Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/1cf0a8-1be2-49fa-8151-df6cab4e45b4/1/IBb1HqZFTHsm_sCmjR2ccm8RUCA.roa
File: IBb1HqZFTHsm_sCmjR2ccm8RUCA.roa (raw, json)
Hash identifier: KJ8NP0RBTfkNOG7Be7nzu7TlYeYPrpFzbgBEOJgWVgw=
Subject key identifier: 20:16:F5:1E:A6:45:4C:7B:26:FE:C0:A6:8D:1D:9C:72:6F:11:50:20
Certificate issuer: /CN=06188adfd16445a2a014e012e739bb812fe9cd0e
Certificate serial: 019421B1B4328D8A8FC252C0BDC8314054AE
Authority key identifier: 06:18:8A:DF:D1:64:45:A2:A0:14:E0:12:E7:39:BB:81:2F:E9:CD:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhiK39FkRaKgFOAS5zm7gS_pzQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/1cf0a8-1be2-49fa-8151-df6cab4e45b4/1/IBb1HqZFTHsm_sCmjR2ccm8RUCA.roa
Signing time: Wed 01 Jan 2025 11:48:01 +0000
ROA not before: Wed 01 Jan 2025 11:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213926
IP address blocks: 91.202.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:b4:32:8d:8a:8f:c2:52:c0:bd:c8:31:40:54:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06188adfd16445a2a014e012e739bb812fe9cd0e
Validity
Not Before: Jan 1 11:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2016f51ea6454c7b26fec0a68d1d9c726f115020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:bf:d7:20:9a:96:4f:1e:7c:61:e7:ac:fe:
aa:17:16:c4:67:1d:c3:2d:48:a2:9d:a7:78:34:bd:
a3:9d:92:3c:c5:75:ad:a6:3d:f1:03:b4:80:31:93:
75:fd:4b:72:85:0d:b4:43:19:4b:60:04:51:b2:cf:
a0:32:ed:2b:2a:f3:6e:20:d1:14:80:fa:dc:fc:2d:
97:c1:be:39:a5:7d:3f:3d:88:d2:08:11:48:7a:0d:
d8:98:04:40:d9:6c:e5:39:6a:de:01:19:97:6c:16:
8a:e6:f8:b1:ce:3c:e6:db:6c:28:9a:3a:e2:d1:85:
7e:a6:03:60:29:fc:d6:1e:2c:a1:9a:a3:de:44:fd:
bd:2a:a1:a7:40:9c:29:2d:56:5e:72:b5:b3:2e:78:
76:a0:27:ad:d3:2b:96:59:81:a2:c5:0a:79:c0:3d:
06:0e:1e:fa:56:1e:7f:ac:d8:d2:70:35:b6:36:ae:
3d:30:58:77:4c:60:42:45:85:04:60:97:87:aa:c2:
29:42:37:52:cc:44:4b:0a:00:a7:26:08:f5:83:e8:
cf:dc:ce:83:b3:10:35:e6:fd:62:cd:d9:1c:19:18:
d3:4d:1c:f1:a7:58:4f:41:9c:04:38:cb:b3:d6:ba:
91:5e:f5:10:b7:82:ee:19:74:a4:27:bd:da:c2:d7:
b4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:16:F5:1E:A6:45:4C:7B:26:FE:C0:A6:8D:1D:9C:72:6F:11:50:20
X509v3 Authority Key Identifier:
keyid:06:18:8A:DF:D1:64:45:A2:A0:14:E0:12:E7:39:BB:81:2F:E9:CD:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhiK39FkRaKgFOAS5zm7gS_pzQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/1cf0a8-1be2-49fa-8151-df6cab4e45b4/1/IBb1HqZFTHsm_sCmjR2ccm8RUCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/1cf0a8-1be2-49fa-8151-df6cab4e45b4/1/BhiK39FkRaKgFOAS5zm7gS_pzQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.232.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:83:e1:d0:52:21:1b:23:50:13:64:f5:2f:5b:cb:57:5a:3c:
78:e0:3d:d7:1f:5e:f8:8b:2a:3e:dd:da:50:c3:a4:ed:4e:61:
b4:5f:03:5d:a1:50:44:27:aa:2f:74:3a:68:fe:ca:8d:52:d6:
e3:33:5b:76:51:aa:ec:e1:a4:6f:09:d3:13:7f:04:ad:af:3a:
07:53:21:38:ee:4c:ac:a5:30:98:f5:fa:2c:c8:c6:53:53:aa:
12:e7:40:36:1f:77:4a:0d:22:29:71:26:87:2f:60:97:57:20:
1e:19:a5:cd:2b:1f:0a:39:7e:55:64:93:e0:64:e3:3d:88:bb:
9b:cf:10:9d:4a:41:db:ff:d6:a2:7d:33:dd:0b:8a:17:b0:64:
4a:98:f0:d4:48:73:8a:2e:83:71:c5:4f:0d:7a:4d:f9:ad:38:
4e:20:87:1f:4b:c1:93:f7:32:00:7c:5a:b9:1f:b1:47:1a:70:
00:10:7a:ea:a1:a8:c9:38:01:55:84:9e:52:ce:69:65:4b:6a:
ab:a2:6e:6c:4c:51:1c:bc:f1:4f:f2:0d:7a:e5:b8:43:58:b2:
43:c4:97:18:75:28:7f:04:8a:f1:ab:16:dd:4b:d2:2a:2c:c9:
52:e6:7c:a3:68:80:e5:a9:ff:ec:4f:be:eb:87:b3:36:82:2d:
07:d0:d1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net