Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/9d7886-34dc-4998-9717-f11c6e06488f/1/Z6Wkv7AZrSmiWgbMuz5hZVggR7E.roa
File: Z6Wkv7AZrSmiWgbMuz5hZVggR7E.roa (raw, json)
Hash identifier: MRaF6vDhyEMplwKKtwCPw92vpK44c5JniyQIX+roRzQ=
Subject key identifier: 67:A5:A4:BF:B0:19:AD:29:A2:5A:06:CC:BB:3E:61:65:58:20:47:B1
Certificate issuer: /CN=4166fc54e2d241f441ad03cc18e331bfe34a57ef
Certificate serial: 01942521BD798604FFB51758A5A84B4BAA88
Authority key identifier: 41:66:FC:54:E2:D2:41:F4:41:AD:03:CC:18:E3:31:BF:E3:4A:57:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWb8VOLSQfRBrQPMGOMxv-NKV-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/9d7886-34dc-4998-9717-f11c6e06488f/1/Z6Wkv7AZrSmiWgbMuz5hZVggR7E.roa
Signing time: Thu 02 Jan 2025 03:49:15 +0000
ROA not before: Thu 02 Jan 2025 03:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 196633
IP address blocks: 91.213.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:bd:79:86:04:ff:b5:17:58:a5:a8:4b:4b:aa:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4166fc54e2d241f441ad03cc18e331bfe34a57ef
Validity
Not Before: Jan 2 03:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67a5a4bfb019ad29a25a06ccbb3e6165582047b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6f:a1:bf:a0:e6:3d:64:b7:d7:d6:18:8b:f2:
45:01:b4:c1:67:ba:1d:18:95:69:cf:68:63:f6:0f:
ff:10:8e:73:bd:33:42:49:79:8d:c1:d3:fe:44:4e:
e8:0c:73:95:b4:9d:08:51:82:71:d4:d5:10:0c:12:
b7:85:2b:8d:66:30:c1:4d:1c:ac:40:ae:96:f0:1d:
ba:b1:24:fc:1b:d3:d7:d3:3d:b8:0d:13:71:70:07:
99:31:cd:e2:31:7a:03:01:e0:53:d3:62:70:ee:dd:
f8:28:63:46:0a:25:ed:17:64:96:f9:ee:94:bc:67:
88:b8:1b:42:36:a6:04:0a:b0:ef:0f:22:09:92:48:
6b:0b:83:9f:d6:02:5a:2b:08:54:de:3f:59:c0:37:
5f:9c:a7:9f:14:b0:95:bf:f0:ea:42:40:71:dd:a7:
52:6d:cc:64:cf:09:f7:b7:7d:fa:06:ab:25:9e:01:
30:1a:3a:f7:0d:99:12:ab:06:1f:9a:8d:23:a1:26:
b5:3c:f0:d3:74:6c:d6:99:46:57:81:a0:a5:f1:96:
d3:2e:49:24:d0:44:7f:dc:be:27:15:d5:0c:2d:f7:
5c:96:a9:b3:69:d4:60:e4:e1:9b:23:3a:2e:f3:ff:
90:42:7d:b8:53:73:9e:fe:4a:40:d3:f2:6b:96:77:
4d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A5:A4:BF:B0:19:AD:29:A2:5A:06:CC:BB:3E:61:65:58:20:47:B1
X509v3 Authority Key Identifier:
keyid:41:66:FC:54:E2:D2:41:F4:41:AD:03:CC:18:E3:31:BF:E3:4A:57:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWb8VOLSQfRBrQPMGOMxv-NKV-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/9d7886-34dc-4998-9717-f11c6e06488f/1/Z6Wkv7AZrSmiWgbMuz5hZVggR7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/9d7886-34dc-4998-9717-f11c6e06488f/1/QWb8VOLSQfRBrQPMGOMxv-NKV-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.82.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ab:1f:d6:75:d8:90:8e:ed:bd:b1:08:d3:21:40:62:2e:3b:
d4:93:22:36:4a:e0:7d:b4:ee:c9:86:8d:ec:f8:31:1a:02:74:
21:79:9d:5c:86:2c:6e:22:a5:fc:ff:3b:ff:e4:78:90:cd:39:
10:33:1d:af:96:bd:15:e1:84:bc:63:16:fa:67:ad:d6:b8:64:
ed:fe:66:40:1f:99:ca:f2:4a:b8:f8:f3:32:43:ea:02:10:24:
27:5c:fd:76:44:c0:2a:c3:60:44:e4:3e:f3:f3:f7:f1:83:8d:
b9:dc:42:ce:35:15:02:b2:0a:5f:b5:30:1e:b4:16:38:20:36:
c7:c7:d5:b2:22:ca:55:45:1e:2c:0a:16:c2:d3:75:da:95:80:
1e:10:ba:07:3c:c2:02:f8:bb:c2:8f:fe:7e:53:6c:3c:73:37:
b5:06:ca:39:30:ee:59:62:39:be:61:09:ed:c5:56:6b:1a:64:
f4:46:9a:60:89:15:8d:6c:6b:55:2a:ce:5e:8b:f0:41:8f:a0:
13:50:c2:d1:7e:b1:34:e4:99:41:63:a9:b7:4d:c3:98:67:75:
bf:f9:34:61:91:49:8f:9a:ba:58:de:dc:e4:02:6d:a7:1a:c4:
5f:24:33:1c:f3:12:c7:46:d0:f5:4c:47:68:88:54:c0:aa:4a:
5a:8b:fb:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:33:04 2025 by rpki-client