Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/5kpPrp0PsQaLwN-0f4M5ORyJaIo.roa
File: 5kpPrp0PsQaLwN-0f4M5ORyJaIo.roa (raw, json)
Hash identifier: sRLtBcmB7NMgyGt87xrsnTDd/kvjgxEDyhMytt8u1mY=
Subject key identifier: E6:4A:4F:AE:9D:0F:B1:06:8B:C0:DF:B4:7F:83:39:39:1C:89:68:8A
Certificate issuer: /CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Certificate serial: 019425FBFC237D1B89581B711ED9BC5808DE
Authority key identifier: 68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/5kpPrp0PsQaLwN-0f4M5ORyJaIo.roa
Signing time: Thu 02 Jan 2025 07:47:38 +0000
ROA not before: Thu 02 Jan 2025 07:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212226
IP address blocks: 91.198.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fb:fc:23:7d:1b:89:58:1b:71:1e:d9:bc:58:08:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Validity
Not Before: Jan 2 07:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e64a4fae9d0fb1068bc0dfb47f8339391c89688a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d5:9a:ea:38:12:df:6e:c0:f0:36:c9:91:55:
30:44:b3:3f:cd:52:aa:d5:b5:de:70:73:d6:ae:46:
ae:bd:60:1e:34:10:29:51:5b:83:f3:a6:c6:d7:1f:
30:bf:30:e9:a0:22:f6:1a:59:9c:95:d9:7c:11:56:
e2:93:d4:06:70:dc:64:7e:fb:98:04:b0:68:00:c9:
bc:77:19:3b:16:90:70:14:e9:e8:3b:ad:3e:c5:c1:
35:eb:08:24:45:25:7c:c6:98:92:91:0c:49:56:f2:
f3:1a:37:43:54:e3:36:a8:5b:94:42:f9:8d:e2:17:
a9:23:e2:cf:42:88:7f:af:54:2f:f6:a3:23:ce:73:
27:b9:e2:21:3b:1d:a1:0c:88:91:c4:29:41:ef:df:
08:f9:5a:56:80:ba:a2:64:14:e8:5f:aa:cb:d8:3e:
29:a4:dd:64:8a:7f:d4:b9:e6:57:78:69:a5:c4:80:
9f:82:0e:f4:65:6c:6a:0f:cc:a8:3b:ac:42:5b:00:
61:4c:14:ed:07:2b:cb:75:62:13:96:03:79:ef:99:
91:f3:78:dc:fc:ea:7d:bd:05:c6:36:57:96:8d:72:
74:89:f7:ab:76:01:20:5c:0f:59:c9:4c:56:e6:92:
de:99:23:ff:16:47:8e:4d:b4:4e:57:37:86:27:99:
b3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:4A:4F:AE:9D:0F:B1:06:8B:C0:DF:B4:7F:83:39:39:1C:89:68:8A
X509v3 Authority Key Identifier:
keyid:68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/5kpPrp0PsQaLwN-0f4M5ORyJaIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.192.0/24
Signature Algorithm: sha256WithRSAEncryption
53:1e:2f:8e:fe:a2:e8:93:d6:5c:c7:fe:d3:cb:f3:5d:da:69:
bc:00:d9:7a:68:42:c4:c8:64:36:09:fb:37:84:29:e4:cb:92:
9e:7c:15:28:12:50:1d:ab:e0:f8:c5:c6:85:a9:44:f3:0d:00:
cb:ae:6b:a0:7c:f4:ef:3a:41:6c:d8:37:56:d4:7f:89:c5:5a:
35:0d:7c:7f:f0:08:f3:e7:97:3d:87:3e:b2:c0:14:23:37:58:
a7:8c:c2:3d:a4:72:2c:e8:2f:6a:da:fb:7b:60:cf:80:cc:fb:
d2:b0:51:8c:2b:50:77:cf:45:f6:7a:21:19:f1:da:ab:3d:11:
bf:31:9e:6c:ca:cd:98:ba:58:6a:2a:83:39:e5:c7:e6:e2:f6:
d9:14:3f:63:cd:57:37:09:52:18:06:d8:65:be:4d:2d:77:2a:
c5:fa:f7:d2:80:06:0f:74:29:93:a6:86:77:b8:59:26:33:c5:
be:13:22:81:f2:f9:ac:04:c5:d0:91:58:fc:63:bf:22:a4:03:
e3:a6:b5:c4:7c:7f:13:ec:af:75:b1:56:2b:55:92:8c:f9:41:
51:10:f9:b8:ec:88:0f:71:23:8a:9d:ab:c7:3c:f5:d3:47:40:
01:69:93:dd:5f:1f:55:08:11:b7:f1:4b:43:8d:4a:c3:a8:43:
91:98:84:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:32 2025 by rpki-client on console.sobornost.net