Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/084f75-d00e-43c5-bca8-36fd723a380a/1/AYSLpwufRV-W_9lRsqnuQFR2IOQ.roa
File: AYSLpwufRV-W_9lRsqnuQFR2IOQ.roa (raw, json)
Hash identifier: Q3fm8OZk/vOZ06gyMzMxpxsqxYSULclXWKZVcRfqEg0=
Subject key identifier: 01:84:8B:A7:0B:9F:45:5F:96:FF:D9:51:B2:A9:EE:40:54:76:20:E4
Certificate issuer: /CN=3cd24e08c57607caebcc19c8552eae2e935e82e5
Certificate serial: 01961E0CB718FA18647DB005C5F410818A7E
Authority key identifier: 3C:D2:4E:08:C5:76:07:CA:EB:CC:19:C8:55:2E:AE:2E:93:5E:82:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNJOCMV2B8rrzBnIVS6uLpNeguU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/084f75-d00e-43c5-bca8-36fd723a380a/1/AYSLpwufRV-W_9lRsqnuQFR2IOQ.roa
Signing time: Thu 10 Apr 2025 04:54:31 +0000
ROA not before: Thu 10 Apr 2025 04:54:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210686
IP address blocks: 91.218.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1e:0c:b7:18:fa:18:64:7d:b0:05:c5:f4:10:81:8a:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd24e08c57607caebcc19c8552eae2e935e82e5
Validity
Not Before: Apr 10 04:54:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01848ba70b9f455f96ffd951b2a9ee40547620e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ec:49:0c:77:8d:22:f3:2d:eb:b9:57:4f:20:
32:c9:dd:3a:de:ad:e8:45:d8:26:d7:ab:ed:d2:43:
c1:37:d8:75:35:89:7c:72:ab:de:1e:04:80:b1:af:
3f:6b:9c:36:72:72:75:5f:5a:b8:81:f9:32:f4:60:
9c:53:69:89:eb:5a:e7:dc:ec:a5:b7:1e:43:2c:f8:
9a:a5:b2:5f:2f:3b:2e:e3:18:8e:f9:b0:3d:e9:f0:
a5:d3:fb:1f:77:bc:4b:24:7a:4f:da:a9:40:e6:db:
be:d7:ba:00:19:a5:a9:5b:fa:a0:36:04:92:1d:0e:
c1:01:2b:b7:da:46:3b:fd:2e:87:e8:cb:4a:be:fd:
63:20:4d:2d:c4:22:47:f3:fd:3f:7b:6b:96:ab:ac:
1c:e6:ae:86:76:3a:62:90:2c:4e:96:86:85:80:16:
04:b0:f4:71:71:a9:b0:65:79:86:af:09:4e:e5:5a:
5d:1d:b0:8c:e6:46:44:47:30:3a:94:6c:b7:3f:65:
54:cc:6f:4f:fa:1c:7a:2b:01:5b:04:35:c4:da:3c:
20:50:fb:40:9b:38:8c:ef:f6:09:e3:5e:e1:97:4b:
b9:1d:6f:3b:a5:ae:66:98:e1:c1:c3:b9:59:4f:79:
1f:10:0b:85:af:90:e3:ad:10:7a:50:3a:dd:cc:63:
c8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:84:8B:A7:0B:9F:45:5F:96:FF:D9:51:B2:A9:EE:40:54:76:20:E4
X509v3 Authority Key Identifier:
keyid:3C:D2:4E:08:C5:76:07:CA:EB:CC:19:C8:55:2E:AE:2E:93:5E:82:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNJOCMV2B8rrzBnIVS6uLpNeguU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/084f75-d00e-43c5-bca8-36fd723a380a/1/AYSLpwufRV-W_9lRsqnuQFR2IOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/084f75-d00e-43c5-bca8-36fd723a380a/1/PNJOCMV2B8rrzBnIVS6uLpNeguU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.180.0/24
Signature Algorithm: sha256WithRSAEncryption
34:49:d8:15:ed:cb:03:c5:7b:9f:15:af:b0:f9:b0:1f:9a:29:
9e:54:9e:e6:67:e1:fc:5a:ba:bd:a5:c1:7a:5a:7d:0e:ae:08:
0d:2a:f8:29:a5:b2:48:b6:fe:b9:d3:49:4e:58:4e:45:ff:f4:
16:4e:72:4b:46:45:d6:b8:7d:75:5a:fe:a5:39:62:73:de:60:
b0:e0:34:12:ee:30:f7:aa:2d:eb:76:2e:50:b8:4f:88:b9:f6:
8f:79:f4:25:06:77:87:a5:2b:d9:86:73:a6:3b:98:eb:f7:15:
f3:8a:6a:c1:4d:9d:6d:05:5a:b3:15:37:37:42:8e:ef:fe:7d:
32:ad:79:a0:2c:7b:f6:ba:68:2d:44:10:60:3f:20:ae:b4:e8:
94:1b:ed:13:28:29:f0:05:fb:98:24:00:e6:21:1f:c2:a5:54:
ba:6a:83:08:2c:cf:e4:60:65:94:ce:ff:01:66:c3:2f:b2:31:
10:b5:44:15:1a:3e:c1:7d:3e:76:6e:be:51:fe:06:26:e9:ea:
e0:d3:da:6e:15:f2:90:c2:d2:20:77:9f:ac:96:17:da:34:16:
68:eb:ae:b6:1d:e2:e6:29:33:f7:f8:19:fc:60:aa:4b:0e:ab:
16:87:cf:59:37:26:ca:2b:e8:5c:59:50:9c:f2:da:f5:58:0f:
d6:db:a7:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:46 2025 by rpki-client on console.sobornost.net