Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/nFTNuRdL8Z-Wdwlm8A1gxGSf2iE.roa
File: nFTNuRdL8Z-Wdwlm8A1gxGSf2iE.roa (raw, json)
Hash identifier: Be/+xAPsxrgz7pa9P1aEcP7attPVHrGgMu7I83eiMD8=
Subject key identifier: 9C:54:CD:B9:17:4B:F1:9F:96:77:09:66:F0:0D:60:C4:64:9F:DA:21
Certificate issuer: /CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Certificate serial: 01941FFA18A6BDE74532C74E3D319DE37229
Authority key identifier: 00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/nFTNuRdL8Z-Wdwlm8A1gxGSf2iE.roa
Signing time: Wed 01 Jan 2025 03:47:51 +0000
ROA not before: Wed 01 Jan 2025 03:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210626
IP address blocks: 91.199.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:18:a6:bd:e7:45:32:c7:4e:3d:31:9d:e3:72:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Validity
Not Before: Jan 1 03:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9c54cdb9174bf19f96770966f00d60c4649fda21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f9:1b:21:18:91:d4:a9:53:0c:c6:95:11:c5:
8d:64:c5:bc:f5:90:0e:a1:a1:33:f5:bf:7a:9a:88:
6b:cd:31:bb:d7:81:70:7c:ed:b4:d7:b2:d1:09:2c:
8c:58:82:88:bd:65:b3:f5:ee:fb:07:85:e9:99:ee:
e9:73:3b:21:95:86:50:51:bd:31:40:ec:5e:91:e6:
07:49:09:26:8b:53:bb:c2:b5:e2:33:d2:6f:54:65:
95:00:c4:96:23:c8:43:b8:c2:e9:a2:85:a9:04:b2:
f1:4c:d9:5e:25:d5:26:01:43:a7:3f:ce:45:16:a4:
47:e5:a3:36:e1:76:8c:02:05:77:61:1f:78:92:f5:
df:4e:63:78:1b:0a:05:11:49:3e:7f:91:8d:c8:cc:
ae:cc:de:b3:84:78:fd:eb:54:5a:22:4f:3b:30:17:
24:f6:14:37:ae:88:21:1c:c4:15:69:17:71:a6:44:
ee:20:d3:a0:9e:49:b7:dd:71:f7:88:67:4c:1b:17:
fb:15:87:50:e9:95:2f:59:47:c2:e0:21:2c:d7:fd:
51:32:db:ee:24:5c:c6:35:9a:9d:de:46:e6:9b:cc:
29:f8:b0:ca:6b:8a:17:31:64:4d:a7:f3:9c:05:9c:
1b:7d:99:2e:9e:9c:21:d8:24:a6:24:04:39:46:f9:
7b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:54:CD:B9:17:4B:F1:9F:96:77:09:66:F0:0D:60:C4:64:9F:DA:21
X509v3 Authority Key Identifier:
keyid:00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/nFTNuRdL8Z-Wdwlm8A1gxGSf2iE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/ABFADVSPohr4GaDG4j53pgEutek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.70.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:12:55:bf:1b:5d:df:2c:e2:11:b4:12:2e:67:33:89:4d:0a:
23:bf:bd:01:33:99:2e:dd:70:f0:46:88:69:7a:7e:5b:90:6c:
9a:b9:07:94:53:d3:81:23:01:06:1f:d1:ed:b0:09:06:63:44:
e4:c1:70:06:6f:f7:11:f1:4d:6b:29:ce:27:42:a7:0d:5d:e6:
f2:b3:f3:02:51:3b:7a:79:92:9b:a3:f0:a9:c9:6e:59:2f:9d:
4b:c4:b7:4e:5b:13:90:80:60:31:9d:88:94:1b:2d:a7:18:9f:
41:4d:ae:f5:90:43:2d:70:00:8a:cf:6f:cd:6b:92:b4:32:78:
df:cf:d9:09:55:97:1d:91:d4:c0:49:a8:53:eb:bc:77:28:d6:
a2:0d:26:76:0f:fa:8e:34:be:95:97:62:f0:1a:c2:e9:ce:37:
05:28:d7:8d:10:9a:55:4f:2c:ae:d9:b3:34:f0:c0:ed:dc:6d:
94:14:ce:49:66:5c:aa:27:3f:19:46:a1:7b:e4:f4:bf:0b:6b:
14:72:4c:39:cb:3f:79:01:86:50:03:c2:e6:5d:8b:9c:ff:4b:
98:79:f0:b6:bb:08:94:bb:6c:d9:8a:64:5d:9b:2a:52:b0:f5:
cb:74:e1:ab:96:bc:79:d9:00:e4:16:c0:4a:ba:bb:16:a4:1e:
d2:76:fc:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:32 2025 by rpki-client on console.sobornost.net