Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/9a4cce-fd12-4707-be95-0a246ab05946/1/2o-thtsUmdvMYHtv9qjNUTl4ar8.roa
File: 2o-thtsUmdvMYHtv9qjNUTl4ar8.roa (raw, json)
Hash identifier: lFf88qPAFyfJ0i5OxU8GOvf0pF7V0Wi7poD5MDkBh2U=
Subject key identifier: DA:8F:AD:86:DB:14:99:DB:CC:60:7B:6F:F6:A8:CD:51:39:78:6A:BF
Certificate issuer: /CN=b522787599f1798e245f993f8cb8182f99cfd104
Certificate serial: 01958ADCA0EE62F39F90F1B1E09B63D4E2D6
Authority key identifier: B5:22:78:75:99:F1:79:8E:24:5F:99:3F:8C:B8:18:2F:99:CF:D1:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSJ4dZnxeY4kX5k_jLgYL5nP0QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/9a4cce-fd12-4707-be95-0a246ab05946/1/2o-thtsUmdvMYHtv9qjNUTl4ar8.roa
Signing time: Wed 12 Mar 2025 14:57:49 +0000
ROA not before: Wed 12 Mar 2025 14:57:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197840
IP address blocks: 91.227.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8a:dc:a0:ee:62:f3:9f:90:f1:b1:e0:9b:63:d4:e2:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b522787599f1798e245f993f8cb8182f99cfd104
Validity
Not Before: Mar 12 14:57:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da8fad86db1499dbcc607b6ff6a8cd5139786abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ac:49:05:6c:df:06:a8:78:1d:2a:6c:6a:86:
d3:0d:fa:24:62:8d:40:77:6c:f9:12:1f:27:8e:2e:
99:87:89:07:c4:d3:c1:e0:18:17:97:36:23:88:11:
40:98:98:17:e7:49:a6:09:96:06:7f:a0:80:c8:dd:
1f:4f:3e:fa:8c:0a:5e:23:2e:cd:b5:fd:f7:2b:da:
fb:1c:3a:19:4c:b3:94:61:c0:a5:94:b1:26:c2:e1:
43:5d:c6:3a:d3:dd:f7:3c:44:6b:26:47:19:6f:7e:
99:cc:8f:c3:e3:f3:78:78:e7:53:e2:9c:77:14:9c:
a7:d8:3f:ff:b7:fd:5e:ba:2f:1d:d6:82:a5:67:be:
3b:88:1e:57:7f:60:c3:fa:e8:10:db:a6:39:84:63:
bf:65:6b:27:02:d7:e5:df:41:b7:e3:02:71:17:cc:
c9:8f:45:57:cb:15:db:ca:cd:e8:41:4e:f4:dd:fe:
a0:6a:b3:4a:68:59:db:12:6d:c0:6e:5d:ca:5c:8e:
f6:de:c0:2b:99:95:9f:bf:28:68:e1:b7:19:fc:aa:
35:23:ad:7e:ac:f0:15:5a:ea:ee:d9:8d:38:3d:e2:
4f:af:b5:67:6b:e2:68:34:f6:21:75:ef:ce:fb:57:
5b:3f:01:16:86:18:ac:74:20:c4:0b:ba:49:71:f4:
dc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8F:AD:86:DB:14:99:DB:CC:60:7B:6F:F6:A8:CD:51:39:78:6A:BF
X509v3 Authority Key Identifier:
keyid:B5:22:78:75:99:F1:79:8E:24:5F:99:3F:8C:B8:18:2F:99:CF:D1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSJ4dZnxeY4kX5k_jLgYL5nP0QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9a4cce-fd12-4707-be95-0a246ab05946/1/2o-thtsUmdvMYHtv9qjNUTl4ar8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9a4cce-fd12-4707-be95-0a246ab05946/1/tSJ4dZnxeY4kX5k_jLgYL5nP0QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.216.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:db:ca:b3:32:c2:6e:75:ce:1e:f2:b9:07:60:5d:d8:87:19:
13:0f:a9:f3:b8:9b:e7:ec:d7:7e:c9:7d:c5:de:95:99:bf:c2:
5c:31:fb:98:36:c1:a1:ac:15:92:a1:43:67:8f:47:f6:8e:6b:
e4:7d:cb:fd:98:e6:fc:cc:1d:35:38:6f:04:75:de:b7:30:73:
ef:57:e8:a6:dd:e5:01:3c:b6:be:10:09:8a:c9:2d:fe:bc:7e:
9e:9a:9f:6c:aa:fa:a9:d1:26:5d:0f:ee:52:73:d0:af:16:4c:
b1:3d:d9:24:f5:b4:5d:bb:79:25:c3:b9:26:ef:52:10:3a:ce:
8b:e5:af:4c:67:f4:cf:77:fb:01:9b:a5:08:4f:d6:3d:c1:15:
2e:74:38:75:f0:0c:83:49:08:1d:d8:9b:c1:b7:f1:53:22:5b:
66:40:35:6e:36:a8:aa:6f:d5:36:a4:e6:68:1a:4a:b5:ee:2e:
40:a1:9e:6e:30:2a:6d:ae:42:b4:f2:d5:f8:19:65:3a:98:88:
21:67:d0:d5:28:32:81:d4:70:45:a7:40:f7:ca:b7:ff:4a:e1:
f7:6a:b3:a2:aa:d7:76:ed:db:a4:dc:d2:74:fb:13:f2:3c:90:
ac:f3:56:62:86:03:b9:85:47:07:f2:a7:e1:1c:f0:1e:ae:49:
d7:1e:ab:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net