Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/3QxI6To-uBD8VNFlEhdssjXoWrI.roa
File: 3QxI6To-uBD8VNFlEhdssjXoWrI.roa (raw, json)
Hash identifier: HmjDXwUNgzxXtwwpdO5VKAGMQ32bThuniB8/ERpMEkQ=
Subject key identifier: DD:0C:48:E9:3A:3E:B8:10:FC:54:D1:65:12:17:6C:B2:35:E8:5A:B2
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 019421B1B12C807735EC6E8656F8BBAAD36E
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/3QxI6To-uBD8VNFlEhdssjXoWrI.roa
Signing time: Wed 01 Jan 2025 11:48:00 +0000
ROA not before: Wed 01 Jan 2025 11:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41646
IP address blocks: 89.46.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:b1:2c:80:77:35:ec:6e:86:56:f8:bb:aa:d3:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: Jan 1 11:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dd0c48e93a3eb810fc54d16512176cb235e85ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3d:56:4a:b2:50:e0:cb:3d:ef:33:68:e3:e9:
13:dd:7e:8b:6d:f9:b5:80:9e:a1:6a:58:17:2b:30:
f3:66:fd:d4:27:fc:6d:ed:55:57:5e:34:17:3b:c8:
ca:ef:72:ba:b3:19:f1:61:08:5d:53:e6:6c:9f:77:
ff:bd:83:25:2b:0a:0d:7d:7e:6e:b2:02:de:ea:ca:
86:4a:a0:62:2f:e1:09:bb:00:a5:8f:88:47:19:ea:
82:11:42:6e:e7:91:92:b0:d7:c6:a2:53:56:a7:15:
13:c8:9c:48:7f:73:32:5f:3c:1c:71:ba:b8:ff:79:
ce:98:b1:c1:65:2b:78:c6:a1:94:a5:c7:54:95:86:
2f:e6:41:1d:f0:83:cf:d1:f2:0c:5f:c7:0a:69:17:
0a:cf:82:fa:0b:0b:70:ba:1c:c4:3a:0c:a8:b5:b5:
18:78:63:91:ff:39:32:37:b5:b3:f6:91:05:bf:d5:
24:cb:7f:20:8e:51:21:87:6f:ce:d2:7b:34:b2:01:
6e:f7:28:7a:b6:07:c3:6a:1e:35:90:69:a9:7e:42:
1a:99:0e:7f:ec:2f:f9:18:35:51:2d:92:35:a0:85:
8b:04:ec:51:42:5b:cf:f6:23:2c:47:6b:70:5c:b2:
42:37:7e:4e:5b:72:78:76:b8:12:22:78:0f:ef:ce:
4a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0C:48:E9:3A:3E:B8:10:FC:54:D1:65:12:17:6C:B2:35:E8:5A:B2
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/3QxI6To-uBD8VNFlEhdssjXoWrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.38.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:39:33:86:bd:e0:d2:55:91:33:fe:03:2a:ad:f8:83:df:62:
22:0c:8e:73:a7:97:22:39:0d:05:ea:d1:46:65:94:ea:cf:c0:
d1:3a:65:4c:d9:79:be:96:a7:32:70:2b:5d:57:13:82:c9:63:
c9:6a:6a:24:27:ca:68:88:8b:0c:59:9a:e0:84:3d:04:6b:e0:
90:b9:0b:77:eb:17:7f:ac:90:72:d3:9d:14:76:9b:46:bf:70:
c2:4e:8f:c5:1d:6d:d5:ba:d7:de:b6:eb:33:c1:30:c3:63:eb:
04:1a:b3:ba:ef:27:80:bc:bb:e0:9f:57:e1:49:21:16:09:87:
d0:fe:5f:45:54:49:b3:a4:10:56:23:f4:04:9b:74:ad:a8:c0:
dd:4c:cc:74:93:19:1f:df:1f:a0:33:cf:e5:97:4b:14:67:fd:
3d:13:32:d9:8a:b4:e2:2e:b3:71:95:23:86:ef:de:fe:ce:27:
9a:c1:81:18:02:82:a2:4b:78:fc:be:2b:02:d6:32:b6:f7:ed:
fd:21:f4:c8:eb:d9:13:49:1d:4d:ae:da:14:38:f7:90:7b:a2:
09:41:ad:77:34:db:9d:a6:42:9b:8b:e9:8d:26:4e:47:ae:cc:
7c:ed:a0:9d:cd:09:43:1c:e1:2d:33:c3:0b:a6:37:58:dd:2f:
9e:3e:c5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:33 2025 by rpki-client on console.sobornost.net