Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/AVv7KqsJQ7Zn0lKyZ4rdnlf-GJ4.roa
File: AVv7KqsJQ7Zn0lKyZ4rdnlf-GJ4.roa (raw, json)
Hash identifier: NUdH+bGXaFI8uXmd6dLOR5WLJnhwd6mvan4jq3rAulE=
Subject key identifier: 01:5B:FB:2A:AB:09:43:B6:67:D2:52:B2:67:8A:DD:9E:57:FE:18:9E
Certificate issuer: /CN=8c240c1b90f7f020053fa095330ffcfadef5399e
Certificate serial: 019423D6DD6FF6F9F3DA32970FBB6EC72A08
Authority key identifier: 8C:24:0C:1B:90:F7:F0:20:05:3F:A0:95:33:0F:FC:FA:DE:F5:39:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jCQMG5D38CAFP6CVMw_8-t71OZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/AVv7KqsJQ7Zn0lKyZ4rdnlf-GJ4.roa
Signing time: Wed 01 Jan 2025 21:47:51 +0000
ROA not before: Wed 01 Jan 2025 21:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39187
IP address blocks: 91.208.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:dd:6f:f6:f9:f3:da:32:97:0f:bb:6e:c7:2a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c240c1b90f7f020053fa095330ffcfadef5399e
Validity
Not Before: Jan 1 21:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=015bfb2aab0943b667d252b2678add9e57fe189e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1a:3d:49:d4:30:c3:a0:ba:41:9d:e3:ab:bc:
c6:a7:7c:fd:f6:3d:33:e7:b8:04:2e:18:cb:d2:54:
57:64:96:21:6f:ab:66:98:bf:0a:6c:30:54:cb:5d:
24:aa:fb:6e:94:32:54:6d:42:fb:7a:cc:fd:57:e6:
1b:8d:f5:1b:1a:25:ae:88:86:5b:2e:82:12:4f:c5:
c1:df:3e:17:e5:d8:39:5c:03:23:c4:c5:c3:80:cb:
b3:2c:8a:82:e6:de:b5:ec:84:b0:88:59:80:a4:fe:
7a:93:15:22:b8:f4:f6:00:35:dd:31:d9:f9:1a:95:
9e:a5:9f:ff:2e:93:3f:b8:9a:1d:04:22:57:67:44:
6f:55:56:4e:18:29:16:e6:df:41:82:41:4d:42:5d:
2c:08:ac:8d:70:8a:8a:59:18:ac:e9:20:f2:69:07:
a6:6f:dc:11:7e:36:3a:f4:b6:9c:d5:1f:24:f5:aa:
8c:55:7d:34:3c:d9:39:19:cc:22:59:b9:3d:eb:4e:
97:8a:67:9e:d7:3f:15:3b:a4:cc:6e:e7:65:92:f9:
a3:43:64:30:25:02:49:12:9d:ac:1f:dd:a1:49:78:
e9:64:a8:73:0a:8d:5d:f8:5a:04:45:b1:06:16:27:
a9:0c:91:69:d0:d4:64:23:ac:e1:d1:0c:d5:e4:e4:
a4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5B:FB:2A:AB:09:43:B6:67:D2:52:B2:67:8A:DD:9E:57:FE:18:9E
X509v3 Authority Key Identifier:
keyid:8C:24:0C:1B:90:F7:F0:20:05:3F:A0:95:33:0F:FC:FA:DE:F5:39:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jCQMG5D38CAFP6CVMw_8-t71OZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/AVv7KqsJQ7Zn0lKyZ4rdnlf-GJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/jCQMG5D38CAFP6CVMw_8-t71OZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.27.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:16:1c:75:63:ad:a8:99:26:c3:72:0d:b1:dd:16:57:ef:d8:
75:cf:fe:da:4e:84:33:9b:44:7d:0e:76:d5:e6:6c:6e:37:47:
13:2d:b3:ca:53:bc:96:56:3b:a2:d1:ac:02:c3:bb:51:dc:15:
b0:2f:1c:f0:b0:c2:2a:c8:cd:0d:5d:90:23:d6:2d:23:9a:7c:
0a:e6:80:7f:23:b7:46:f0:c9:35:dd:0a:77:f9:55:08:ce:93:
e3:fe:1c:7c:4b:2f:00:17:65:cb:e6:36:e1:16:e0:a3:12:33:
36:63:3a:56:81:7a:4b:fb:36:66:47:7a:26:70:07:81:7d:6e:
75:b5:8b:33:7f:85:4f:dc:6e:a9:0f:22:5e:2c:32:fd:c1:44:
47:5a:06:37:57:a4:d1:66:9d:1c:b2:16:6c:a7:61:56:c4:8b:
bf:2c:80:56:2c:7a:eb:7d:88:73:81:07:7c:de:26:26:d7:0c:
c0:df:b8:a9:e7:6b:d4:7c:ae:7e:cd:3d:aa:fc:51:7d:89:43:
2e:5b:dd:2a:ff:c5:22:26:72:24:82:d5:90:ba:17:4c:2a:ff:
39:d1:34:9b:1c:36:c4:46:43:6b:fc:20:0a:5c:75:ee:ad:c6:
92:67:e9:1e:88:8f:0e:01:c2:76:f5:1b:ab:cd:3c:ed:43:88:
8e:a3:f8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net