Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/Im3NuoFQdX7egdBojqG76hMiXq0.roa
File: Im3NuoFQdX7egdBojqG76hMiXq0.roa (raw, json)
Hash identifier: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=
Subject key identifier: 22:6D:CD:BA:81:50:75:7E:DE:81:D0:68:8E:A1:BB:EA:13:22:5E:AD
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 0194252201327505F8F43062F6D75EC1538C
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/Im3NuoFQdX7egdBojqG76hMiXq0.roa
Signing time: Thu 02 Jan 2025 03:49:32 +0000
ROA not before: Thu 02 Jan 2025 03:49:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48242
IP address blocks: 91.207.160.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:01:32:75:05:f8:f4:30:62:f6:d7:5e:c1:53:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Jan 2 03:49:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=226dcdba8150757ede81d0688ea1bbea13225ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:66:6a:8f:63:ec:85:46:85:d4:36:52:e7:a3:
fa:4a:ca:97:78:a4:ad:16:34:99:d9:ef:9e:7e:0b:
38:66:4c:97:2c:69:be:8e:1e:4b:21:01:c5:8a:78:
25:e4:6b:29:f9:81:23:9c:e0:b4:e2:f3:0a:c6:35:
df:c1:34:ec:38:8c:f2:87:50:41:76:41:31:ca:9e:
d5:6b:09:64:c7:5b:d2:17:ae:eb:c5:f2:3c:09:6a:
5f:c9:d3:9d:39:08:6d:03:06:71:b4:e6:96:f1:d2:
97:40:21:7e:3d:cf:a4:f2:84:f5:d9:70:0f:e2:91:
bd:10:cf:12:e2:79:44:47:bb:4a:9b:1b:8e:cf:c7:
5e:8a:fb:4e:a3:aa:92:26:c6:7c:78:72:b9:7f:07:
cb:b9:d4:62:06:27:a2:1b:17:71:9a:21:d8:3f:73:
93:a0:f6:15:80:99:7d:d4:17:31:c5:9a:21:4a:a1:
3c:1a:9d:25:3f:89:c5:0d:a8:ae:e8:5f:44:f4:de:
05:ae:78:9c:85:34:32:17:45:61:77:b4:b6:07:c6:
2d:d3:f2:d7:20:35:4b:28:d0:ee:a2:1d:0f:9c:36:
cb:ed:5c:1d:79:31:6c:1d:17:97:63:e2:60:1e:ab:
5e:42:01:a5:4b:97:38:e7:30:4d:d7:07:98:04:3c:
1b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6D:CD:BA:81:50:75:7E:DE:81:D0:68:8E:A1:BB:EA:13:22:5E:AD
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/Im3NuoFQdX7egdBojqG76hMiXq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.160.0/23
Signature Algorithm: sha256WithRSAEncryption
86:d5:4b:dd:01:34:65:91:e1:71:37:d4:b3:ba:5b:10:22:4d:
2d:40:c7:39:28:a5:f2:07:f5:f4:e0:0b:46:9f:ce:3b:1d:cb:
ef:1a:81:2a:48:9c:64:cd:05:a7:33:e8:da:a6:2b:80:5a:4a:
7d:8a:a8:3d:73:7b:10:fd:2a:50:bc:7a:fb:dc:94:8f:0e:e0:
1f:6c:0e:8a:7e:b5:18:d4:99:9d:3d:b4:d6:4b:dc:35:82:6b:
5d:07:f7:69:70:68:4c:27:8f:78:59:1a:94:be:51:7f:cc:7a:
c5:88:b4:62:b3:b8:7c:e4:ae:6e:99:4b:0a:5c:a0:39:50:f6:
12:53:02:e9:ad:24:80:7b:9a:c0:02:e8:a8:36:67:06:18:f4:
b0:01:da:9c:f8:8f:be:b2:b9:ba:b7:97:53:09:a6:6c:09:b9:
91:49:3a:ed:27:d0:dd:0e:33:30:6f:e8:3f:2a:6c:a7:57:f9:
fb:e3:21:ae:cb:3b:d4:a7:ab:6b:cd:af:3e:61:df:f0:b4:b4:
30:1a:fe:36:16:11:98:c1:89:41:6a:1c:c5:8c:eb:8d:24:3d:
6d:a5:0f:3a:ea:66:5a:8b:bc:47:5d:af:60:8b:8d:67:08:19:
0d:c8:90:19:2e:ea:a3:91:40:cf:ac:5f:d1:52:f0:a7:95:51:
68:cd:42:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net