Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/pqKGvQcYODMxijEGtk7mPTU_Tr0.roa
File: pqKGvQcYODMxijEGtk7mPTU_Tr0.roa (raw, json)
Hash identifier: ZlDmL3k6HQGAT39givBrII+8Db8zx8Fa+aDyGXQWZzc=
Subject key identifier: A6:A2:86:BD:07:18:38:33:31:8A:31:06:B6:4E:E6:3D:35:3F:4E:BD
Certificate issuer: /CN=2f600d291d4823835af103aad39ede05bd12c9b6
Certificate serial: 019424B325B8544FD13D73FC6EDD27A9BE0C
Authority key identifier: 2F:60:0D:29:1D:48:23:83:5A:F1:03:AA:D3:9E:DE:05:BD:12:C9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2ANKR1II4Na8QOq057eBb0SybY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/pqKGvQcYODMxijEGtk7mPTU_Tr0.roa
Signing time: Thu 02 Jan 2025 01:48:27 +0000
ROA not before: Thu 02 Jan 2025 01:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59573
IP address blocks: 91.243.160.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:25:b8:54:4f:d1:3d:73:fc:6e:dd:27:a9:be:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f600d291d4823835af103aad39ede05bd12c9b6
Validity
Not Before: Jan 2 01:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6a286bd07183833318a3106b64ee63d353f4ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:72:c8:84:63:75:ee:af:23:e2:cc:35:76:af:
6e:59:c1:44:a2:52:1b:9e:3e:da:8f:6d:05:1b:68:
06:46:b4:e5:6a:a8:16:d0:f9:d1:ea:5c:5b:bc:bd:
a8:18:89:f7:bd:8e:ff:af:66:76:59:33:71:b9:39:
6f:b4:a2:bc:a5:39:ef:b1:c3:71:88:7a:0c:8a:ca:
0e:b3:21:9c:1e:50:d8:4c:cb:11:32:cb:5e:87:4b:
e2:08:d6:e4:b7:1d:d9:70:59:8a:b1:91:33:f1:d0:
1f:e3:6d:07:de:30:9e:ee:83:07:0e:4b:bd:1e:47:
c4:17:f6:49:16:33:dc:aa:eb:18:fc:c4:82:9e:32:
f9:b2:5a:1c:cf:fa:10:bf:6a:90:5f:7c:7b:41:1f:
ff:d1:15:aa:43:eb:e3:81:22:d3:65:f5:fd:24:97:
db:69:57:88:1c:63:c6:52:d1:f2:2d:e4:76:f4:d8:
0d:35:1f:ad:25:01:33:10:54:ee:0b:39:5d:af:f4:
97:48:87:e2:95:b0:a7:33:67:92:45:65:69:7e:d6:
b2:d6:84:38:35:f1:2b:04:f8:16:b8:ca:83:0f:48:
f8:ca:a2:66:f9:fb:46:c8:8d:0c:18:d3:e5:17:cf:
a2:47:72:ef:24:3f:e2:8b:15:2d:f2:e4:b8:ab:6e:
f5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A2:86:BD:07:18:38:33:31:8A:31:06:B6:4E:E6:3D:35:3F:4E:BD
X509v3 Authority Key Identifier:
keyid:2F:60:0D:29:1D:48:23:83:5A:F1:03:AA:D3:9E:DE:05:BD:12:C9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2ANKR1II4Na8QOq057eBb0SybY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/pqKGvQcYODMxijEGtk7mPTU_Tr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/L2ANKR1II4Na8QOq057eBb0SybY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.160.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:da:1d:c6:aa:cf:ee:1b:8f:e0:52:c7:36:33:be:70:aa:b3:
21:67:fc:ca:59:e4:d9:18:55:8c:5d:57:8d:1e:b2:9d:bd:61:
73:40:eb:a9:82:83:95:86:40:6d:f8:06:fc:05:ba:5a:b7:c8:
d0:50:21:a6:10:db:25:18:ea:a8:d1:ac:b9:42:6b:e9:5a:a7:
58:a2:65:37:e9:47:4c:a0:43:fb:f0:19:cd:ea:1d:ab:55:95:
7a:4a:1e:b7:d4:12:f9:dd:41:1d:41:b0:40:39:d2:c6:51:42:
78:2f:c5:d3:ef:26:cb:e3:72:29:83:42:1d:fc:95:17:64:31:
b4:7d:b7:bf:e4:97:0e:6a:ed:e2:ed:a0:09:0e:20:e3:6d:5c:
a4:73:64:f0:b6:e2:73:25:44:1f:7e:b2:5e:43:b5:35:f5:3f:
53:45:58:7b:68:04:b7:eb:e6:6b:44:db:5e:64:4f:f9:ac:5f:
0f:a7:4c:b8:8d:f7:28:82:a7:48:1c:f5:a8:4b:9a:21:18:99:
03:45:cd:24:de:7d:64:1a:c3:2d:c5:a4:85:cc:64:c7:35:e6:
97:63:42:f8:5b:2a:a3:cf:a8:b9:76:9d:3a:fa:23:7d:6a:12:
f3:44:39:56:7a:c7:85:84:af:20:4c:be:f5:6c:c3:c6:84:c5:
fc:fa:9f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:47 2025 by rpki-client on console.sobornost.net