Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VCudl7eKocVwPUxaZ4Woh0MNFzs.roa
File: VCudl7eKocVwPUxaZ4Woh0MNFzs.roa (raw, json)
Hash identifier: UHPCqe6iZ86p/kCLGlUPsYCKxufJKmM7kwqOLo1Jy7w=
Subject key identifier: 54:2B:9D:97:B7:8A:A1:C5:70:3D:4C:5A:67:85:A8:87:43:0D:17:3B
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0194258FB08C032FBF9FB297F507903ABF83
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VCudl7eKocVwPUxaZ4Woh0MNFzs.roa
Signing time: Thu 02 Jan 2025 05:49:21 +0000
ROA not before: Thu 02 Jan 2025 05:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199058
IP address blocks: 91.239.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b0:8c:03:2f:bf:9f:b2:97:f5:07:90:3a:bf:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 2 05:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=542b9d97b78aa1c5703d4c5a6785a887430d173b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:52:01:b1:80:3e:5a:d8:41:0c:1c:64:46:
ae:7b:7f:6f:9c:12:a3:1a:d5:82:63:2f:f4:25:1c:
30:ae:74:c7:97:ef:3c:18:3e:6b:01:ef:e6:1f:23:
7c:60:48:26:df:94:33:18:3f:bd:9a:31:0a:ee:ad:
8a:24:85:f2:7c:94:f6:7b:1b:8e:77:9f:ee:1b:92:
9a:1f:21:3f:5d:0b:a7:dd:8b:01:ee:b3:da:3b:25:
e4:3f:22:69:55:4a:f7:e4:67:09:be:c0:ba:04:2c:
59:16:5c:a1:96:10:77:7e:d0:d8:e8:31:b2:dc:43:
da:70:eb:39:a3:fd:20:b7:21:e2:e9:44:79:ce:25:
b8:58:f8:fc:5a:60:6c:e4:d1:7a:3b:73:98:60:ca:
23:26:f0:6e:73:3b:d2:e0:83:e8:6e:8c:1f:61:98:
89:81:ea:d2:bf:de:ae:e4:60:a6:10:3f:2a:94:59:
bb:ae:d5:dc:92:a9:66:7f:a7:0d:c8:64:0f:91:e9:
43:c5:05:3b:f0:31:57:aa:76:82:4f:6d:fd:45:ff:
03:74:cc:b0:b2:96:84:ba:27:35:08:2e:c8:ba:7f:
85:7f:21:68:e1:7d:8b:ca:0d:6d:79:17:e2:a5:3c:
9c:3d:72:a1:0e:be:84:8c:4c:41:d9:87:4d:7c:1b:
89:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2B:9D:97:B7:8A:A1:C5:70:3D:4C:5A:67:85:A8:87:43:0D:17:3B
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VCudl7eKocVwPUxaZ4Woh0MNFzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.148.0/24
Signature Algorithm: sha256WithRSAEncryption
70:04:be:ab:7a:06:6b:af:31:91:8b:5d:5c:e7:8b:b9:6d:b6:
8a:01:5a:6a:f8:57:0b:7e:07:0a:d2:ed:aa:55:6d:80:2c:9b:
4e:e9:2d:61:1a:7a:ae:44:6f:78:7b:ef:c3:49:1a:e8:d2:dd:
f5:1f:0d:72:fa:ed:44:95:ea:8b:e0:7d:c7:b6:63:4e:a4:aa:
00:61:f0:38:4c:5f:f9:c9:2b:f7:71:a6:07:ba:01:d9:8f:f6:
0f:7c:7c:44:55:8e:ec:7f:a7:5a:1c:35:72:cd:1d:b9:fc:8b:
3d:d5:d9:d9:c1:09:0b:b8:bf:5f:4f:ca:1e:a4:64:87:f7:48:
f8:87:ec:ba:b8:db:76:3b:1a:56:8d:72:bc:97:33:86:fb:4d:
b0:a8:f1:fc:2e:fe:fd:56:44:39:fb:18:ba:62:fb:d0:04:9b:
1d:fe:8f:0d:37:aa:40:c3:41:dc:86:9f:52:37:15:c5:24:fa:
56:c9:b4:87:51:63:de:71:1b:33:30:21:c8:24:02:0d:20:d2:
47:68:42:41:43:00:a9:c4:96:7f:fe:8e:f7:84:5b:2d:04:e3:
16:6d:0a:ec:ab:eb:0c:d2:e7:d8:8f:48:95:ee:f6:40:5b:fe:
eb:39:87:b1:32:04:ec:ae:bb:71:23:b1:70:38:3e:fd:4c:bc:
f0:4a:96:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 21 15:04:05 2025 by rpki-client on console.sobornost.net