:24:1c:e5:a6:cf:7c:22:e8:90:69:d9:8c:e6:
91:47:38:c4:93:d5:1e:4a:88:fe:da:c6:ec:f6:b1:
8a:cb:c4:c5:6e:35:ea:06:27:3a:b2:77:cb:b9:ea:
43:86:9d:84:d6:ed:f0:03:19:c3:41:0f:14:66:41:
45:f1:ab:5d:2f:71:2b:2c:c2:bc:e6:0b:4b:3d:a5:
da:1d:10:9f:8a:56:b1:16:23:57:64:79:b7:0c:e9:
2e:74:6b:32:4f:1d:cb:d2:c7:fd:8f:b0:56:42:2b:
50:83:99:3a:ae:26:6d:78:a2:20:b0:e4:e2:ae:4d:
75:d7:e8:56:f5:73:92:70:82:77:7c:0a:ea:19:ce:
5a:79:82:d4:50:ef:e8:da:64:ef:d3:65:bd:81:72:
b3:a4:5b:0d:d3:1b:12:88:5b:a9:37:42:76:aa:47:
d3:d4:30:e6:28:62:43:34:9a:8d:e1:cd:40:d4:ec:
ab:a1:f5:ff:1c:3a:fe:83:25:a4:a2:e3:5a:42:ad:
d1:1c:b9:8b:94:70:d6:b2:55:3e:a2:f3:a9:4a:c2:
56:07:b9:cb:89:9a:f4:fa:46:d7:5c:76:8d:90:d3:
f4:3e:89:cd:97:f4:b0:94:f5:3d:f3:02:e8:2e:ca:
09:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:68:45:49:82:99:A5:46:AD:F3:99:22:5E:28:82:77:6F:C8:A9:7D
X509v3 Authority Key Identifier:
keyid:A6:7F:1C:F2:74:26:07:0A:ED:A7:B2:60:53:45:3C:28:3F:DF:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pn8c8nQmBwrtp7JgU0U8KD_fdTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/pGhFSYKZpUat85kiXiiCd2_IqX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/pn8c8nQmBwrtp7JgU0U8KD_fdTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.150.0/23
Signature Algorithm: sha256WithRSAEncryption
69:36:b5:cd:f7:cb:61:53:89:a7:26:6d:a9:f4:b5:6d:b4:a3:
64:fe:12:8d:21:37:8f:23:8b:09:af:d6:4d:7c:19:af:dd:ef:
a4:23:ae:42:5e:9d:3c:2a:2c:ac:f2:ea:7b:9e:4a:59:41:dd:
a7:11:37:53:40:d2:fd:10:2c:80:1e:1d:15:79:a2:63:78:9b:
7b:8f:c5:a6:de:36:42:b3:25:a2:6c:07:33:6e:59:29:5b:03:
c7:4e:ae:58:33:32:a3:4b:e8:99:71:ed:47:84:87:23:af:ad:
3e:10:b7:e9:1d:a4:10:52:19:31:73:35:27:5f:d4:40:e7:71:
be:55:33:86:ba:bc:db:0e:4a:17:0c:2a:ba:d6:a2:61:af:cc:
4f:af:79:9f:40:5b:62:48:a1:a4:31:89:c7:3b:a2:55:cd:ce:
3e:cf:ac:24:a2:20:b5:f6:4b:e2:77:03:b7:6a:ae:dd:af:cd:
34:51:0f:f7:84:48:0a:dd:82:b7:eb:d1:d7:d7:6b:4b:94:48:
88:3b:a1:7f:63:d1:f9:3c:40:3b:04:a7:a4:ca:10:62:4a:4f:
f9:da:6e:be:0d:2a:63:e4:81:c1:a5:be:aa:77:b8:7a:02:19:
a4:a0:3e:49:a3:cf:35:9d:96:43:9d:ba:10:df:3b:b2:c5:c3:
19:bc:c9:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net