Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/3mViGQZ4y4dgsuOpVqTlOj7Fdak.roa
File: 3mViGQZ4y4dgsuOpVqTlOj7Fdak.roa (raw, json)
Hash identifier: bm9ouBBryfPy+46YnwBG/A6ErQmwE+ICHvcNK/AHLA4=
Subject key identifier: DE:65:62:19:06:78:CB:87:60:B2:E3:A9:56:A4:E5:3A:3E:C5:75:A9
Certificate issuer: /CN=cb5e6fd624fec0692fe7069e379231e524d80fbc
Certificate serial: 0194266C09BAA65365B85822D1B6E3B22F90
Authority key identifier: CB:5E:6F:D6:24:FE:C0:69:2F:E7:06:9E:37:92:31:E5:24:D8:0F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y15v1iT-wGkv5waeN5Ix5STYD7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/3mViGQZ4y4dgsuOpVqTlOj7Fdak.roa
Signing time: Thu 02 Jan 2025 09:50:02 +0000
ROA not before: Thu 02 Jan 2025 09:50:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64413
IP address blocks: 91.209.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:09:ba:a6:53:65:b8:58:22:d1:b6:e3:b2:2f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5e6fd624fec0692fe7069e379231e524d80fbc
Validity
Not Before: Jan 2 09:50:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=de6562190678cb8760b2e3a956a4e53a3ec575a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:07:cc:6b:3a:9a:1e:00:16:23:25:b6:c5:75:
bb:12:75:61:fb:79:a6:30:86:4a:96:3b:66:e4:01:
b6:a6:a4:17:05:c0:f6:a6:16:23:df:2c:83:af:4c:
ad:b1:8a:37:7d:03:67:43:cd:8d:3d:11:26:32:1f:
2b:12:fb:71:d9:de:2d:f1:3b:0f:0e:79:d8:c2:37:
55:f4:5c:08:4d:7b:e1:f8:c1:88:71:1a:09:8e:a8:
42:bf:dc:a1:ee:ef:14:d0:1b:17:fd:16:0f:c3:c3:
9f:eb:80:32:75:6d:6f:36:97:41:ea:a4:aa:3c:36:
3b:a8:4a:4e:74:56:cd:0d:d9:4b:ba:31:fb:5e:40:
7e:69:88:b6:12:74:b9:8c:ba:e7:16:ee:af:a7:d4:
ac:54:68:c5:16:6c:fa:ef:73:3c:0b:fe:69:40:af:
0c:5d:a0:59:fe:f4:2f:3a:33:bd:a5:26:c5:88:e5:
eb:b6:87:56:d7:52:71:f5:20:99:57:c0:77:fb:f9:
8f:69:28:60:ef:54:60:65:34:2e:13:dd:ad:2f:c3:
6f:54:c2:75:21:17:85:2d:73:c8:fc:a9:0a:15:22:
27:d4:1f:4a:3c:e1:d1:3b:fa:ca:b4:c2:ef:19:42:
76:1c:07:b5:f0:01:a4:e9:f3:2c:55:77:01:e0:6a:
07:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:65:62:19:06:78:CB:87:60:B2:E3:A9:56:A4:E5:3A:3E:C5:75:A9
X509v3 Authority Key Identifier:
keyid:CB:5E:6F:D6:24:FE:C0:69:2F:E7:06:9E:37:92:31:E5:24:D8:0F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y15v1iT-wGkv5waeN5Ix5STYD7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/3mViGQZ4y4dgsuOpVqTlOj7Fdak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/y15v1iT-wGkv5waeN5Ix5STYD7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.96.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c8:c0:ae:5d:b2:ca:91:ae:62:60:4f:c9:40:65:50:23:01:
4e:85:d1:80:de:8c:01:11:98:5b:1d:ce:24:02:96:9e:26:5a:
76:c2:3d:5a:c0:12:48:fd:86:04:39:c7:09:3e:79:15:b5:14:
6d:1f:85:77:06:dd:ac:de:15:5e:0a:15:50:a9:ec:2f:a8:98:
3f:c4:c9:ad:02:20:86:c2:7d:c7:fc:d6:fb:2d:56:3e:f2:77:
0b:68:db:2d:61:cd:da:f2:58:4f:9c:76:78:dd:91:90:34:6c:
aa:18:2f:67:49:3f:a3:07:08:b1:8d:30:a8:23:82:10:c6:07:
c7:a2:31:d3:3d:09:de:c3:fa:01:20:f9:95:74:b4:e8:1d:42:
d9:88:dd:89:8e:2b:04:67:1e:60:5d:b5:7e:fb:18:98:80:a5:
a9:f8:17:65:a5:12:31:ae:63:0f:92:d7:a5:20:b8:ab:76:17:
d0:43:b9:5e:19:46:a8:52:96:4a:01:78:7d:a2:a0:3e:cb:46:
b1:d9:5c:17:23:a8:df:0a:3e:ec:83:52:ab:20:ad:62:66:52:
71:aa:ef:9f:f5:ca:09:f9:59:a5:23:55:84:22:8b:e1:4f:ca:
ec:0c:85:d0:fe:32:7a:ea:e4:94:fa:9b:cc:9d:15:41:3d:06:
dd:ec:44:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net