Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6d38ee-0ca6-4e1f-9a87-6450985129aa/1/7pVkmL-jdnbkWlbELGgyW8EHdt0.roa
File: 7pVkmL-jdnbkWlbELGgyW8EHdt0.roa (raw, json)
Hash identifier: DU5h0vvFcQ01BjwqW/B1d1o5KMvDDgKIerqeep6HVn4=
Subject key identifier: EE:95:64:98:BF:A3:76:76:E4:5A:56:C4:2C:68:32:5B:C1:07:76:DD
Certificate issuer: /CN=f69b35b084608cd1c2594bbaa5e4693760050037
Certificate serial: EF98AE
Authority key identifier: F6:9B:35:B0:84:60:8C:D1:C2:59:4B:BA:A5:E4:69:37:60:05:00:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9ps1sIRgjNHCWUu6peRpN2AFADc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6d38ee-0ca6-4e1f-9a87-6450985129aa/1/7pVkmL-jdnbkWlbELGgyW8EHdt0.roa
Signing time: Sat 01 Jan 2022 05:58:05 +0000
ROA not before: Sat 01 Jan 2022 05:58:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 91.193.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15702190 (0xef98ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f69b35b084608cd1c2594bbaa5e4693760050037
Validity
Not Before: Jan 1 05:58:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee956498bfa37676e45a56c42c68325bc10776dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:a3:c4:48:80:aa:78:2a:f8:68:11:6d:0c:
e4:f8:c3:56:3a:45:4e:11:02:5a:a1:b5:94:69:d7:
ed:03:e8:61:eb:02:08:72:de:31:0c:4f:9f:91:81:
47:f6:88:4b:e5:80:38:e5:1c:db:7b:2d:44:56:3f:
19:59:c8:c5:8b:fe:dc:5e:c9:b8:79:9e:b4:9e:09:
83:69:d7:03:fe:6e:d8:36:b8:03:77:76:a5:bd:0b:
10:7d:b5:3e:82:26:ad:33:c0:6b:ad:2a:63:dc:de:
cd:f3:97:f1:a8:4e:f8:2f:f2:e9:a6:cd:b1:0b:23:
24:0a:3f:27:48:25:ee:7e:92:64:3f:d4:c5:80:41:
33:03:14:29:ab:a3:16:49:e1:99:4c:5e:78:69:d6:
65:b5:1c:ad:8a:42:10:95:da:4b:d1:47:e6:a1:15:
ae:d0:88:2d:44:ed:e7:d7:6b:6c:8b:82:16:d9:99:
1d:58:37:c6:18:f4:f3:2c:79:34:77:a8:a7:81:f6:
7c:05:75:87:f3:2f:1b:de:d8:f4:c6:50:12:8d:c1:
6b:22:b2:36:3d:3f:84:02:f3:ba:1c:8c:a4:79:b7:
f0:d9:5b:83:0a:3e:30:93:f8:1f:14:52:ec:c6:2d:
34:5c:24:30:2b:a0:50:07:66:28:16:77:52:52:6d:
fd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:95:64:98:BF:A3:76:76:E4:5A:56:C4:2C:68:32:5B:C1:07:76:DD
X509v3 Authority Key Identifier:
keyid:F6:9B:35:B0:84:60:8C:D1:C2:59:4B:BA:A5:E4:69:37:60:05:00:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9ps1sIRgjNHCWUu6peRpN2AFADc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6d38ee-0ca6-4e1f-9a87-6450985129aa/1/7pVkmL-jdnbkWlbELGgyW8EHdt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6d38ee-0ca6-4e1f-9a87-6450985129aa/1/9ps1sIRgjNHCWUu6peRpN2AFADc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.114.0/24
Signature Algorithm: sha256WithRSAEncryption
87:38:fb:3a:89:c5:16:5c:c8:01:5d:7d:da:1b:2d:4e:8f:5b:
ec:25:a1:44:db:00:f0:9c:9a:86:59:f5:f9:6c:d6:ac:27:ec:
6a:e1:65:f5:f5:1d:08:f0:83:70:32:10:7f:d3:5c:c8:68:5f:
7e:4b:78:27:07:68:62:c7:01:62:a6:db:9f:33:7f:f3:1d:a2:
f7:4e:40:75:82:b2:66:dd:8c:4d:ec:44:64:8b:63:78:29:6a:
a7:16:42:20:08:52:23:59:ad:69:2e:60:10:0e:6c:00:99:6b:
10:fb:10:d6:fd:9b:24:5a:64:f2:83:ec:78:34:35:7f:55:c4:
fd:c8:ad:76:bd:dd:b2:c0:e4:d6:f7:63:d1:80:a5:85:e0:ae:
94:5d:33:cf:32:aa:0f:69:4d:6c:57:f9:04:41:4b:45:4f:af:
41:b5:31:b7:fd:d8:77:6c:dd:6a:38:8d:44:fc:22:fa:18:54:
f2:3d:f0:82:4c:05:0c:64:44:25:bf:3e:a3:14:5b:de:a8:3a:
bb:79:8c:69:78:21:81:11:64:32:20:b8:cf:30:c8:12:89:c5:
11:58:5c:01:2b:ee:7c:da:02:6f:38:a6:34:98:06:d0:13:62:
3d:57:72:02:3b:a0:d6:32:67:f4:5f:75:51:06:e4:1b:56:0b:
25:5a:33:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:35 2025 by rpki-client