Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/uFhGxvFPYDvb2v140YiHipd78V8.roa
File: uFhGxvFPYDvb2v140YiHipd78V8.roa (raw, json)
Hash identifier: UAbeVGlliINlNYidgR2wj1fJ9xz6RHolZocdGOJb52Y=
Subject key identifier: B8:58:46:C6:F1:4F:60:3B:DB:DA:FD:78:D1:88:87:8A:97:7B:F1:5F
Certificate issuer: /CN=b498c97b14c374a52833db6a4007b54b4662c5a9
Certificate serial: 019506F39A99B41C52282C62C4C6BAC4072C
Authority key identifier: B4:98:C9:7B:14:C3:74:A5:28:33:DB:6A:40:07:B5:4B:46:62:C5:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJjJexTDdKUoM9tqQAe1S0Zixak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/uFhGxvFPYDvb2v140YiHipd78V8.roa
Signing time: Sat 15 Feb 2025 00:13:02 +0000
ROA not before: Sat 15 Feb 2025 00:13:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209000
IP address blocks: 91.196.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:06:f3:9a:99:b4:1c:52:28:2c:62:c4:c6:ba:c4:07:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b498c97b14c374a52833db6a4007b54b4662c5a9
Validity
Not Before: Feb 15 00:13:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b85846c6f14f603bdbdafd78d188878a977bf15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:c0:d7:05:ba:59:d9:0b:98:c5:ad:7b:c0:
70:36:67:5b:6d:a5:18:24:73:38:13:cc:99:93:1e:
56:fc:7e:63:bd:f9:3c:ef:24:90:7d:ff:c8:b5:cd:
a6:ca:41:53:60:b6:bf:c5:0d:82:3c:d7:77:3b:74:
1b:e4:94:22:ab:69:88:24:23:bd:52:9c:15:f2:e9:
f1:be:b1:e8:11:d7:1b:b8:5a:72:56:71:31:98:9c:
50:4d:02:a9:94:4d:02:e5:55:2c:07:2e:7a:c1:2c:
24:da:93:99:8c:63:c8:7d:b7:bd:11:99:fe:c0:d5:
27:79:5b:80:07:fa:42:eb:f3:48:83:fc:cc:d8:b4:
71:05:cf:a8:43:46:de:97:28:01:ea:42:11:3e:21:
58:7f:19:d8:d5:68:d8:a0:b1:cd:8f:df:38:d3:be:
3b:7f:46:a9:e2:c1:25:db:99:6b:9c:92:9c:57:1b:
43:32:1e:dd:e2:6b:69:74:b2:1f:18:e6:16:d1:d2:
58:53:e8:24:b3:e7:60:b9:7b:07:16:25:94:20:5b:
c4:17:3d:41:99:e4:dd:1f:e6:73:90:6e:76:48:88:
ff:24:60:56:3a:a2:08:69:ca:bd:25:ed:2d:49:6b:
87:a6:d4:cb:71:a0:11:33:9a:52:37:67:cd:9f:43:
fc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:58:46:C6:F1:4F:60:3B:DB:DA:FD:78:D1:88:87:8A:97:7B:F1:5F
X509v3 Authority Key Identifier:
keyid:B4:98:C9:7B:14:C3:74:A5:28:33:DB:6A:40:07:B5:4B:46:62:C5:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJjJexTDdKUoM9tqQAe1S0Zixak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/uFhGxvFPYDvb2v140YiHipd78V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1470f5-c316-4fff-9c37-8654266457c6/1/tJjJexTDdKUoM9tqQAe1S0Zixak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.160.0/24
Signature Algorithm: sha256WithRSAEncryption
89:41:57:24:e4:b3:55:b2:90:52:93:c8:e7:c6:3f:bd:c5:59:
50:b7:8e:2c:a7:98:42:3b:06:27:df:00:4d:b6:d2:41:4a:76:
f1:b2:41:1e:65:ef:1f:a5:80:d9:04:a8:b8:48:88:16:4a:2f:
54:17:0c:4d:a7:f5:25:f9:12:1e:ae:10:53:18:b0:34:af:e6:
7b:0d:9d:59:97:fd:9a:10:69:2e:db:26:2c:09:fe:0a:58:66:
c7:79:d2:6b:7d:b6:a7:44:c9:ea:3f:29:61:db:10:71:12:fb:
eb:d7:ca:ae:20:7a:85:51:cf:78:85:6c:61:42:e7:d5:ae:48:
bc:3e:75:bd:4e:f9:4f:e5:09:6c:49:77:e2:59:4b:dc:36:90:
6f:8d:9a:df:41:16:28:60:45:3a:83:f7:46:fa:8a:d7:1c:c4:
61:bd:2d:93:a9:44:03:90:bd:9b:4c:84:22:c9:0e:91:a3:ef:
30:43:b7:94:90:98:ce:97:84:95:87:f2:84:cc:a8:99:ba:27:
fd:ae:26:5d:f0:4c:87:51:68:32:2e:8c:3a:40:3d:55:41:c2:
c1:22:cc:4b:82:4d:80:8a:21:fc:1c:c3:0e:6c:7c:99:15:48:
a1:08:0b:ab:e9:ad:5f:cb:92:89:2a:cd:72:72:f8:af:2f:cd:
16:e9:a6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net