Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/nYLCUns63cZuZFbRrNTh_iPTHeI.roa
File: nYLCUns63cZuZFbRrNTh_iPTHeI.roa (raw, json)
Hash identifier: R8X8f7SwmJ+Hj5ZUdFxUc0RL5ORl09Pnre0z0BbiobI=
Subject key identifier: 9D:82:C2:52:7B:3A:DD:C6:6E:64:56:D1:AC:D4:E1:FE:23:D3:1D:E2
Certificate issuer: /CN=a6aa9cade93be6ba7c8abb3238318076317d607d
Certificate serial: 0194252211619D2EBD9E4E7EB33A2943D886
Authority key identifier: A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqqcrek75rp8irsyODGAdjF9YH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/nYLCUns63cZuZFbRrNTh_iPTHeI.roa
Signing time: Thu 02 Jan 2025 03:49:37 +0000
ROA not before: Thu 02 Jan 2025 03:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42927
IP address blocks: 91.211.224.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:11:61:9d:2e:bd:9e:4e:7e:b3:3a:29:43:d8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6aa9cade93be6ba7c8abb3238318076317d607d
Validity
Not Before: Jan 2 03:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d82c2527b3addc66e6456d1acd4e1fe23d31de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fb:af:19:fa:9d:0c:26:d2:0d:b2:4e:73:71:
6f:c7:f5:7f:78:09:93:d2:b1:cc:a7:ad:c5:b7:26:
c3:cb:8a:db:a3:7f:e8:cd:3e:e1:f1:28:f3:82:3e:
4b:57:6f:3d:3b:c0:ca:6c:a1:5c:76:44:ab:3e:ca:
a0:8d:eb:dd:75:bd:6d:35:21:78:e3:26:24:01:8c:
f7:8c:d1:9b:cf:8d:af:6b:f5:62:7d:5d:c7:54:92:
56:2f:45:09:a3:59:53:1c:57:6b:f4:d9:a2:5d:e0:
4e:1e:c7:84:ef:2e:5e:b8:39:34:91:21:b6:b8:32:
03:5c:f9:4a:30:76:a8:6a:c5:da:cc:3d:fb:83:ba:
c6:d0:25:4f:21:93:02:4c:f1:68:c7:78:03:f6:ca:
b1:95:a3:2a:cd:ac:12:54:15:e5:8f:9a:7b:00:e0:
d2:34:f4:c9:ca:ff:fa:53:b0:a7:53:e4:f9:96:1e:
6b:2d:f4:f0:71:39:07:b7:d1:d5:be:e4:64:26:cc:
b0:ca:5d:f1:b3:a9:09:4a:40:86:bc:24:dc:8f:ab:
d8:c2:cb:a0:4e:c2:de:af:71:60:99:93:e9:fb:31:
81:f1:77:69:46:f4:9e:1c:70:dd:8b:2d:97:c0:75:
64:96:f7:82:0f:14:f4:07:1d:9f:a8:a5:ee:1c:6a:
79:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:82:C2:52:7B:3A:DD:C6:6E:64:56:D1:AC:D4:E1:FE:23:D3:1D:E2
X509v3 Authority Key Identifier:
keyid:A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqqcrek75rp8irsyODGAdjF9YH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/nYLCUns63cZuZFbRrNTh_iPTHeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.224.0/22
Signature Algorithm: sha256WithRSAEncryption
34:f7:cc:4d:35:6b:e8:32:be:cd:92:a5:3e:2a:4f:bd:94:93:
b2:e6:cd:c0:bc:81:48:ef:98:ff:05:da:b2:7b:40:f4:a9:1f:
ce:29:65:09:f5:54:95:a4:f5:09:e3:4e:94:d7:91:da:f9:c0:
65:dd:7f:06:db:2e:ea:62:dc:b1:02:ed:10:62:97:0e:ac:f1:
09:4d:17:be:b2:9e:dd:6a:3d:8e:72:9f:18:ea:a8:b7:78:de:
0f:47:cf:ae:22:89:b9:6b:2a:65:af:88:2e:d9:43:03:65:cc:
ba:a3:09:35:70:69:ce:ac:96:fb:4f:16:4f:8d:24:42:d6:84:
ac:02:7a:4b:c8:6b:96:37:ea:34:c1:7e:27:23:87:7f:02:59:
81:15:b2:41:70:3b:15:f9:2c:37:30:cf:fa:81:2f:6f:68:57:
4c:7a:42:bc:21:aa:41:93:cd:b4:c4:ad:98:9d:1c:d8:5d:09:
b1:a1:31:f5:55:87:8c:f8:9d:2b:d4:94:77:25:93:87:62:66:
15:51:7c:20:45:3b:0a:ea:f1:87:9f:ce:27:3c:09:e2:a8:8b:
5f:82:f6:2b:3c:d2:0e:32:14:23:eb:15:36:9e:e8:61:43:80:
01:10:e8:24:bd:bf:ba:e7:60:08:1a:d2:d4:f6:78:6a:da:45:
a1:55:98:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:17:03 2025 by rpki-client on console.sobornost.net