Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/3975b1-074c-4fd0-9661-d1d6c3f92ffb/1/WB9kjcUG_eK70F_25abwXmjO6D0.roa
File: WB9kjcUG_eK70F_25abwXmjO6D0.roa (raw, json)
Hash identifier: jo9Io4lvr31QdGnhzj2S5UeQzPHc2sTqLWFX7n7f+po=
Subject key identifier: 58:1F:64:8D:C5:06:FD:E2:BB:D0:5F:F6:E5:A6:F0:5E:68:CE:E8:3D
Certificate issuer: /CN=1b0e15c15ae703a8979046af5decc4932edc7f6e
Certificate serial: 01942368F986610A4906F4383B5E10A3FBDA
Authority key identifier: 1B:0E:15:C1:5A:E7:03:A8:97:90:46:AF:5D:EC:C4:93:2E:DC:7F:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gw4VwVrnA6iXkEavXezEky7cf24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/3975b1-074c-4fd0-9661-d1d6c3f92ffb/1/WB9kjcUG_eK70F_25abwXmjO6D0.roa
Signing time: Wed 01 Jan 2025 19:47:49 +0000
ROA not before: Wed 01 Jan 2025 19:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198901
IP address blocks: 91.240.88.0/24 maxlen: 24
185.245.8.0/24 maxlen: 24
185.245.9.0/24 maxlen: 24
185.245.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:f9:86:61:0a:49:06:f4:38:3b:5e:10:a3:fb:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0e15c15ae703a8979046af5decc4932edc7f6e
Validity
Not Before: Jan 1 19:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=581f648dc506fde2bbd05ff6e5a6f05e68cee83d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:50:1e:ac:9b:f8:6f:d6:71:91:b8:d4:e3:a4:
7d:1e:e1:da:5a:bd:45:00:7c:21:a0:c2:fe:a7:26:
4b:cf:2d:2f:16:a9:53:51:97:89:80:84:41:67:a4:
49:7f:a8:1f:49:ee:71:dd:61:4a:dd:3a:f4:76:44:
b8:e0:71:97:7d:bc:34:a1:ce:3e:7f:a4:80:a3:ea:
6f:31:ce:c8:0f:d0:62:a8:6a:27:3d:45:de:1a:f6:
2f:05:76:d5:99:b8:bc:71:d0:b6:62:a5:c2:4f:fb:
de:d8:5b:78:27:53:7e:55:e7:a7:2d:e2:5a:9a:f8:
45:96:7b:e5:1e:69:bf:be:9d:9a:2c:ef:6f:19:c3:
35:12:28:1a:b7:38:73:2f:18:eb:eb:c5:58:52:cf:
3e:4e:88:34:7f:98:4a:a0:cd:cc:a2:69:16:e4:92:
0e:59:0a:61:ca:7a:fb:bd:c2:63:dd:46:0f:3e:c5:
bd:7c:26:e7:11:6e:59:d7:d9:f4:c0:aa:bf:7d:9f:
9a:90:53:a6:fb:1a:46:0b:ae:1b:ae:bd:90:9a:f9:
48:8c:c4:c2:9b:c0:6d:a7:02:cd:65:3c:40:51:b1:
27:d2:bc:88:13:68:3f:81:30:71:eb:9e:5c:ea:cf:
b0:36:5e:da:2e:5a:e7:d8:2d:55:99:b1:c7:55:72:
38:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1F:64:8D:C5:06:FD:E2:BB:D0:5F:F6:E5:A6:F0:5E:68:CE:E8:3D
X509v3 Authority Key Identifier:
keyid:1B:0E:15:C1:5A:E7:03:A8:97:90:46:AF:5D:EC:C4:93:2E:DC:7F:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gw4VwVrnA6iXkEavXezEky7cf24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/3975b1-074c-4fd0-9661-d1d6c3f92ffb/1/WB9kjcUG_eK70F_25abwXmjO6D0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/3975b1-074c-4fd0-9661-d1d6c3f92ffb/1/Gw4VwVrnA6iXkEavXezEky7cf24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.88.0/24
185.245.8.0-185.245.10.255
Signature Algorithm: sha256WithRSAEncryption
64:92:bb:a0:9a:5c:69:6b:1d:bd:bd:ef:f9:21:de:3d:19:bf:
0c:88:62:44:fc:f2:ed:a9:6b:c7:f6:e0:db:1a:8e:dd:a2:bb:
ee:d4:c9:91:e3:f2:08:71:c7:0f:e5:ac:7a:fd:ab:42:ad:50:
aa:cf:61:24:7c:f7:7f:3a:77:3a:72:f9:c2:fe:f3:5c:60:59:
82:89:de:c9:78:fe:58:1d:72:bb:b6:b6:60:f1:35:1e:2d:28:
78:c8:22:0f:81:c3:44:cf:b8:59:5f:9a:37:95:8c:59:ff:31:
2e:dd:e5:59:c3:1f:cc:e3:b3:8b:77:a7:52:86:50:53:b1:dd:
4d:d8:a4:4d:23:a5:e2:3b:44:3a:2a:17:f8:d3:3b:f6:4e:69:
48:41:f1:07:f2:5d:21:58:a9:e3:a8:ae:08:bd:8b:d3:4e:d0:
9b:c5:ae:ec:60:08:f3:5b:3f:53:74:47:40:d0:36:b2:bb:75:
00:46:5c:d6:78:0a:a9:3f:28:22:90:f6:61:2d:6c:df:47:37:
e0:84:7b:de:b5:e0:07:a2:ff:58:ca:3c:ad:5a:e3:e2:e9:1a:
27:dd:a7:00:85:5e:be:e0:06:fd:4b:7e:55:7c:3a:13:55:52:
73:af:6e:e5:53:d7:e6:b8:a8:b7:d6:4a:2c:e1:1a:86:44:c1:
6e:fd:a7:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net