Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/86PqxVW6kwg2uAh7WbBcKHdg2nI.roa
File: 86PqxVW6kwg2uAh7WbBcKHdg2nI.roa (raw, json)
Hash identifier: CuXGZytdc0z3bOivO1qPbLT67lDlFMigmbZjCs37dqk=
Subject key identifier: F3:A3:EA:C5:55:BA:93:08:36:B8:08:7B:59:B0:5C:28:77:60:DA:72
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 019621A2FE562391F8B7C6FC74960EAAAF98
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/86PqxVW6kwg2uAh7WbBcKHdg2nI.roa
Signing time: Thu 10 Apr 2025 21:37:32 +0000
ROA not before: Thu 10 Apr 2025 21:37:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5511
IP address blocks: 81.22.142.0/24 maxlen: 24
81.22.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:21:a2:fe:56:23:91:f8:b7:c6:fc:74:96:0e:aa:af:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Apr 10 21:37:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f3a3eac555ba930836b8087b59b05c287760da72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ec:25:15:64:39:99:55:63:0a:e4:fc:ae:54:
be:85:53:66:47:db:0b:2b:46:65:ed:cc:0d:06:0f:
c0:90:33:c2:b7:20:7a:47:22:d0:0b:24:b5:ff:16:
8c:f4:7a:cf:3c:45:13:56:b8:e3:93:6a:82:b9:8f:
c2:a7:a0:05:f7:e7:fa:fc:0e:0f:7e:55:80:59:fe:
b5:8c:3d:f6:f1:e0:6c:40:f3:91:f2:15:37:56:4c:
8b:70:9b:6d:f5:b3:5e:8e:23:56:56:df:89:0f:80:
da:fa:18:ad:f3:a2:9b:2c:50:1d:3d:6c:d3:4e:4d:
db:c6:36:1c:b1:42:be:61:f4:3b:f5:e9:04:67:ef:
c1:65:bd:2e:5b:bf:2f:2a:aa:e2:6d:b6:73:8a:69:
36:ae:a9:e3:28:bc:22:a9:c2:5d:17:a4:08:3b:6e:
12:6b:92:68:ef:7f:af:c6:c4:14:9a:25:da:80:25:
68:58:b9:e8:15:35:a8:fc:26:e4:1f:18:7e:2e:e0:
4a:a8:7c:2a:9d:46:58:5d:4a:cc:9e:39:ff:91:63:
f1:59:41:11:8f:75:ca:34:a0:e0:25:b0:d8:8c:10:
6e:2c:54:62:c5:6b:8c:b1:95:f9:38:04:38:37:f5:
f5:8d:10:0d:82:91:dd:4b:38:0f:0b:41:3d:de:28:
b9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A3:EA:C5:55:BA:93:08:36:B8:08:7B:59:B0:5C:28:77:60:DA:72
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/86PqxVW6kwg2uAh7WbBcKHdg2nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.142.0/23
Signature Algorithm: sha256WithRSAEncryption
70:8c:f1:07:45:8a:d5:58:a1:05:84:de:d2:cb:b4:41:53:3b:
04:91:e2:35:05:c5:12:86:32:69:41:a1:d3:cf:9c:39:97:9e:
dd:a5:64:1a:05:d2:2e:81:3b:7b:60:37:9e:12:88:fe:60:02:
6e:c5:b9:b8:8d:84:2a:07:ba:2a:54:83:13:0a:5e:65:1d:b6:
4c:1f:4a:54:29:06:77:4e:0a:cf:bb:d4:b3:13:49:2d:da:6c:
20:a0:ae:48:ae:0f:fa:5b:ea:54:f4:d5:ae:8b:8c:10:23:f4:
0d:c8:40:e4:98:3c:f0:c9:e7:be:17:1f:62:ac:23:07:ca:1b:
15:ba:b4:c5:3a:6e:71:8e:58:6f:72:28:5d:fa:88:a9:78:06:
ea:5f:8d:54:5b:bc:f6:7c:3b:ed:83:b8:f3:53:7c:73:9f:65:
a4:e9:98:0f:bf:bd:70:b5:d1:ee:55:cf:24:82:31:9b:db:a6:
04:7b:bd:b9:c4:6a:b1:df:42:31:36:07:4f:a2:32:e4:18:ea:
22:f5:e3:7f:a1:92:5c:3c:0f:3a:ab:b5:5c:a5:b6:09:85:31:
8f:49:66:40:19:54:db:6b:ba:a5:e2:a3:75:0a:88:36:05:50:
ba:ab:37:6f:9f:51:5a:0d:66:c6:09:68:c2:f9:e6:50:b7:8e:
6c:67:41:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net