Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/dP48VWalcUAAFfcn9eWWeMKf0-w.roa
File: dP48VWalcUAAFfcn9eWWeMKf0-w.roa (raw, json)
Hash identifier: 1XMmQlTq3rn/vph5sokkv8eSVZlOdVkw7fiia74kGx4=
Subject key identifier: 74:FE:3C:55:66:A5:71:40:00:15:F7:27:F5:E5:96:78:C2:9F:D3:EC
Certificate issuer: /CN=d19317d27239dc7b0d54133be1aa65c9dc01f434
Certificate serial: 019422FBF812766B85DDE38658D0B966F7D7
Authority key identifier: D1:93:17:D2:72:39:DC:7B:0D:54:13:3B:E1:AA:65:C9:DC:01:F4:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ZMX0nI53HsNVBM74aplydwB9DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/dP48VWalcUAAFfcn9eWWeMKf0-w.roa
Signing time: Wed 01 Jan 2025 17:48:45 +0000
ROA not before: Wed 01 Jan 2025 17:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48642
IP address blocks: 91.197.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:f8:12:76:6b:85:dd:e3:86:58:d0:b9:66:f7:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d19317d27239dc7b0d54133be1aa65c9dc01f434
Validity
Not Before: Jan 1 17:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74fe3c5566a571400015f727f5e59678c29fd3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cc:e4:2c:0c:56:45:de:2a:77:14:20:8f:26:
8d:4a:c5:72:15:3b:33:a2:8e:6d:fc:44:a8:bb:1c:
68:95:5a:80:cc:84:5c:08:f6:00:93:53:70:9e:15:
18:9f:aa:19:1c:24:51:45:8f:24:37:a1:02:64:e6:
a5:1f:3a:55:9d:b7:b1:09:d9:3a:39:b5:0e:dc:08:
19:ae:ff:70:e0:04:ac:7a:b2:74:ed:31:a7:e6:2c:
eb:db:38:40:fa:7d:27:25:2c:4c:66:12:83:6a:c9:
5d:64:6b:00:a9:a4:ee:e9:b8:47:d8:69:5f:c4:6e:
aa:46:8b:9e:e8:db:36:09:70:66:ae:25:9f:41:d0:
5c:61:01:69:64:9b:90:54:21:c0:3a:6e:0d:ec:d9:
0b:ea:38:99:7e:09:4e:2c:8e:47:33:f0:cf:35:67:
77:54:29:08:8a:50:36:93:78:43:e7:b4:e0:e5:21:
76:36:d6:49:bb:b8:94:b8:04:88:7a:7b:da:8b:59:
5f:d6:3f:be:a9:24:b5:63:3f:1b:06:fb:d9:ce:98:
7a:28:5d:0e:8d:dc:43:68:de:15:fc:8f:b4:0b:6b:
61:80:fe:d6:e5:69:51:c2:1e:e9:1c:1c:87:60:78:
e8:2f:2f:01:3e:69:71:68:43:57:b0:12:bb:70:61:
29:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FE:3C:55:66:A5:71:40:00:15:F7:27:F5:E5:96:78:C2:9F:D3:EC
X509v3 Authority Key Identifier:
keyid:D1:93:17:D2:72:39:DC:7B:0D:54:13:3B:E1:AA:65:C9:DC:01:F4:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ZMX0nI53HsNVBM74aplydwB9DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/dP48VWalcUAAFfcn9eWWeMKf0-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/0ZMX0nI53HsNVBM74aplydwB9DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.204.0/22
Signature Algorithm: sha256WithRSAEncryption
46:70:36:90:97:43:75:31:65:bd:72:c3:4c:bf:dc:4f:4b:b9:
f7:4d:ed:f8:ac:ed:9a:2c:a2:96:72:a2:a0:30:b6:4d:3e:cd:
1d:a1:cb:4a:7e:65:14:91:e9:b3:fd:30:25:95:fa:2c:4c:80:
57:e1:67:43:e4:40:88:2c:5b:f1:1d:ce:ad:a8:1e:78:35:47:
ae:b8:97:f6:df:c5:dd:cb:93:ca:ed:13:3e:5c:ab:ab:cf:ad:
3a:31:92:96:e8:3b:51:18:33:03:12:82:ea:f6:d1:cb:af:3c:
eb:6f:92:97:bd:14:69:0b:92:8e:a6:37:ce:f2:b0:2c:78:6d:
b6:ed:6a:e9:5a:68:61:ab:1a:74:e7:2d:44:33:4a:a3:c3:ae:
40:6d:63:de:bb:65:c9:34:4a:bf:ba:fb:fb:81:c2:2f:0f:25:
35:b0:6b:2a:06:73:45:85:b1:75:d3:94:3c:d7:78:31:1e:c5:
90:83:69:01:9d:27:bf:6c:9e:40:b9:db:3c:b6:34:bc:51:9d:
26:7b:90:46:f4:dc:8f:89:96:a8:9f:c4:9c:5c:ea:c4:42:28:
f5:e5:49:65:18:66:63:bb:75:21:eb:d3:6f:42:6f:97:3a:70:
61:bf:a4:df:c3:c0:5b:cc:11:61:49:a3:9f:fb:80:77:ed:a5:
7d:4b:3f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:06 2025 by rpki-client on console.sobornost.net