Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/Q9DwS1QYdCXG_TZ3Zx_W06dNw9Q.roa
File: Q9DwS1QYdCXG_TZ3Zx_W06dNw9Q.roa (raw, json)
Hash identifier: PyoWrDBozM9pi7C6rpjZaVEl3kgNUqzqzcKl0+NVZC0=
Subject key identifier: 43:D0:F0:4B:54:18:74:25:C6:FD:36:77:67:1F:D6:D3:A7:4D:C3:D4
Certificate issuer: /CN=8c3bad6ae491643d075e21cba859ef28e26e3c79
Certificate serial: 01942067E86C1D34A6A70C2921CA3E2A67C6
Authority key identifier: 8C:3B:AD:6A:E4:91:64:3D:07:5E:21:CB:A8:59:EF:28:E2:6E:3C:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDutauSRZD0HXiHLqFnvKOJuPHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/Q9DwS1QYdCXG_TZ3Zx_W06dNw9Q.roa
Signing time: Wed 01 Jan 2025 05:47:48 +0000
ROA not before: Wed 01 Jan 2025 05:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58174
IP address blocks: 91.239.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:e8:6c:1d:34:a6:a7:0c:29:21:ca:3e:2a:67:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c3bad6ae491643d075e21cba859ef28e26e3c79
Validity
Not Before: Jan 1 05:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43d0f04b54187425c6fd3677671fd6d3a74dc3d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:18:a7:79:07:4d:a3:58:dc:e7:36:8a:28:17:
6e:f3:8a:a1:75:1e:50:fd:4f:00:5a:d3:0e:f3:a5:
76:bf:24:20:9b:d1:24:ef:00:81:d0:bc:c1:9f:91:
30:b7:91:e7:bd:ec:b1:39:e3:2e:89:43:7c:90:2a:
d8:49:b0:0f:e0:3a:76:c8:a6:f2:2a:bc:4d:65:e5:
31:d6:db:55:72:54:3c:a9:4a:28:f1:4b:75:69:f7:
74:f2:d4:5e:5e:18:db:ac:8c:d6:af:01:86:9d:0e:
f6:4d:e5:b8:57:9c:9d:1d:9e:66:df:2f:71:ee:af:
d8:c2:65:68:39:f3:6d:6d:6a:f1:24:9a:c8:66:88:
74:f9:e9:74:16:93:26:a5:7a:ec:2c:1e:a4:d4:3d:
b9:59:0c:fe:c1:fe:65:4b:22:e7:83:1a:e2:8d:a2:
b6:fc:cb:e6:30:1b:4c:f4:2c:c3:5a:13:22:52:cb:
a5:bb:19:e5:bc:31:41:1a:84:4e:03:2f:97:27:05:
57:5b:ba:ec:d0:78:d8:bb:62:fa:8b:15:a6:51:ba:
de:f8:de:1d:0b:15:60:96:2e:13:ab:94:56:79:3e:
56:db:80:c0:0f:91:1b:c2:07:de:b9:5e:26:90:7d:
9a:46:6e:55:eb:70:69:df:bd:21:9a:e5:9a:7e:4b:
c8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D0:F0:4B:54:18:74:25:C6:FD:36:77:67:1F:D6:D3:A7:4D:C3:D4
X509v3 Authority Key Identifier:
keyid:8C:3B:AD:6A:E4:91:64:3D:07:5E:21:CB:A8:59:EF:28:E2:6E:3C:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDutauSRZD0HXiHLqFnvKOJuPHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/Q9DwS1QYdCXG_TZ3Zx_W06dNw9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/jDutauSRZD0HXiHLqFnvKOJuPHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.123.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:6e:6b:ed:1a:39:3e:dc:63:04:77:da:63:63:79:4a:69:8f:
9c:28:35:49:0c:55:2a:7e:e8:7b:71:7d:6d:a2:46:f5:b2:cf:
23:33:b0:17:4d:c4:e5:0f:1f:4c:30:05:f0:28:9e:8e:0b:5d:
fd:b6:1a:fa:23:a6:8f:41:f5:db:9a:fb:a5:1a:e5:98:a5:51:
a2:0b:4e:da:3c:49:72:38:e7:16:6f:8b:7c:c1:eb:36:f1:38:
ce:d4:91:72:e4:de:ce:60:1b:45:40:8f:47:7a:eb:f7:b3:00:
82:6e:44:0f:80:1e:e9:92:e2:fe:a6:a9:d1:37:aa:24:3d:3f:
78:17:d0:fc:4f:05:08:d7:9a:88:10:af:9b:0a:8a:06:34:7c:
8a:9d:3e:40:a6:e6:5a:cc:dc:de:a8:fd:9c:b1:21:f9:d3:93:
8a:ec:57:32:fc:be:f1:30:5d:4f:32:a7:5a:40:67:94:31:22:
c2:6e:42:4a:54:01:f7:63:5e:84:76:88:d7:f7:1e:7e:ad:7c:
d2:83:97:7f:28:31:d0:27:16:19:ec:d0:7d:db:13:69:fb:d6:
36:0d:3b:9b:2a:2d:fa:6c:7b:14:3a:ed:b7:4f:fd:31:2c:63:
8a:3a:a0:91:a4:bb:d2:3e:35:bc:fd:6c:85:b8:0e:ab:b6:03:
ca:f3:dc:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:30:52 2025 by rpki-client