Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/12cd13-7f7b-4150-92b8-1880e7ef1db4/1/zlURg4ebmdJpRRKJcb6F2eANLUw.roa
File: zlURg4ebmdJpRRKJcb6F2eANLUw.roa (raw, json)
Hash identifier: d2+6gKcdS2njrjfKwQ9XXY+00MaMzcf8y0Aa2MydLsI=
Subject key identifier: CE:55:11:83:87:9B:99:D2:69:45:12:89:71:BE:85:D9:E0:0D:2D:4C
Certificate issuer: /CN=0eacc662cebfad9fff9c0f87400cf0cf03f547a2
Certificate serial: 0194252145073013ECD07B29777B237FA0B7
Authority key identifier: 0E:AC:C6:62:CE:BF:AD:9F:FF:9C:0F:87:40:0C:F0:CF:03:F5:47:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DqzGYs6_rZ__nA-HQAzwzwP1R6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/12cd13-7f7b-4150-92b8-1880e7ef1db4/1/zlURg4ebmdJpRRKJcb6F2eANLUw.roa
Signing time: Thu 02 Jan 2025 03:48:44 +0000
ROA not before: Thu 02 Jan 2025 03:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198421
IP address blocks: 91.234.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:45:07:30:13:ec:d0:7b:29:77:7b:23:7f:a0:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eacc662cebfad9fff9c0f87400cf0cf03f547a2
Validity
Not Before: Jan 2 03:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ce551183879b99d26945128971be85d9e00d2d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:41:fe:5d:8e:db:c5:45:40:2a:be:c7:37:d3:
2b:d7:66:b4:8a:ac:26:f6:fd:ea:e0:ba:cc:75:97:
29:8a:c4:59:af:38:10:cc:a8:fc:93:10:aa:56:83:
35:bb:c8:c5:40:46:4e:00:0d:e3:34:07:a1:9a:0c:
78:4f:5b:84:47:29:c7:98:86:d5:84:f3:04:a5:37:
53:1a:ca:cd:99:16:29:51:83:3d:34:29:2a:2e:00:
25:8a:4d:03:27:d7:aa:18:2d:46:6a:de:b2:d5:5e:
dd:82:6d:0b:3f:d1:b3:6a:ac:1f:3a:b9:4b:0d:4c:
91:d2:de:11:b2:d5:0b:05:66:f0:81:ef:50:4a:85:
4d:df:48:e7:89:2c:65:b4:2d:99:a6:5f:dc:9b:a1:
1e:ac:0c:28:aa:54:39:b6:f6:e4:2a:66:9a:16:ff:
f6:b2:af:0d:6d:6b:98:07:d0:df:0b:76:90:8f:a0:
e3:f2:de:5f:e2:79:ca:0a:67:c1:ec:96:da:85:29:
65:5e:ed:ea:fb:f7:6f:f6:85:6e:66:95:22:a1:33:
e8:db:ff:9f:cd:bf:7e:0f:c4:1c:75:fe:26:fe:a6:
6a:b5:fc:6c:e0:b8:39:f9:fe:52:f2:78:96:48:b7:
f3:ae:7e:c1:a7:24:5a:d0:e5:cf:e8:df:2e:84:8e:
38:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:55:11:83:87:9B:99:D2:69:45:12:89:71:BE:85:D9:E0:0D:2D:4C
X509v3 Authority Key Identifier:
keyid:0E:AC:C6:62:CE:BF:AD:9F:FF:9C:0F:87:40:0C:F0:CF:03:F5:47:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DqzGYs6_rZ__nA-HQAzwzwP1R6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/12cd13-7f7b-4150-92b8-1880e7ef1db4/1/zlURg4ebmdJpRRKJcb6F2eANLUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/12cd13-7f7b-4150-92b8-1880e7ef1db4/1/DqzGYs6_rZ__nA-HQAzwzwP1R6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.132.0/22
Signature Algorithm: sha256WithRSAEncryption
89:0b:3a:f4:9e:5e:ae:5b:c6:70:2f:da:9d:31:97:92:5e:83:
c4:81:7e:fb:71:9f:48:9d:46:b9:86:23:3e:35:68:5d:be:f7:
b7:e1:92:1a:3a:93:08:40:72:2b:ec:d0:2e:7c:0d:c0:53:39:
38:cf:d0:ca:b8:61:42:a8:65:88:95:9c:1c:3f:95:4b:6a:1b:
4b:74:bb:45:e5:56:df:ba:19:36:54:86:e5:a8:74:f8:08:64:
3c:98:20:d6:93:18:57:ad:94:9f:b6:cf:67:50:d6:9c:0d:f0:
10:f1:0b:fb:5f:e1:12:44:24:63:a5:37:ac:7a:56:a7:25:f1:
e8:51:9e:b4:ad:0f:50:5f:96:ab:1e:da:c9:dc:7b:79:dd:bd:
97:ae:9d:14:b3:ce:fa:3e:79:35:7e:90:a5:5b:4e:d1:5a:8e:
f6:87:98:1d:08:76:53:bd:c9:e8:45:c6:1f:56:2a:1b:af:6c:
df:08:76:c1:3c:a7:b9:3a:d5:39:42:23:f0:cf:22:62:b1:74:
90:99:d8:ce:18:66:df:5d:e8:cc:d0:94:da:61:c9:d0:46:15:
ef:c0:bb:5a:c9:f7:2d:12:ec:0c:98:6b:26:6c:26:52:8f:15:
22:bb:cf:93:0c:36:0e:44:bb:ec:86:be:1d:ee:cc:96:70:62:
c7:fc:1c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:01 2025 by rpki-client on console.sobornost.net