Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/tGJE2d6hM7PTPSCvgtk22KbU7b4.roa
File: tGJE2d6hM7PTPSCvgtk22KbU7b4.roa (raw, json)
Hash identifier: TkB6MrgZCPcmJeaD/5NEZFHetmMOK3giH9sW5hRUisM=
Subject key identifier: B4:62:44:D9:DE:A1:33:B3:D3:3D:20:AF:82:D9:36:D8:A6:D4:ED:BE
Certificate issuer: /CN=46d713ada8dabcf77681c0ca42d9969e447c8ea7
Certificate serial: 0194470E7B972A460D7F06330C1C49A8A11F
Authority key identifier: 46:D7:13:AD:A8:DA:BC:F7:76:81:C0:CA:42:D9:96:9E:44:7C:8E:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RtcTrajavPd2gcDKQtmWnkR8jqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/tGJE2d6hM7PTPSCvgtk22KbU7b4.roa
Signing time: Wed 08 Jan 2025 17:55:19 +0000
ROA not before: Wed 08 Jan 2025 17:55:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64267
IP address blocks: 91.209.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:47:0e:7b:97:2a:46:0d:7f:06:33:0c:1c:49:a8:a1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46d713ada8dabcf77681c0ca42d9969e447c8ea7
Validity
Not Before: Jan 8 17:55:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b46244d9dea133b3d33d20af82d936d8a6d4edbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d5:80:85:9b:f8:53:c1:ec:11:41:ac:7d:ba:
99:79:92:79:0f:47:1a:27:03:c8:cb:ac:7e:db:7f:
45:b6:30:1e:31:95:83:88:81:fc:cc:38:fd:b1:ef:
da:67:30:5c:8f:8a:49:c2:14:a5:6c:e7:be:2c:f8:
b2:5e:bc:f9:a5:a4:3e:d9:bd:a5:53:3c:45:8b:07:
7b:e2:fe:bf:7c:fa:1d:0f:d8:0b:8c:ba:c4:a9:07:
bd:54:4b:10:75:92:0b:90:7a:00:32:a4:ec:eb:e2:
86:23:8b:16:ab:76:94:71:43:a9:6b:4f:22:fd:ce:
35:0d:7b:90:a3:b7:f8:fa:9f:11:35:89:11:ff:be:
5e:84:56:fc:85:64:10:e5:dc:00:4b:7d:c3:0d:4c:
84:c2:39:bb:1c:68:db:1c:97:cc:c5:5e:79:eb:74:
7a:07:43:38:6c:6b:c8:0a:0c:d7:02:f4:54:1b:6d:
66:e4:41:c6:4c:17:b2:58:f3:f2:f0:31:36:10:11:
9f:c4:2f:f5:41:08:10:88:e4:15:2a:70:fc:fc:ce:
db:b1:da:69:2b:02:d2:37:85:8c:4d:ba:b0:95:1b:
88:6c:18:4b:6d:77:f7:bb:32:21:45:28:88:73:5b:
b2:5f:7c:de:f8:66:25:fb:85:f0:00:91:8d:78:cb:
47:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:62:44:D9:DE:A1:33:B3:D3:3D:20:AF:82:D9:36:D8:A6:D4:ED:BE
X509v3 Authority Key Identifier:
keyid:46:D7:13:AD:A8:DA:BC:F7:76:81:C0:CA:42:D9:96:9E:44:7C:8E:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RtcTrajavPd2gcDKQtmWnkR8jqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/tGJE2d6hM7PTPSCvgtk22KbU7b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/RtcTrajavPd2gcDKQtmWnkR8jqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.58.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e8:3f:fe:62:6a:25:18:2b:3d:16:dd:60:19:ed:35:08:c5:
cc:52:06:b5:3a:c4:a9:bd:ac:68:d2:40:f4:e3:8c:30:61:2e:
f2:81:99:a9:2c:e2:97:96:de:89:e6:8e:2b:d9:0d:48:9e:8e:
b1:ab:3c:5b:93:8b:36:d4:c3:5a:aa:3e:37:9a:cb:3c:9e:d4:
09:f9:9f:9d:af:90:7b:34:41:17:f2:e1:51:ac:8f:23:5a:72:
83:1b:f2:00:25:26:ed:9a:bf:e8:02:12:92:5d:03:0e:79:fc:
a4:97:5f:5a:3f:f2:19:35:47:d2:f1:8c:5b:36:ab:44:32:9a:
6a:c6:a9:41:36:6b:09:61:23:a1:a8:0a:00:3c:da:ac:c3:ef:
14:de:eb:af:64:cf:0d:32:82:76:53:51:59:31:6b:51:e4:50:
e7:f6:21:2c:db:7e:66:51:45:35:84:1b:39:c8:51:93:34:2b:
c4:c5:91:54:0b:7e:a7:53:64:26:fa:ee:b1:33:70:d4:84:de:
ec:30:8f:4c:4c:a7:2d:b8:41:85:ae:ef:13:ce:f4:80:e1:c0:
7e:90:43:61:c5:f4:4d:d7:e7:99:fd:24:12:9b:43:9c:dc:0a:
e2:f8:ed:39:0c:1d:92:fd:5a:80:59:ee:91:4c:17:44:18:0f:
b2:7b:d1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:54:09 2025 by rpki-client on console.sobornost.net