Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/9PUwFWX6MI5zmQ2Oq6gL-_qhrj0.roa
File: 9PUwFWX6MI5zmQ2Oq6gL-_qhrj0.roa (raw, json)
Hash identifier: 3b0NbUCvSpLrWF4vh/o6Yjp7ddJczpbBr1onafxnYgk=
Subject key identifier: F4:F5:30:15:65:FA:30:8E:73:99:0D:8E:AB:A8:0B:FB:FA:A1:AE:3D
Certificate issuer: /CN=e37a20a7f28a824f67315a566e59244aaa8c7d4a
Certificate serial: 01942369E1C615E6032638A95C034D719DDF
Authority key identifier: E3:7A:20:A7:F2:8A:82:4F:67:31:5A:56:6E:59:24:4A:AA:8C:7D:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ogp_KKgk9nMVpWblkkSqqMfUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/9PUwFWX6MI5zmQ2Oq6gL-_qhrj0.roa
Signing time: Wed 01 Jan 2025 19:48:49 +0000
ROA not before: Wed 01 Jan 2025 19:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56399
IP address blocks: 91.225.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:e1:c6:15:e6:03:26:38:a9:5c:03:4d:71:9d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37a20a7f28a824f67315a566e59244aaa8c7d4a
Validity
Not Before: Jan 1 19:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f4f5301565fa308e73990d8eaba80bfbfaa1ae3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:97:29:8b:b7:d6:38:b4:fb:65:28:38:5f:8f:
35:75:7e:32:cf:b8:8d:e2:97:a4:4d:d7:7f:21:51:
1d:a3:33:75:07:06:a9:1d:92:fd:e3:6f:47:b3:6e:
79:d7:a5:00:41:32:d2:1e:16:f6:6c:44:74:42:b5:
70:2c:bb:99:67:e0:62:59:9a:32:25:7f:6d:e6:69:
d9:2f:42:89:10:a1:22:ba:33:f5:c9:23:4d:7e:9d:
2b:02:34:29:30:ca:9b:ec:69:28:d4:10:7b:b2:8f:
03:8f:65:a7:bd:7b:d7:a5:b3:9b:61:37:62:61:c5:
0a:c7:a9:a9:00:5b:9c:28:2e:3c:ec:47:03:95:80:
4c:17:78:ca:e4:45:86:2e:d7:1c:e4:9c:82:3e:86:
d9:e1:e0:97:63:b1:d5:18:75:4c:89:71:70:ef:f9:
3e:fc:7e:c0:50:10:ac:d4:3f:6a:23:ee:37:b8:0e:
90:a9:9a:c6:b7:b4:5e:a5:11:2b:c0:83:fb:2c:16:
68:4d:9d:53:71:24:bd:2e:4b:13:e5:8b:64:8f:44:
14:6f:f7:04:97:98:88:e0:cb:d4:94:ec:53:a3:e6:
37:51:93:2f:4b:b4:36:08:31:ed:18:13:27:99:0a:
3c:4c:d1:67:e2:35:f3:78:82:1d:69:88:cb:26:a9:
9c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F5:30:15:65:FA:30:8E:73:99:0D:8E:AB:A8:0B:FB:FA:A1:AE:3D
X509v3 Authority Key Identifier:
keyid:E3:7A:20:A7:F2:8A:82:4F:67:31:5A:56:6E:59:24:4A:AA:8C:7D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ogp_KKgk9nMVpWblkkSqqMfUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/9PUwFWX6MI5zmQ2Oq6gL-_qhrj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/43ogp_KKgk9nMVpWblkkSqqMfUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.164.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:20:55:ac:c9:50:25:53:70:5b:50:44:07:40:34:30:c6:ee:
8d:4d:25:8d:e6:72:4a:33:ef:35:bd:39:8a:bb:fc:1c:73:9b:
21:06:4f:d4:d8:11:f5:ed:88:47:0c:db:e8:c3:fa:e4:40:66:
a2:59:36:8e:90:8f:29:e6:51:ee:3a:62:23:29:25:aa:d5:a8:
e4:36:f9:ee:dc:01:a0:cf:4f:60:32:17:e1:78:2e:eb:a0:c4:
83:0b:21:99:dc:75:c8:e8:70:6e:da:45:fa:d9:97:8a:ae:8f:
4c:ba:b3:09:91:49:ec:e5:9b:b3:b8:28:c0:6b:70:cf:e4:fd:
8a:f6:b4:b2:0e:01:08:60:75:ef:34:ca:cb:dc:d6:cf:5d:5c:
16:52:44:2c:38:a5:17:9c:75:2b:55:f2:87:ab:02:bc:e1:0d:
16:45:54:75:5a:f9:13:dd:3f:0f:e4:51:ea:f4:c5:65:f3:38:
12:16:f9:df:7e:d0:8c:c1:2a:02:36:42:39:51:72:98:6b:35:
f5:10:bc:aa:d1:52:bb:69:c0:90:2f:a6:57:82:e5:5e:23:8a:
98:f1:fc:8c:c9:45:d3:67:73:71:62:e9:9d:3d:32:38:91:e6:
8e:dd:35:f3:66:61:fd:46:73:78:54:f6:f0:68:ec:b3:d3:46:
f4:d3:bb:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:34:43 2025 by rpki-client