Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/uFaCHWPgxrsotozK3-PvWIlEI14.roa
File: uFaCHWPgxrsotozK3-PvWIlEI14.roa (raw, json)
Hash identifier: E71w1Kj/9g7CI68LBGPMUUdmv1Dhxwi441Gs522xPmQ=
Subject key identifier: B8:56:82:1D:63:E0:C6:BB:28:B6:8C:CA:DF:E3:EF:58:89:44:23:5E
Certificate issuer: /CN=aebf394e2f1b251c88d988a87161084580786ef5
Certificate serial: 019423D6AAA1839A05437D62923A6BA7643B
Authority key identifier: AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/uFaCHWPgxrsotozK3-PvWIlEI14.roa
Signing time: Wed 01 Jan 2025 21:47:38 +0000
ROA not before: Wed 01 Jan 2025 21:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57809
IP address blocks: 91.206.156.0/23 maxlen: 24
91.229.230.0/23 maxlen: 24
185.90.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:aa:a1:83:9a:05:43:7d:62:92:3a:6b:a7:64:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebf394e2f1b251c88d988a87161084580786ef5
Validity
Not Before: Jan 1 21:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b856821d63e0c6bb28b68ccadfe3ef588944235e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bd:86:72:78:08:73:32:3c:cd:bb:0b:9a:fd:
4d:27:39:ee:9e:61:2a:d0:5c:40:50:69:8c:f5:03:
8d:b7:41:90:12:02:42:cf:c2:5b:bd:76:d1:7d:0b:
c4:a6:e1:b3:bc:4a:6f:cd:ce:8e:9e:47:39:cc:da:
e5:25:f3:56:3a:ea:62:21:32:8c:ca:5b:51:e3:45:
09:35:18:51:48:7d:35:d6:e6:fa:de:c9:1a:f6:7e:
60:a5:51:1a:53:c1:19:b8:8a:3c:68:90:2d:e9:38:
83:8d:7b:e0:e9:9b:ef:24:25:6e:da:ba:15:c2:76:
7e:4d:69:1d:11:a6:ca:ce:df:7c:59:96:cb:20:e2:
4a:01:51:79:50:5f:ef:a1:3d:80:02:4c:d2:cf:a4:
70:90:46:d2:11:47:6c:18:fc:9f:9f:f8:b0:12:75:
87:82:e8:c9:4f:8f:3d:8e:6b:0c:a7:47:28:56:18:
31:2f:13:19:63:84:3c:eb:66:bf:99:ec:73:b0:ba:
87:ee:ff:56:a7:99:c9:da:b3:55:53:43:6c:cc:db:
1b:11:61:eb:a0:8f:df:87:d8:04:9f:8d:5d:87:55:
29:71:f4:57:71:01:27:f7:45:bb:14:08:34:a9:87:
1b:65:45:21:10:05:c3:07:aa:52:2d:76:38:66:02:
72:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:56:82:1D:63:E0:C6:BB:28:B6:8C:CA:DF:E3:EF:58:89:44:23:5E
X509v3 Authority Key Identifier:
keyid:AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/uFaCHWPgxrsotozK3-PvWIlEI14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/rr85Ti8bJRyI2YiocWEIRYB4bvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.156.0/23
91.229.230.0/23
185.90.96.0/22
Signature Algorithm: sha256WithRSAEncryption
86:36:ff:7f:81:12:2c:94:a9:d3:09:72:99:69:6d:16:3c:38:
4c:46:cd:9a:1d:15:4f:d8:cf:2a:36:3d:b7:85:25:fe:56:16:
55:af:c3:61:f5:67:ea:0e:7e:63:db:cf:4e:24:e9:b2:b5:c0:
ee:8c:f7:9d:b7:6f:7b:dd:cb:1d:51:63:9a:db:5f:b1:7c:cc:
04:92:1a:5b:22:98:c0:6a:20:77:f3:de:32:9d:f3:19:23:88:
db:c3:c7:97:e3:52:6b:03:3c:60:41:1b:42:ee:f8:ee:dc:19:
ef:46:be:19:d5:2c:24:b3:c2:aa:1e:03:ad:b3:48:b3:3a:5c:
65:bf:fe:75:2a:12:c0:36:b8:b9:28:a7:23:b6:da:1b:6e:28:
b0:dc:26:9e:bc:bc:ce:bf:a4:5d:df:a1:a9:72:57:50:52:60:
a4:df:0c:d3:e0:be:00:81:d3:6d:d6:98:b1:78:7c:b0:8d:ef:
3c:19:20:39:ba:70:0d:e0:fe:2c:83:28:fb:b7:4f:de:dc:63:
90:4a:8c:bc:16:6f:96:5b:b4:c9:74:a8:ff:2a:00:b0:0f:6c:
91:1c:68:1a:8f:cf:f7:94:a1:70:c6:fd:d3:41:8c:98:d0:11:
62:a3:6e:c2:ba:f6:f3:2b:dd:f3:35:9e:d7:5f:f0:46:85:cd:
54:76:c1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net