Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/1qWzBwVhmQ6zdPJi5w7aMEYeKoc.roa
File: 1qWzBwVhmQ6zdPJi5w7aMEYeKoc.roa (raw, json)
Hash identifier: QUUw5IgATMBX8godfHfSxzPR3Se/paZBDUtUUYMUESM=
Subject key identifier: D6:A5:B3:07:05:61:99:0E:B3:74:F2:62:E7:0E:DA:30:46:1E:2A:87
Certificate issuer: /CN=f60707f287a2309beecbb852ee40aa831b9e7866
Certificate serial: 019422FAF402BF8D733B094EB33D804BAD15
Authority key identifier: F6:07:07:F2:87:A2:30:9B:EE:CB:B8:52:EE:40:AA:83:1B:9E:78:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9gcH8oeiMJvuy7hS7kCqgxueeGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/1qWzBwVhmQ6zdPJi5w7aMEYeKoc.roa
Signing time: Wed 01 Jan 2025 17:47:39 +0000
ROA not before: Wed 01 Jan 2025 17:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43736
IP address blocks: 91.195.144.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:f4:02:bf:8d:73:3b:09:4e:b3:3d:80:4b:ad:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f60707f287a2309beecbb852ee40aa831b9e7866
Validity
Not Before: Jan 1 17:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d6a5b3070561990eb374f262e70eda30461e2a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f7:b8:5d:c8:87:50:f3:13:64:63:c4:fc:73:
0d:0f:53:ef:25:cc:fe:f2:d4:fe:9e:16:e9:7c:c7:
df:41:1a:47:4f:96:18:d8:20:61:02:9a:e2:d9:cf:
ef:a5:87:37:a4:c8:0a:e4:a1:ec:17:77:32:a3:68:
21:9a:17:b9:1d:52:68:44:99:5d:dd:6e:59:85:73:
56:cd:28:6c:1d:5d:4a:e4:d5:e3:81:76:e0:21:1c:
36:27:a1:ca:17:27:8d:0c:ff:0f:43:48:18:f4:2d:
1b:2d:9c:f1:b4:20:2a:ff:4d:c2:5f:80:11:94:5f:
f3:dc:c3:ed:f6:3d:9f:75:33:a7:8c:43:66:39:14:
3c:66:1e:c5:07:93:3f:db:e4:35:57:11:c6:f3:dc:
2d:64:2d:9c:f1:41:09:87:cf:ea:4a:52:e9:12:89:
f7:01:2d:b4:d2:2c:de:53:f2:91:2e:36:62:d7:e9:
08:68:c4:e1:5a:93:75:95:9e:f8:85:07:8e:bf:a3:
82:2f:aa:2a:5d:6a:4c:5b:b1:e3:2f:7b:f5:f8:e0:
58:eb:2b:3c:0e:5b:1f:a9:89:86:ac:2d:e4:4a:46:
b8:25:6d:fb:17:37:a9:9f:c0:be:28:c4:39:52:47:
03:a0:fe:78:0f:f4:30:1b:af:7c:b3:0a:04:00:1c:
4a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A5:B3:07:05:61:99:0E:B3:74:F2:62:E7:0E:DA:30:46:1E:2A:87
X509v3 Authority Key Identifier:
keyid:F6:07:07:F2:87:A2:30:9B:EE:CB:B8:52:EE:40:AA:83:1B:9E:78:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9gcH8oeiMJvuy7hS7kCqgxueeGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/1qWzBwVhmQ6zdPJi5w7aMEYeKoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/9gcH8oeiMJvuy7hS7kCqgxueeGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.144.0/23
Signature Algorithm: sha256WithRSAEncryption
14:8c:5b:a8:05:e5:d5:d5:c3:38:96:21:36:d1:23:38:29:ca:
f1:8f:00:f4:29:f1:96:c0:86:4e:1d:0d:1b:c7:1b:ba:56:81:
9c:5b:14:18:a6:b5:1d:9a:a2:91:46:0a:d3:8a:d3:1a:ed:5e:
2f:c3:6f:59:57:98:b4:0e:d0:bc:84:0d:7d:88:62:bf:77:52:
e6:2c:60:4d:18:4e:a9:25:d0:68:a6:e7:71:3b:01:e8:32:49:
82:8c:15:e3:03:79:03:77:d2:3b:97:02:5d:19:d8:77:a2:4f:
aa:00:92:0d:6d:42:93:6b:02:40:a3:0a:82:cf:d2:05:b1:8b:
c4:18:6d:c4:a7:31:da:aa:a7:bb:ba:3f:c9:d4:ce:69:a7:16:
f0:2e:eb:50:a0:6d:62:68:df:4f:27:9e:8b:5c:92:58:94:d2:
7e:8c:3f:fd:81:b9:af:3d:36:d1:38:0e:e9:0c:36:21:e8:bf:
4b:2d:90:3c:50:83:f4:bb:d9:37:c8:23:33:90:19:5a:f6:0d:
5a:27:aa:6a:a0:a8:27:f4:0d:a8:ea:6f:ad:0f:e7:10:3f:a6:
d4:5e:47:ab:a7:3d:90:3a:34:9b:05:9d:65:86:1f:35:d4:70:
5a:33:93:36:2f:8f:6c:0e:4a:aa:2e:60:f2:73:51:4c:02:67:
a8:11:00:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:43 2025 by rpki-client on console.sobornost.net