Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/37e26f-57b8-4080-b832-ee7313716498/1/WiSq1XaassFeIzQ7VRRmBzOb3-E.roa
File: WiSq1XaassFeIzQ7VRRmBzOb3-E.roa (raw, json)
Hash identifier: kuvzaokAS1drpTQ/4WqXgBODOQIMCPVvcrCFZCP4fDk=
Subject key identifier: 5A:24:AA:D5:76:9A:B2:C1:5E:23:34:3B:55:14:66:07:33:9B:DF:E1
Certificate issuer: /CN=7879770bffc14d9cdfb574ec866caaf13572f45c
Certificate serial: 0194258EE68797A6FB62DEF736067A8AAD03
Authority key identifier: 78:79:77:0B:FF:C1:4D:9C:DF:B5:74:EC:86:6C:AA:F1:35:72:F4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHl3C__BTZzftXTshmyq8TVy9Fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/37e26f-57b8-4080-b832-ee7313716498/1/WiSq1XaassFeIzQ7VRRmBzOb3-E.roa
Signing time: Thu 02 Jan 2025 05:48:29 +0000
ROA not before: Thu 02 Jan 2025 05:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198227
IP address blocks: 91.232.158.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:e6:87:97:a6:fb:62:de:f7:36:06:7a:8a:ad:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7879770bffc14d9cdfb574ec866caaf13572f45c
Validity
Not Before: Jan 2 05:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a24aad5769ab2c15e23343b55146607339bdfe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ee:64:ad:d5:9d:2a:c6:14:c9:4b:2c:62:c0:
d4:0b:e2:29:14:b4:21:f7:db:6f:4a:6c:ab:b0:13:
17:29:5d:31:50:21:b1:d9:ca:56:46:e3:73:f0:96:
9f:be:5d:11:a8:ba:c7:10:47:58:88:cf:ed:56:84:
7e:93:85:2f:3d:35:82:ad:42:15:a8:ab:32:a2:c8:
57:c2:a7:66:18:ec:03:67:75:f7:4b:b9:70:0c:fd:
13:42:1a:c4:5c:f8:7a:ee:e3:84:b6:b7:8d:30:8b:
c8:9a:53:04:cc:09:ca:85:5d:5b:c4:0c:92:60:63:
62:28:1e:6e:da:7d:dc:3b:03:8b:98:3f:e9:0b:9c:
2c:df:7a:af:4c:af:9a:49:f6:35:52:fe:53:60:0d:
a9:50:86:12:e8:63:f7:38:77:77:26:89:eb:e8:43:
86:c3:86:0a:4d:bb:4c:d2:3b:fd:d9:97:0c:09:73:
5a:e4:39:e1:1d:c2:bb:71:bf:61:73:ad:50:b2:c5:
f8:70:2f:bc:18:28:49:cf:d2:10:03:df:09:31:b6:
27:ac:bb:f0:f1:ad:31:72:28:3f:e7:be:03:b0:a2:
c0:0b:18:6f:df:07:35:e4:c2:00:08:25:cf:47:d7:
71:1a:f3:25:6b:35:1f:ae:f7:05:5f:a6:e5:53:3e:
a5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:24:AA:D5:76:9A:B2:C1:5E:23:34:3B:55:14:66:07:33:9B:DF:E1
X509v3 Authority Key Identifier:
keyid:78:79:77:0B:FF:C1:4D:9C:DF:B5:74:EC:86:6C:AA:F1:35:72:F4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHl3C__BTZzftXTshmyq8TVy9Fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/37e26f-57b8-4080-b832-ee7313716498/1/WiSq1XaassFeIzQ7VRRmBzOb3-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/37e26f-57b8-4080-b832-ee7313716498/1/eHl3C__BTZzftXTshmyq8TVy9Fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.158.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:cf:a1:87:be:10:81:cb:85:dd:e4:18:2d:34:b3:a1:41:8f:
e4:f2:3a:60:70:9f:b4:11:26:3c:95:8a:1b:b6:c6:b8:92:e0:
d4:22:40:8a:72:10:c0:bf:fb:ed:81:48:b0:1e:39:f6:5d:5a:
46:05:8d:24:14:50:e8:8f:fd:af:be:e3:d4:27:4b:19:71:0a:
bc:15:dc:ca:86:e5:ce:89:11:ff:16:ac:62:0f:d3:5d:4a:95:
91:e8:a0:36:6d:bb:3f:7b:72:c9:4d:e2:af:b9:7f:99:aa:d4:
c5:5d:11:e3:f4:d6:14:5f:e3:dd:ca:64:3a:27:99:33:a8:95:
e6:2d:71:ef:c0:de:25:47:1e:12:ea:0a:d2:62:66:50:ce:54:
e4:f2:d9:d2:dd:ca:98:f0:be:49:f3:cd:4a:d8:24:1e:2e:d2:
1d:a3:eb:32:49:be:ea:14:cd:8c:64:6f:e7:5c:6a:80:ad:e7:
03:40:9d:fb:2f:7a:eb:ac:b4:06:5b:ee:03:8f:8e:b5:2d:5b:
50:81:7f:6c:56:ff:37:31:ff:48:90:bb:fb:3c:27:53:4a:52:
c0:1b:7b:83:dd:46:13:31:00:1b:53:32:75:8d:06:8d:60:e3:
29:73:91:f8:65:d2:13:f1:7d:70:0a:ea:f8:6d:0e:4e:ce:e5:
03:59:4d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net