Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/f636c6-10d2-4f6f-b418-50b9d52361c3/1/Pz6k83CSFf4CwoCzfq-E_4QuJkM.roa
File: Pz6k83CSFf4CwoCzfq-E_4QuJkM.roa (raw, json)
Hash identifier: Yi7bnBLtpl6BWUzAuBFtj4QFE/dVNDobJF3M3VD/k5c=
Subject key identifier: 3F:3E:A4:F3:70:92:15:FE:02:C2:80:B3:7E:AF:84:FF:84:2E:26:43
Certificate issuer: /CN=d9c91317283276937d436f4b216dcda3efbe2a88
Certificate serial: 01941F8C033E09F9C5FBB4A6560494D31690
Authority key identifier: D9:C9:13:17:28:32:76:93:7D:43:6F:4B:21:6D:CD:A3:EF:BE:2A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ckTFygydpN9Q29LIW3No---Kog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/f636c6-10d2-4f6f-b418-50b9d52361c3/1/Pz6k83CSFf4CwoCzfq-E_4QuJkM.roa
Signing time: Wed 01 Jan 2025 01:47:37 +0000
ROA not before: Wed 01 Jan 2025 01:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57693
IP address blocks: 91.217.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:03:3e:09:f9:c5:fb:b4:a6:56:04:94:d3:16:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9c91317283276937d436f4b216dcda3efbe2a88
Validity
Not Before: Jan 1 01:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f3ea4f3709215fe02c280b37eaf84ff842e2643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:78:f2:6f:b7:41:2b:48:87:a0:70:34:08:ba:
c8:46:e8:79:76:44:6b:54:90:50:5d:da:34:72:4d:
82:6d:0d:5a:de:56:b7:46:f5:a3:5c:a2:34:0a:c6:
30:ac:26:be:42:29:74:05:06:e1:64:87:4c:99:99:
9a:e0:b8:5c:d8:55:4a:7d:50:cf:f3:3f:c6:a9:e3:
6f:c7:06:d2:38:fc:8b:6e:2e:15:8d:e4:7e:61:29:
2f:70:a0:57:13:25:e7:6c:57:9e:bd:7f:27:d7:66:
bd:81:7b:d3:03:3f:c7:31:bd:f7:90:65:75:4d:0c:
0b:48:c9:c5:aa:f0:70:ae:46:4f:ce:c0:c5:cb:09:
28:f4:43:65:92:96:95:ec:12:a1:78:67:fb:91:7f:
31:08:9b:1b:a5:0c:76:7f:b3:d6:07:70:42:c6:54:
ed:d0:9f:f2:1e:0c:16:a1:e6:09:80:82:14:8f:a0:
b6:82:29:75:69:7e:af:eb:8f:26:19:0d:0c:0d:67:
3d:4c:55:da:9b:b6:f8:d7:75:45:d5:9f:15:d2:12:
ac:59:e6:93:6b:17:58:31:c5:e8:9f:47:9a:b1:f2:
4f:9e:b2:65:97:dd:14:9e:c8:f7:f0:5d:b0:f5:fb:
bf:ee:0e:e8:33:14:dc:9c:d4:d2:8a:5f:a3:4d:51:
85:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3E:A4:F3:70:92:15:FE:02:C2:80:B3:7E:AF:84:FF:84:2E:26:43
X509v3 Authority Key Identifier:
keyid:D9:C9:13:17:28:32:76:93:7D:43:6F:4B:21:6D:CD:A3:EF:BE:2A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ckTFygydpN9Q29LIW3No---Kog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/f636c6-10d2-4f6f-b418-50b9d52361c3/1/Pz6k83CSFf4CwoCzfq-E_4QuJkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/f636c6-10d2-4f6f-b418-50b9d52361c3/1/2ckTFygydpN9Q29LIW3No---Kog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.229.0/24
Signature Algorithm: sha256WithRSAEncryption
17:9b:28:c9:77:a2:39:8d:85:66:bb:0f:07:fc:ca:f9:28:55:
fe:19:c1:20:bc:10:e1:aa:ec:d6:ba:f5:05:99:0a:fc:3c:03:
90:8a:d1:d8:6e:03:c5:9b:ba:ce:9e:47:18:f3:98:94:a5:aa:
a9:db:c8:b4:77:60:3d:09:a2:a2:aa:de:58:5d:8d:a8:78:16:
85:86:19:28:2f:bc:32:1f:48:e2:53:76:39:1b:58:eb:2f:4d:
16:3d:86:8b:cb:ee:42:ab:99:51:cc:db:fa:b5:e5:bb:2a:89:
44:8f:25:40:2d:cb:1c:1c:61:ad:16:d5:86:4a:a9:27:05:cf:
76:2c:67:cd:1a:b6:74:61:77:fa:98:34:89:8f:28:ed:2f:bd:
6d:30:81:4b:a7:d9:4c:02:a1:85:27:03:4c:88:3e:4c:4c:9e:
4f:f4:c5:cc:57:a6:3a:00:a1:4b:74:f1:be:2c:50:4b:be:aa:
3f:72:c3:4c:a7:b1:13:51:0c:71:19:c6:80:e2:8a:ce:78:ae:
a5:a1:a4:ed:9a:a0:55:69:fe:73:98:d3:81:47:cc:cd:42:41:
fe:ff:7b:56:84:b9:60:a5:0a:fb:5e:d2:12:a2:f8:64:b4:8c:
30:58:47:94:f4:96:05:6f:09:7c:b8:0c:48:4d:2e:c1:a7:94:
24:aa:de:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net