Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/PmM7gRkW2CCZ-q9ed87lvQrRb_Q.roa
File: PmM7gRkW2CCZ-q9ed87lvQrRb_Q.roa (raw, json)
Hash identifier: Sitsq4SK118ZuU9nYMZ2z7lYeIq08gqG7O0LpN8OCrg=
Subject key identifier: 3E:63:3B:81:19:16:D8:20:99:FA:AF:5E:77:CE:E5:BD:0A:D1:6F:F4
Certificate issuer: /CN=d65c1b7d9f04c7f04327e6c446416e2f8c31d57d
Certificate serial: 019422FB3CC82C63184F5B93FCE3D0B84DB3
Authority key identifier: D6:5C:1B:7D:9F:04:C7:F0:43:27:E6:C4:46:41:6E:2F:8C:31:D5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lwbfZ8Ex_BDJ-bERkFuL4wx1X0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/PmM7gRkW2CCZ-q9ed87lvQrRb_Q.roa
Signing time: Wed 01 Jan 2025 17:47:57 +0000
ROA not before: Wed 01 Jan 2025 17:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41731
IP address blocks: 45.91.60.0/22 maxlen: 22
2001:678:4c8::/48 maxlen: 48
2a0e:bc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:3c:c8:2c:63:18:4f:5b:93:fc:e3:d0:b8:4d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65c1b7d9f04c7f04327e6c446416e2f8c31d57d
Validity
Not Before: Jan 1 17:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e633b811916d82099faaf5e77cee5bd0ad16ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5f:af:3f:5b:47:52:04:25:d5:fe:45:7a:18:
ca:1c:6e:d4:3d:a5:d5:ac:d8:9e:82:ff:a5:e5:63:
dd:e1:f4:0b:a6:f9:b6:dc:f4:e7:5c:54:a7:44:f0:
b7:2c:3e:d3:fa:c1:0f:9b:73:3e:cf:49:2e:b5:ce:
df:92:85:ae:13:24:16:2e:c3:cc:18:47:0b:be:a7:
48:1a:25:39:80:2b:ec:8a:12:a9:03:48:aa:f3:ef:
11:96:6a:e8:75:d4:af:0c:26:83:46:64:46:d1:69:
35:d9:23:ad:e2:66:5b:06:30:e7:33:90:1e:82:3a:
2a:6d:c0:2e:2a:c1:7c:fe:b4:3d:75:fa:02:73:16:
b4:14:a0:61:47:da:93:65:88:51:34:16:32:88:74:
02:45:b4:1b:3a:00:ad:20:cd:29:cc:38:e9:af:72:
c7:bd:53:6f:23:54:70:5f:59:51:56:01:97:5e:9e:
7d:cd:0f:0e:2f:96:91:25:93:79:ba:ed:fe:76:1d:
c5:cc:44:89:d2:07:cb:d3:eb:86:13:e6:31:ee:3c:
06:b4:f4:51:f8:3c:20:bd:c0:96:07:b9:89:c2:6d:
f2:0e:2e:89:4a:38:73:86:26:4b:23:cb:41:3d:e3:
5e:ad:a5:0f:09:34:a9:07:55:00:52:7b:54:9c:fe:
88:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:63:3B:81:19:16:D8:20:99:FA:AF:5E:77:CE:E5:BD:0A:D1:6F:F4
X509v3 Authority Key Identifier:
keyid:D6:5C:1B:7D:9F:04:C7:F0:43:27:E6:C4:46:41:6E:2F:8C:31:D5:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lwbfZ8Ex_BDJ-bERkFuL4wx1X0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/PmM7gRkW2CCZ-q9ed87lvQrRb_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/96d072-d129-42be-a75f-110ea8585354/1/1lwbfZ8Ex_BDJ-bERkFuL4wx1X0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.60.0/22
IPv6:
2001:678:4c8::/48
2a0e:bc0::/29
Signature Algorithm: sha256WithRSAEncryption
13:d2:53:c2:6e:4e:7e:45:c5:0e:c1:fd:de:ab:75:5c:e5:83:
b2:56:72:6f:9b:d4:e1:56:e2:2c:f6:bb:38:af:ac:eb:08:59:
cc:1c:4e:f1:7a:92:0e:54:83:18:18:0e:0d:26:3d:03:a1:e7:
88:e2:cc:2e:a7:8f:97:15:ad:6f:18:c8:5c:24:d0:7b:20:e8:
cd:c3:fa:87:13:c6:6c:85:f8:56:ab:bf:89:52:d2:dc:17:e7:
7f:87:d0:61:4c:db:16:09:9d:f8:5b:3b:da:40:4a:48:d1:64:
a4:4d:27:26:3e:54:d4:f4:2e:19:b4:f4:71:ba:a2:15:57:62:
4a:c0:b3:f1:e2:cc:de:b2:9e:5c:ef:78:6a:1d:5a:02:5d:ce:
c5:da:ed:d2:e2:2a:f8:17:50:fb:f2:f1:c9:e9:21:59:76:29:
d5:b3:18:8e:db:8e:74:e7:5d:f7:37:82:49:87:1d:aa:de:e4:
9f:d1:49:49:4d:18:7b:f3:0f:85:5a:39:10:57:6e:7f:a0:38:
44:dd:95:cc:e5:73:bb:89:e9:6b:67:ed:0b:3f:ff:de:21:a2:
3c:5f:f6:d6:22:6f:2b:f5:8b:65:c0:6d:a0:ed:fd:85:c2:f5:
c6:05:98:22:5e:5f:17:20:f0:40:f0:3e:c8:7e:1d:8b:1f:3d:
25:1b:d9:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net