Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/db6231-3a7a-484d-8bee-3b8d8b76b7f6/1/c_ThGFbqhteIloHLISS2D3Is-B0.roa
File: c_ThGFbqhteIloHLISS2D3Is-B0.roa (raw, json)
Hash identifier: dWKCcE+KdsbeTu7uVlboc1SJNBL/6lqMpvChZHMYdHw=
Subject key identifier: 73:F4:E1:18:56:EA:86:D7:88:96:81:CB:21:24:B6:0F:72:2C:F8:1D
Certificate issuer: /CN=29ff15581bb904f1b90538742118b01f9efaa662
Certificate serial: 019423D6CCB9DE57295D30CB17730FFABE0E
Authority key identifier: 29:FF:15:58:1B:B9:04:F1:B9:05:38:74:21:18:B0:1F:9E:FA:A6:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kf8VWBu5BPG5BTh0IRiwH576pmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/db6231-3a7a-484d-8bee-3b8d8b76b7f6/1/c_ThGFbqhteIloHLISS2D3Is-B0.roa
Signing time: Wed 01 Jan 2025 21:47:47 +0000
ROA not before: Wed 01 Jan 2025 21:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60587
IP address blocks: 91.223.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:cc:b9:de:57:29:5d:30:cb:17:73:0f:fa:be:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ff15581bb904f1b90538742118b01f9efaa662
Validity
Not Before: Jan 1 21:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=73f4e11856ea86d7889681cb2124b60f722cf81d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a6:c3:f7:58:f2:69:d6:ca:d1:b7:9e:ef:93:
87:df:55:55:f5:86:34:2a:7a:33:dd:6e:95:e1:b8:
72:0b:f6:78:ff:df:a2:fe:82:8e:e0:f5:e4:ea:2c:
97:bc:7e:46:01:9c:70:54:72:d5:6a:d7:55:ef:eb:
6c:49:a8:9b:26:d6:33:d3:3b:dd:40:b0:10:07:2f:
57:e9:4d:95:51:5e:2b:40:74:a3:8d:95:48:96:55:
2d:fa:ce:37:78:f1:5d:bc:8c:41:4d:17:33:1a:5a:
f4:1f:b9:2d:55:43:e1:ee:d9:08:14:f5:6f:15:bc:
69:d0:60:45:4f:67:19:26:b2:7b:a1:53:8e:38:cb:
e1:f2:fc:a5:5d:dd:0f:9e:94:e6:f9:27:6d:ee:19:
e3:41:eb:f1:ae:0b:f5:c4:76:00:3f:75:8a:8b:10:
6a:77:1b:a7:ab:3b:0a:85:f9:bd:94:65:28:53:38:
e7:1d:26:44:69:5e:a4:08:14:1a:7e:80:19:3e:fa:
86:b0:64:ee:b1:c4:06:e8:8e:da:ee:04:c8:53:bb:
43:c8:d2:64:9e:f7:fe:a3:80:90:85:40:a1:49:e9:
a4:2b:cb:cd:2d:58:03:e2:c1:81:e2:43:38:34:01:
90:d7:c2:c6:7a:3a:d2:3a:ca:85:db:00:a3:74:06:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F4:E1:18:56:EA:86:D7:88:96:81:CB:21:24:B6:0F:72:2C:F8:1D
X509v3 Authority Key Identifier:
keyid:29:FF:15:58:1B:B9:04:F1:B9:05:38:74:21:18:B0:1F:9E:FA:A6:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kf8VWBu5BPG5BTh0IRiwH576pmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/db6231-3a7a-484d-8bee-3b8d8b76b7f6/1/c_ThGFbqhteIloHLISS2D3Is-B0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/db6231-3a7a-484d-8bee-3b8d8b76b7f6/1/Kf8VWBu5BPG5BTh0IRiwH576pmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.91.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:b7:0a:db:cb:f7:29:92:e5:9c:0f:31:51:70:9f:96:bc:c0:
b2:d5:62:5a:de:c5:23:30:04:4b:a5:6a:3d:35:90:21:3a:2b:
31:bf:ca:57:f2:1b:65:74:16:ed:28:c5:71:da:10:f3:21:d5:
5a:88:27:d2:df:59:cf:5f:89:a3:04:c1:1a:a4:39:a6:31:18:
58:11:1e:c9:13:d5:43:e8:f8:13:b1:21:ee:a7:a9:d9:78:11:
df:cd:ca:0b:08:f8:fb:d8:03:b8:17:c6:06:f0:89:22:e4:3a:
37:9d:db:e8:31:b0:9e:19:2d:d9:43:f6:6a:24:86:68:b0:6e:
a3:37:49:fc:21:f9:05:df:7b:4a:6d:40:7e:57:30:b5:28:e1:
2a:2b:e2:78:40:12:bd:78:12:7f:90:55:c6:a8:f3:cd:02:16:
44:a3:77:e2:0c:4d:ed:0d:fe:f8:f4:a0:2c:66:0f:aa:28:e1:
09:f3:25:0e:7f:cb:a6:2e:84:8a:20:2a:8b:4b:de:38:a3:bf:
64:26:43:78:98:4d:a3:a2:fd:e5:ba:6a:d7:c6:2e:16:66:2e:
68:3b:d7:25:26:95:ef:a4:3b:39:a2:10:bc:80:06:61:b1:3a:
15:f8:49:4d:fd:11:6d:da:4d:8b:90:db:82:2c:56:a3:ac:ce:
77:bf:5b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net