Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa
File: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (raw, json)
Hash identifier: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=
Subject key identifier: 81:84:25:F2:D5:FA:53:34:77:44:39:A2:FD:0F:31:EF:E1:63:A1:1A
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019518C7815541DCFA850587C9D6B1578653
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa
Signing time: Tue 18 Feb 2025 11:18:02 +0000
ROA not before: Tue 18 Feb 2025 11:18:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212633
IP address blocks: 91.220.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:18:c7:81:55:41:dc:fa:85:05:87:c9:d6:b1:57:86:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Feb 18 11:18:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=818425f2d5fa5334774439a2fd0f31efe163a11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c3:18:0d:c2:d0:8b:56:2c:fb:40:c1:ac:61:
70:dc:0d:19:b4:f4:b8:d1:a4:f8:59:72:a6:66:10:
ee:a3:83:9c:d1:bf:24:b3:c5:4c:98:29:6e:d1:7e:
b3:c0:95:51:ef:27:fa:8f:c4:73:80:90:8e:88:fc:
9b:96:e8:d5:bf:02:60:e6:80:9f:10:90:24:6d:67:
70:a7:6d:03:d2:cf:b2:85:7f:c6:be:8f:f2:48:a2:
93:30:28:30:ca:17:83:97:5c:dd:56:79:15:9a:29:
b6:7d:3b:c0:29:25:bd:8d:c6:45:25:c9:72:9c:85:
0d:f7:0a:c0:70:10:51:db:46:db:6d:91:a1:68:7d:
41:ca:a7:1a:a8:85:cf:4f:3a:c3:01:2e:89:35:79:
9d:51:6d:c9:34:7a:e3:56:89:2c:6f:83:07:37:aa:
15:0a:9e:78:26:e5:9a:82:45:d9:98:87:ec:42:ae:
71:6a:60:cb:69:20:06:dd:a6:2b:f3:4c:6c:39:af:
a3:31:43:85:c3:14:af:4f:94:92:d4:3f:aa:91:09:
c9:0c:42:f0:4e:5f:ec:c0:d6:d9:b7:c6:46:ad:99:
0e:a5:95:88:1f:65:9f:19:24:8f:d3:5e:01:ac:30:
e6:03:4c:ac:3a:cc:04:44:0a:62:eb:8d:f9:f5:13:
97:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:84:25:F2:D5:FA:53:34:77:44:39:A2:FD:0F:31:EF:E1:63:A1:1A
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.115.0/24
Signature Algorithm: sha256WithRSAEncryption
71:15:28:cd:7a:36:be:aa:b2:fd:7c:b7:ec:a7:c0:6f:e6:aa:
83:db:a2:b9:0a:68:4a:34:22:32:45:05:02:68:43:a3:69:6f:
b4:b9:3c:98:46:f3:74:2c:3c:ae:9f:d1:29:eb:e9:13:13:9c:
5e:d2:9e:c8:8e:b4:3c:f0:b2:d9:17:ca:a6:c8:08:11:1a:62:
e8:e5:fb:f1:ac:ec:53:24:40:70:da:49:c5:c5:d2:a7:9f:6c:
16:6e:93:f3:67:60:fa:5e:76:fb:e6:52:bc:10:7b:26:0e:59:
21:58:00:18:d0:22:ed:fd:d7:42:ba:a5:6f:3f:fe:fe:1a:55:
ce:93:cf:91:30:96:fc:6f:e3:10:3d:05:b7:64:0f:93:68:6a:
7a:89:12:16:c2:4f:4e:04:98:a0:b7:55:72:1f:ac:06:64:fc:
6d:14:fa:8e:30:5f:0e:ff:7b:e5:e9:02:38:ee:67:69:62:26:
2c:18:69:32:bb:fd:55:29:29:11:2c:1b:6f:63:6d:72:13:bc:
42:02:9e:1a:26:8c:53:21:b3:44:6a:b7:46:8d:c6:23:62:9b:
7c:02:6b:30:88:c2:93:58:51:ad:91:c9:33:6f:68:1f:ec:55:
a6:d8:51:da:33:02:de:07:b8:0c:0d:e7:c8:42:98:db:7d:99:
17:ad:27:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net