Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/ppz_ybM7ufAfixh6_nP_nmJDmHo.roa
File: ppz_ybM7ufAfixh6_nP_nmJDmHo.roa (raw, json)
Hash identifier: aAOlU7YV5ghrEJxtxwQBWQh09ipgQ4F/4mZelsxTGg0=
Subject key identifier: A6:9C:FF:C9:B3:3B:B9:F0:1F:8B:18:7A:FE:73:FF:9E:62:43:98:7A
Certificate issuer: /CN=80e6205c2a210f57fb71f27f3c4baaeb53dd5e33
Certificate serial: 019424B3C9D9B3D9DDA6B07F59D902DA7EC2
Authority key identifier: 80:E6:20:5C:2A:21:0F:57:FB:71:F2:7F:3C:4B:AA:EB:53:DD:5E:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOYgXCohD1f7cfJ_PEuq61PdXjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/ppz_ybM7ufAfixh6_nP_nmJDmHo.roa
Signing time: Thu 02 Jan 2025 01:49:09 +0000
ROA not before: Thu 02 Jan 2025 01:49:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47607
IP address blocks: 91.208.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:c9:d9:b3:d9:dd:a6:b0:7f:59:d9:02:da:7e:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e6205c2a210f57fb71f27f3c4baaeb53dd5e33
Validity
Not Before: Jan 2 01:49:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a69cffc9b33bb9f01f8b187afe73ff9e6243987a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:30:4b:5d:1e:09:ef:94:5f:76:34:f6:38:08:
a4:2c:12:22:9e:d8:c1:6d:a2:b7:c2:af:95:4e:0f:
63:6d:ec:0d:50:43:fb:8f:b9:ed:dd:05:ec:59:61:
7f:e1:b5:37:ea:99:d5:c2:43:ee:39:19:21:97:c3:
84:1c:3a:df:c2:5e:e7:fa:c9:04:ec:c8:4b:ca:74:
6f:ee:67:5d:cf:59:2b:17:21:9a:2b:95:c0:ef:78:
9c:3e:ac:67:80:c6:13:29:24:f6:be:b3:15:1f:e6:
34:94:91:58:dd:e4:00:b9:14:c2:cb:00:fc:f4:3a:
f1:02:ee:8c:a1:54:94:ef:6c:fa:6d:b7:2f:db:07:
bc:a3:88:c3:aa:ca:67:22:cc:6f:e6:a5:dc:04:03:
dc:ed:da:c6:78:67:f7:63:51:d5:c4:2e:d8:04:62:
77:5e:02:df:f0:64:4e:45:00:e9:09:72:8d:85:d2:
ef:9b:2f:45:e7:09:53:e2:bf:fa:2a:d2:df:6f:a2:
a8:be:bb:3d:f3:cd:1a:a4:cc:59:c2:2f:a0:74:f5:
e4:eb:b6:c7:25:05:fa:25:a7:36:2e:a5:8a:4b:59:
24:9d:b2:4b:04:e0:07:a2:02:6f:e5:43:a9:d3:fb:
f1:2c:27:3e:c2:88:97:e1:3b:46:71:e1:d7:58:88:
53:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:9C:FF:C9:B3:3B:B9:F0:1F:8B:18:7A:FE:73:FF:9E:62:43:98:7A
X509v3 Authority Key Identifier:
keyid:80:E6:20:5C:2A:21:0F:57:FB:71:F2:7F:3C:4B:AA:EB:53:DD:5E:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOYgXCohD1f7cfJ_PEuq61PdXjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/ppz_ybM7ufAfixh6_nP_nmJDmHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/gOYgXCohD1f7cfJ_PEuq61PdXjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.70.0/24
Signature Algorithm: sha256WithRSAEncryption
10:aa:99:ba:6b:9a:e6:85:18:37:96:08:82:69:ac:b2:c0:d8:
a8:2f:95:d8:88:94:58:34:fd:cb:37:e9:87:cc:18:77:19:e1:
9d:92:48:9a:a4:3a:1a:74:9d:a8:cd:9f:f9:4b:93:6a:55:bd:
30:d0:b5:7c:dd:3d:67:92:6b:68:8c:28:73:b4:be:67:11:10:
f7:41:37:51:e9:0a:ca:7d:8d:bb:8c:79:31:5f:b6:e9:95:29:
43:44:69:c6:1e:a9:e4:d2:fe:6d:d8:48:d2:eb:2c:99:2a:40:
39:c8:85:df:9b:97:dc:39:82:52:f8:83:fa:f7:a0:9b:27:71:
25:84:fb:2b:2f:20:78:53:61:2d:9d:cf:c8:36:90:c6:3d:62:
73:7e:be:45:17:fc:c1:01:b2:f2:59:85:c8:06:e8:b1:89:c3:
07:fc:1e:f5:1f:e9:9a:78:3f:27:b0:36:2e:ce:1a:28:8b:03:
2b:87:41:15:f3:30:fc:b4:14:ce:b0:27:aa:c8:93:35:ef:12:
68:81:22:21:4f:0a:b6:e2:53:32:96:60:e4:75:eb:f1:9a:80:
73:cc:ff:e0:8c:eb:48:b9:7d:f8:5b:e5:2e:cd:b8:d8:6a:dd:
74:17:31:9c:76:e2:76:91:1a:93:48:26:a6:74:40:e2:13:f6:
d6:97:ce:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net