Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/M3l6n6c1Uj_n_JgR8ZrfrLCPmEs.roa
File: M3l6n6c1Uj_n_JgR8ZrfrLCPmEs.roa (raw, json)
Hash identifier: 3gSLeL85QT+qMeEBuaLQCojXzGB+ZrRAItjya+Tdf3Y=
Subject key identifier: 33:79:7A:9F:A7:35:52:3F:E7:FC:98:11:F1:9A:DF:AC:B0:8F:98:4B
Certificate issuer: /CN=c9e0e4c9acbf701f930149b325ce042cf9f92a59
Certificate serial: 01942143F5EF791B89D2519DC2EC2CEFA8E3
Authority key identifier: C9:E0:E4:C9:AC:BF:70:1F:93:01:49:B3:25:CE:04:2C:F9:F9:2A:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yeDkyay_cB-TAUmzJc4ELPn5Klk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/M3l6n6c1Uj_n_JgR8ZrfrLCPmEs.roa
Signing time: Wed 01 Jan 2025 09:48:09 +0000
ROA not before: Wed 01 Jan 2025 09:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 91.213.126.0/24 maxlen: 24
2a12:7280::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:f5:ef:79:1b:89:d2:51:9d:c2:ec:2c:ef:a8:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9e0e4c9acbf701f930149b325ce042cf9f92a59
Validity
Not Before: Jan 1 09:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33797a9fa735523fe7fc9811f19adfacb08f984b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:18:35:db:43:c3:e0:30:43:b9:d4:90:97:dd:
e5:05:3d:ea:8a:a9:73:8a:2b:ce:a4:1d:b8:04:47:
9c:fd:b7:9f:1b:70:e0:8a:f5:c4:84:f0:0f:a6:f8:
6f:8c:09:14:b3:92:6f:8a:c9:e1:6f:51:aa:f1:34:
ec:86:79:04:ab:85:45:8d:02:46:97:b0:94:0c:69:
41:a8:ee:70:ea:0a:98:42:83:1e:42:d0:48:f4:0e:
9a:00:4c:a3:19:e3:93:0d:2e:61:17:67:b3:f8:5e:
8a:e8:fc:10:a0:c0:b2:60:e5:e2:5f:ae:1f:4b:fe:
4b:c0:6b:a2:85:f7:ad:78:e2:10:8f:2a:ae:ab:e7:
51:08:75:ef:7b:16:ce:b1:8f:2e:70:ad:32:dd:cb:
7f:d3:7e:34:93:8d:21:d9:20:74:59:15:fb:0f:d4:
33:c6:99:4f:77:57:ac:91:b4:3f:6a:16:a3:fd:18:
ba:11:84:87:e4:a2:06:35:f4:c9:f7:d0:7f:ad:d5:
d5:18:2d:0d:87:2c:d9:7f:12:46:3f:3f:67:58:7d:
76:35:a6:2a:8b:16:41:2d:c7:d4:ce:9c:e7:0f:38:
c7:91:75:cd:c8:fb:f4:be:98:13:b3:86:1f:0f:45:
13:ef:0b:82:cf:bd:94:24:cf:ab:42:fe:a6:a9:9e:
43:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:79:7A:9F:A7:35:52:3F:E7:FC:98:11:F1:9A:DF:AC:B0:8F:98:4B
X509v3 Authority Key Identifier:
keyid:C9:E0:E4:C9:AC:BF:70:1F:93:01:49:B3:25:CE:04:2C:F9:F9:2A:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yeDkyay_cB-TAUmzJc4ELPn5Klk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/M3l6n6c1Uj_n_JgR8ZrfrLCPmEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/yeDkyay_cB-TAUmzJc4ELPn5Klk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.126.0/24
IPv6:
2a12:7280::/29
Signature Algorithm: sha256WithRSAEncryption
73:e5:8e:4c:ac:d5:09:12:07:aa:88:c3:3e:9e:df:a2:b6:25:
5f:db:8a:1b:df:8a:91:21:06:4e:82:ed:17:60:04:86:d5:54:
87:c8:dc:79:db:94:88:09:e3:fb:9c:8f:ba:1a:6d:03:6d:7d:
fd:34:c7:26:99:5e:79:ee:1d:c5:49:7b:98:1a:99:6b:0e:67:
82:ef:c0:b9:e4:3f:34:a9:89:fc:d3:8e:1b:4a:13:90:15:a7:
a1:9d:30:66:90:0d:02:d8:14:f7:6b:bd:c2:dc:ea:9f:d6:f2:
a3:cf:9c:03:87:4d:db:20:b8:a8:18:92:a0:5b:f0:c3:5b:98:
0b:bd:94:0a:03:fa:d9:4d:3a:a4:0c:21:fc:3e:69:a0:d3:ee:
d3:ef:af:7b:bd:9d:4f:f8:32:bc:a8:c2:09:fa:dc:9f:22:24:
42:64:a6:3f:75:35:06:08:17:be:fd:9b:12:08:6a:a3:ad:4a:
de:a5:45:e9:d4:4d:87:f1:d4:01:c1:67:14:e7:38:1d:a9:6f:
1c:64:cd:56:eb:f9:f0:9d:5c:c9:58:c5:73:72:c6:3d:c3:7b:
17:ca:2c:a6:95:91:8b:f1:38:86:9a:4f:c0:64:dd:65:ad:46:
f3:46:c8:da:57:6b:8c:d7:07:4b:7e:19:f8:4c:32:4a:be:49:
32:a4:ea:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:40:40 2025 by rpki-client