Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/u7VG8MqdZGcH4gUtF3RkiJXAbmg.roa
File: u7VG8MqdZGcH4gUtF3RkiJXAbmg.roa (raw, json)
Hash identifier: 2LYlYxgKHIzR/5x4DJBXFV3DllJcEY1kUeTRo0v7v2A=
Subject key identifier: BB:B5:46:F0:CA:9D:64:67:07:E2:05:2D:17:74:64:88:95:C0:6E:68
Certificate issuer: /CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Certificate serial: 0194266B97FB1AA73AEB63BD10AB8F70E29B
Authority key identifier: AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/u7VG8MqdZGcH4gUtF3RkiJXAbmg.roa
Signing time: Thu 02 Jan 2025 09:49:32 +0000
ROA not before: Thu 02 Jan 2025 09:49:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5391
IP address blocks: 91.239.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:97:fb:1a:a7:3a:eb:63:bd:10:ab:8f:70:e2:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Validity
Not Before: Jan 2 09:49:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bbb546f0ca9d646707e2052d1774648895c06e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:04:86:e1:34:d9:5a:e4:51:92:93:41:a5:d6:
54:38:80:91:62:c7:33:0e:19:ba:39:dc:89:e2:cf:
cd:1b:96:c7:ef:79:21:97:db:0a:8b:49:f0:47:f1:
23:ca:a1:a9:91:6b:ad:b2:20:ee:b5:d8:d4:c8:d3:
1d:c1:dd:e5:ff:11:2b:d1:71:e0:eb:43:8b:28:c9:
f2:e3:86:3d:5b:d4:73:09:1b:0c:f1:2d:3e:df:55:
f8:56:72:dc:56:36:86:87:c9:26:2c:29:2d:f2:e7:
2d:01:27:42:07:cc:42:11:ad:b1:c5:d1:7a:7d:29:
78:0d:79:0a:13:6b:52:ff:1e:fd:fb:fb:1e:96:8f:
4a:73:98:fc:8a:46:02:dd:97:a0:0e:a7:c8:9c:0a:
a1:e2:0b:41:df:5a:e4:5c:21:69:c1:6f:07:51:c0:
ed:1a:d5:3c:62:d0:e6:54:f2:7e:ff:78:d5:f0:f4:
0a:60:37:9c:e3:93:80:9e:0f:22:f7:ef:26:d4:ed:
dc:6a:78:44:fe:24:03:29:77:33:d8:c7:86:47:96:
d5:14:6e:36:3b:d4:13:4d:b3:34:34:d3:f8:d8:61:
ac:ee:6f:ed:20:17:1d:f7:57:a6:cd:02:47:65:15:
fd:0f:a1:4c:a2:fe:52:a1:79:1b:40:f2:ba:71:3d:
f1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B5:46:F0:CA:9D:64:67:07:E2:05:2D:17:74:64:88:95:C0:6E:68
X509v3 Authority Key Identifier:
keyid:AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/u7VG8MqdZGcH4gUtF3RkiJXAbmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/rKL3dI_jY9xZOem4VPwAQDEw66U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a7:2f:a6:b6:f8:04:e9:c5:37:e4:4d:07:aa:fc:27:9e:38:
a9:a4:18:db:c3:bf:c0:fb:f4:e6:dc:30:6d:bc:36:28:2f:44:
c4:26:33:67:ac:e9:08:95:28:71:b1:1e:40:6a:1f:ff:18:cc:
ff:96:5c:85:64:43:c1:35:40:3b:71:59:88:2f:fb:1e:d8:88:
f0:95:2d:3b:61:6a:73:3f:02:d6:2d:1c:56:89:06:c0:d9:c0:
37:6d:a1:63:aa:12:4a:f2:c5:a4:59:ba:0a:e8:50:8e:22:f8:
d5:45:d8:ee:f5:cc:b1:f0:6d:e9:d1:89:87:d3:c0:11:7a:17:
cd:6b:bc:21:30:5a:5d:5f:da:4c:e6:a5:32:00:80:66:a9:d9:
c7:13:78:f5:3b:85:5f:d7:80:a5:90:18:ac:15:02:d6:bb:ff:
a6:05:ce:77:d4:43:ae:3b:15:f0:de:1f:04:d4:5c:7e:5e:e1:
d8:36:a1:69:ac:66:5b:e6:dc:a6:54:06:3c:5a:b0:d2:a6:70:
b3:3b:35:1a:c3:ec:94:9e:9e:1c:3b:1b:9c:da:8c:9e:9e:4f:
4e:fc:2e:47:14:d5:af:b4:cb:ca:86:dc:70:e2:51:90:bd:d8:
ac:f9:72:f9:cf:bc:aa:d6:81:70:76:a6:bb:d6:df:ab:12:df:
10:68:dd:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net