Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/KBd5kN60RABk_aPy5jhjXA2d4rM.roa
File: KBd5kN60RABk_aPy5jhjXA2d4rM.roa (raw, json)
Hash identifier: F9wyU/gh7GBbrKA9V2nWxFNNYZNmutVEH+bSjiNICq0=
Subject key identifier: 28:17:79:90:DE:B4:44:00:64:FD:A3:F2:E6:38:63:5C:0D:9D:E2:B3
Certificate issuer: /CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Certificate serial: 0194236A41739A1FAF0A1580708641FBF198
Authority key identifier: 62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/KBd5kN60RABk_aPy5jhjXA2d4rM.roa
Signing time: Wed 01 Jan 2025 19:49:13 +0000
ROA not before: Wed 01 Jan 2025 19:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56452
IP address blocks: 91.223.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:41:73:9a:1f:af:0a:15:80:70:86:41:fb:f1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Validity
Not Before: Jan 1 19:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=28177990deb4440064fda3f2e638635c0d9de2b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:32:e8:96:83:99:66:16:d8:c3:bb:f0:db:
77:f1:7a:c5:4d:e9:dc:9c:d8:b0:ae:7c:75:00:07:
d1:98:3a:05:0d:81:07:b3:03:52:30:73:df:08:ff:
1e:3e:e7:be:8e:c9:b8:64:e0:0a:13:95:a8:64:98:
aa:ea:1a:90:a4:4c:82:7b:78:95:91:9f:79:7b:c0:
43:e7:76:3f:cc:99:d6:27:d2:30:de:ec:e8:2a:9a:
56:77:25:7d:95:29:92:53:be:52:67:aa:f2:6d:e4:
69:84:be:0d:3d:f9:23:dc:76:fd:a5:4a:13:6f:97:
71:d9:69:6d:a8:26:05:94:b0:65:6a:82:8b:5b:16:
0f:08:15:00:c7:66:19:56:2c:c6:a5:e6:e5:b3:2c:
b7:88:b9:3d:eb:49:27:df:39:dd:cd:be:01:3d:d4:
b3:b5:b3:a2:c1:6e:1b:e5:67:3f:75:be:57:31:c4:
0e:9e:97:07:1b:8b:7a:88:d2:74:21:45:54:b1:d7:
32:9f:cf:d6:77:3f:e3:03:9b:28:32:1d:19:2e:c3:
bf:18:1b:af:06:59:2f:41:fb:c1:9f:8b:d0:95:42:
c8:d0:c7:fe:5f:af:34:68:d7:c1:b7:aa:d9:ee:52:
a9:2b:20:89:75:f7:24:2a:98:ec:c6:3a:90:7e:f2:
6b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:17:79:90:DE:B4:44:00:64:FD:A3:F2:E6:38:63:5C:0D:9D:E2:B3
X509v3 Authority Key Identifier:
keyid:62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/KBd5kN60RABk_aPy5jhjXA2d4rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.162.0/24
Signature Algorithm: sha256WithRSAEncryption
37:c8:86:2b:64:0f:3d:bb:df:07:d9:f4:48:35:c9:5d:e6:22:
71:11:d2:45:a4:51:a4:3a:05:87:01:dc:52:26:bb:db:fd:08:
9a:5a:aa:29:04:9c:8b:f3:c6:02:f5:67:af:cb:dd:44:2e:e1:
8e:e6:cf:a6:48:14:50:78:a3:e3:c1:46:74:24:de:c1:3f:7e:
07:bc:74:ae:53:64:55:da:45:c7:b9:70:62:16:52:42:54:9e:
ce:35:f8:69:ae:f5:4c:16:5d:93:02:c8:3f:18:70:e1:02:f2:
92:4c:1d:cc:fb:23:45:7c:86:3a:18:f0:d2:ba:50:20:af:44:
82:c1:96:ce:b7:3f:74:24:0e:95:f2:0b:12:1b:07:0e:d4:0c:
dd:a4:fa:ed:bd:8b:39:9b:36:85:cf:eb:69:5e:25:59:2a:da:
a0:5b:58:cb:3d:b7:87:78:c1:f6:58:cc:cb:6d:2e:d5:d6:a9:
7c:c7:c1:1d:16:a8:9f:04:cf:ab:bd:4c:9e:6b:55:c8:db:02:
4e:0f:84:5e:05:a6:02:a6:cb:69:b1:39:5f:03:eb:08:4b:1b:
42:98:b1:b7:4f:66:ac:45:15:07:c4:5b:49:8e:ea:0a:96:e6:
d7:55:66:b9:4a:e3:a2:fd:d6:10:2b:62:e4:d3:7c:bd:6a:62:
b7:f7:bf:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:13:43 2025 by rpki-client