Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/B6aGxUDSSan1LbYvufjyd3IQLUs.roa
File: B6aGxUDSSan1LbYvufjyd3IQLUs.roa (raw, json)
Hash identifier: dwUg5aBoWkQufw+jFxFp1hxo39/3rnNdCzkl0XPMgUM=
Subject key identifier: 07:A6:86:C5:40:D2:49:A9:F5:2D:B6:2F:B9:F8:F2:77:72:10:2D:4B
Certificate issuer: /CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Certificate serial: 019424B3B3B56217E9BB26B9D95B25FBCE9B
Authority key identifier: 21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/B6aGxUDSSan1LbYvufjyd3IQLUs.roa
Signing time: Thu 02 Jan 2025 01:49:04 +0000
ROA not before: Thu 02 Jan 2025 01:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51789
IP address blocks: 91.220.109.0/24 maxlen: 24
193.164.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b3:b5:62:17:e9:bb:26:b9:d9:5b:25:fb:ce:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Validity
Not Before: Jan 2 01:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07a686c540d249a9f52db62fb9f8f27772102d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b4:80:cc:ac:d3:e7:71:67:7c:38:5e:05:98:
04:02:b5:e3:19:a6:a4:dd:7f:b9:2c:74:85:2f:72:
5d:3d:a9:5b:da:12:30:00:7b:16:2e:94:7d:65:e1:
c4:84:31:49:3a:e8:7e:7c:de:74:30:31:17:82:4e:
2d:3c:b7:21:e7:70:9d:fb:38:87:1a:d0:a7:1d:e6:
bc:a9:4b:44:9c:12:fc:67:7c:66:81:8b:ea:1b:42:
04:e3:66:24:3c:ef:b9:0b:5e:12:34:e9:6d:df:43:
87:9f:9e:1a:af:a6:3d:a4:f1:e9:a9:f8:92:75:54:
c4:88:3f:6a:fd:12:24:8e:cd:a1:3b:42:c8:42:0a:
54:b3:e5:b3:a9:5a:3e:da:12:6e:1a:34:8b:74:02:
99:cc:e6:85:8b:54:2e:96:6e:cf:fc:af:e9:ab:7b:
57:1e:90:64:b8:a4:ec:4b:3f:c4:46:fa:c4:9e:fc:
4c:fe:25:8c:ad:e7:4d:34:ae:8a:85:c6:8a:cd:21:
8e:7b:3c:1a:b8:31:00:4d:08:df:bd:ff:b8:09:b8:
51:51:ac:28:b9:e0:07:e6:34:2a:9e:a0:44:bc:ca:
7b:d9:81:a7:e2:e4:2e:80:5a:4b:b1:42:23:9a:5d:
31:56:e6:fa:83:1f:6f:28:c4:b4:8b:f3:eb:d1:0b:
55:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A6:86:C5:40:D2:49:A9:F5:2D:B6:2F:B9:F8:F2:77:72:10:2D:4B
X509v3 Authority Key Identifier:
keyid:21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/B6aGxUDSSan1LbYvufjyd3IQLUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/IWCyscgp2Ik2sa2u7Jf90bQNQeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.109.0/24
193.164.152.0/24
Signature Algorithm: sha256WithRSAEncryption
75:9b:13:1d:7f:1c:e7:5c:6c:86:1c:2c:54:d4:38:bb:ed:45:
5c:dc:a9:9c:9a:81:eb:15:36:87:58:31:32:58:85:8d:77:7c:
18:bb:9e:05:cf:a6:af:2f:87:46:79:f0:83:eb:ad:e8:05:be:
a3:ff:ab:88:8e:d8:0e:d9:fc:5b:ad:a9:27:21:a8:e3:85:ef:
46:21:55:41:46:12:34:70:f1:f9:0f:5d:53:81:58:b3:fe:38:
fd:fb:73:55:4c:e9:b1:07:8a:63:53:b4:94:b1:ad:91:d5:f5:
20:f6:4d:61:46:69:fb:b6:74:31:dd:b6:fd:70:86:9c:5b:51:
37:62:b9:7f:e0:01:ab:dc:b3:df:e5:40:5f:9f:7f:03:9f:f2:
ac:0f:1f:89:60:2c:8f:fe:8a:22:90:dc:c2:ca:4d:b6:01:96:
74:f4:d6:5a:fe:8f:13:66:69:7a:09:8b:ab:ac:ae:b0:bd:4f:
49:d1:83:57:85:ed:0a:fe:1b:20:b4:a0:4c:0b:61:0e:82:ea:
ad:d2:af:f8:e7:8a:2c:cd:42:8e:19:21:ac:c1:10:f9:8c:d0:
26:84:27:dd:55:16:ed:db:12:ec:4c:60:7b:89:0d:c8:ce:7f:
2e:4b:7e:6b:79:d8:4e:fd:9c:d1:40:02:3a:91:ea:0f:39:57:
3b:70:db:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:06 2025 by rpki-client on console.sobornost.net