Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/8anvDKitwmoS5b1R9CoiYAIvV4s.roa
File: 8anvDKitwmoS5b1R9CoiYAIvV4s.roa (raw, json)
Hash identifier: sK8EhnVxeI2sQ1OgOLzF1LkVF8lOtqG5DcBtonQ6uEM=
Subject key identifier: F1:A9:EF:0C:A8:AD:C2:6A:12:E5:BD:51:F4:2A:22:60:02:2F:57:8B
Certificate issuer: /CN=70cb96543f7e195723e6d122c29478bfdda03ecc
Certificate serial: 01942445446DA4298BBD50AE51DE8070C88A
Authority key identifier: 70:CB:96:54:3F:7E:19:57:23:E6:D1:22:C2:94:78:BF:DD:A0:3E:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMuWVD9-GVcj5tEiwpR4v92gPsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/8anvDKitwmoS5b1R9CoiYAIvV4s.roa
Signing time: Wed 01 Jan 2025 23:48:26 +0000
ROA not before: Wed 01 Jan 2025 23:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197395
IP address blocks: 91.239.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:44:6d:a4:29:8b:bd:50:ae:51:de:80:70:c8:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cb96543f7e195723e6d122c29478bfdda03ecc
Validity
Not Before: Jan 1 23:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1a9ef0ca8adc26a12e5bd51f42a2260022f578b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6b:81:dc:35:e9:81:a5:a1:40:b4:ae:d7:b4:
0f:d7:21:c2:d1:db:e9:76:62:4e:a3:10:d0:8c:a6:
d2:f3:2c:c2:32:dd:90:e5:5e:33:0c:73:c7:0f:a9:
ca:ad:60:13:b1:13:75:d7:75:e4:8d:31:00:61:4b:
c1:74:85:ae:7e:57:8d:ba:da:e6:88:15:b2:a2:ed:
2c:ce:af:90:43:45:10:6b:f7:63:08:a5:14:d5:3f:
ec:3d:7c:16:db:2f:54:60:40:6c:7f:08:95:df:99:
95:91:4a:85:bc:c6:05:80:6b:08:8d:25:bf:5a:ab:
d4:fc:63:87:22:1a:8e:6b:27:45:42:ab:ef:b4:83:
2f:cc:69:40:6c:6f:4b:a0:cc:71:e7:bc:19:ca:6e:
86:7d:5b:c9:62:56:a9:9a:9c:91:1c:2b:71:d6:d4:
7c:bf:0b:12:2b:83:c1:f7:5e:47:3a:33:2c:ad:5a:
94:74:0b:d8:3a:e3:c6:c0:2b:ba:26:63:af:4d:64:
26:28:bf:e1:b7:99:aa:6b:d6:e2:72:34:5a:4d:c8:
a2:7d:a8:f9:b2:bb:d3:16:fa:cc:5d:f4:77:ba:8a:
a1:a5:37:ad:78:67:37:f2:32:6a:b2:b1:b3:34:de:
da:45:82:ca:91:42:b2:4e:89:49:24:9c:40:1e:3f:
2d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A9:EF:0C:A8:AD:C2:6A:12:E5:BD:51:F4:2A:22:60:02:2F:57:8B
X509v3 Authority Key Identifier:
keyid:70:CB:96:54:3F:7E:19:57:23:E6:D1:22:C2:94:78:BF:DD:A0:3E:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMuWVD9-GVcj5tEiwpR4v92gPsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/8anvDKitwmoS5b1R9CoiYAIvV4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/cMuWVD9-GVcj5tEiwpR4v92gPsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.186.0/24
Signature Algorithm: sha256WithRSAEncryption
24:55:83:54:ab:f7:4a:49:bd:74:c6:45:d8:f4:ca:6d:00:38:
b3:04:3c:ef:d2:a4:e0:15:c3:2a:0a:91:6f:7e:bf:33:a9:96:
72:51:10:5f:63:91:94:be:e7:9a:67:17:27:2f:fd:45:09:d3:
d5:c3:c1:72:d7:95:cc:9f:0b:fd:4e:4e:ae:19:ee:5c:a7:c2:
83:c3:1c:f2:2a:ac:5d:b5:85:61:dc:4a:b4:bd:c2:1c:ea:97:
a6:71:4d:8c:8d:a5:83:9e:44:6c:7f:4e:55:21:74:dc:8e:23:
87:87:70:08:fe:04:c3:45:c4:3a:e0:74:9c:fc:96:cc:3a:ac:
ce:93:90:b0:30:81:4e:c2:3d:d7:a6:aa:9f:23:b0:7a:76:94:
fe:a2:cd:00:97:1f:ab:bd:2a:65:c8:83:b8:09:23:5a:d9:ac:
b9:53:7d:89:f1:0c:5f:78:08:49:24:ba:fd:a8:f0:51:b8:b7:
31:27:c6:2f:82:df:ba:57:11:59:73:eb:47:7e:a3:d9:71:32:
99:4c:cf:f9:83:a8:ad:95:15:3d:6d:2d:39:c5:19:11:17:7c:
9c:6b:af:eb:cb:b0:c4:ee:2d:83:0a:95:c0:31:5c:f9:3b:3d:
8c:a6:3a:ff:18:2a:0d:e5:00:f7:07:da:83:1e:27:48:45:67:
5c:25:b5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net