Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/6f8f43-1a19-410f-a2f3-e4ac706da148/1/M16uuK8RBAhq-G4iUMFVGeS4VOA.roa
File: M16uuK8RBAhq-G4iUMFVGeS4VOA.roa (raw, json)
Hash identifier: Tzmv8XvI8c70nplaF0O7on0dN4ghnMF0KoTaadCmRAo=
Subject key identifier: 33:5E:AE:B8:AF:11:04:08:6A:F8:6E:22:50:C1:55:19:E4:B8:54:E0
Certificate issuer: /CN=31184c9e8b6aa407c0d73ed0ba063075f6314e36
Certificate serial: 0194266AF47042DE8B7374AE2C3850048E3F
Authority key identifier: 31:18:4C:9E:8B:6A:A4:07:C0:D7:3E:D0:BA:06:30:75:F6:31:4E:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MRhMnotqpAfA1z7QugYwdfYxTjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/6f8f43-1a19-410f-a2f3-e4ac706da148/1/M16uuK8RBAhq-G4iUMFVGeS4VOA.roa
Signing time: Thu 02 Jan 2025 09:48:50 +0000
ROA not before: Thu 02 Jan 2025 09:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206409
IP address blocks: 89.107.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:f4:70:42:de:8b:73:74:ae:2c:38:50:04:8e:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31184c9e8b6aa407c0d73ed0ba063075f6314e36
Validity
Not Before: Jan 2 09:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=335eaeb8af1104086af86e2250c15519e4b854e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0c:c5:64:cd:8c:32:44:f9:b3:b0:02:b9:03:
c9:36:e0:23:2d:12:06:53:51:9a:fa:7c:26:8a:ab:
ca:ae:67:11:25:94:d1:54:46:1c:06:9b:77:a4:81:
c1:fc:3d:d1:3f:52:33:f4:1a:6d:4b:59:77:61:97:
a3:d3:80:b6:a4:86:c3:96:17:9a:d8:6e:c4:c1:22:
e6:55:21:17:23:b0:38:ef:72:c9:5c:4f:b5:3a:2c:
55:1d:36:13:34:10:cf:8b:b2:05:fd:84:b7:4e:8e:
63:cf:36:12:2d:de:a9:96:bc:1f:a3:47:42:6d:e0:
ec:7c:8a:b0:bb:4f:be:ba:d7:8c:ed:0d:1a:ae:7f:
82:72:24:4a:9f:67:3f:96:b5:ed:59:53:f5:c9:ef:
f7:ac:24:f4:3a:5b:a4:ae:cc:80:47:b5:9b:0c:fd:
d2:c2:65:e8:24:2b:4d:59:81:14:c4:18:21:ba:e5:
a4:d2:b7:28:01:07:8b:80:67:c5:77:dc:7b:48:a0:
99:51:35:20:6e:da:de:d0:be:53:12:66:b8:d4:68:
64:4e:5e:09:6d:96:41:00:2c:3a:1d:5c:d5:c7:ce:
b3:fa:04:af:3f:3a:bd:ca:20:81:d5:2c:da:59:52:
9b:46:d2:38:29:40:e9:df:2e:08:49:35:ed:81:15:
66:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5E:AE:B8:AF:11:04:08:6A:F8:6E:22:50:C1:55:19:E4:B8:54:E0
X509v3 Authority Key Identifier:
keyid:31:18:4C:9E:8B:6A:A4:07:C0:D7:3E:D0:BA:06:30:75:F6:31:4E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MRhMnotqpAfA1z7QugYwdfYxTjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/6f8f43-1a19-410f-a2f3-e4ac706da148/1/M16uuK8RBAhq-G4iUMFVGeS4VOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/6f8f43-1a19-410f-a2f3-e4ac706da148/1/MRhMnotqpAfA1z7QugYwdfYxTjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.13.0/24
Signature Algorithm: sha256WithRSAEncryption
74:26:46:de:2d:96:14:e3:08:d6:15:d7:ff:06:42:d9:a5:60:
82:70:27:d3:0e:c3:4d:bf:9b:9c:ab:09:13:1c:21:94:e6:d3:
fe:dc:95:2e:b1:fc:e0:2d:94:43:e0:5d:be:da:00:c7:ec:8f:
da:10:ec:27:be:3e:99:89:f0:ef:a7:bf:f1:92:ff:24:89:48:
7a:27:d6:78:00:4a:e6:24:70:34:eb:4e:6e:23:43:82:68:d3:
16:a3:fc:75:4b:df:2f:9a:8e:75:ef:0d:20:29:1f:35:af:82:
a9:b0:00:2a:e8:a3:de:25:e8:10:15:31:c8:a2:49:53:4b:70:
7c:b2:ea:52:30:e0:be:b8:be:2d:17:b3:1b:96:2b:b7:3f:13:
26:6c:0e:2c:81:0d:a6:8b:46:d2:b1:ed:95:47:e8:02:d7:ca:
f7:a9:60:ca:6d:1a:7e:84:5e:ae:6f:08:94:43:fd:a6:ca:33:
1c:46:bb:f1:07:d4:64:4b:cd:91:af:09:6b:ef:24:dd:d4:5a:
11:9f:f7:73:45:0a:fa:c5:d8:22:6b:cf:b0:62:87:d2:d0:bc:
91:c5:9e:ba:11:7d:b2:8a:5c:29:74:4a:13:b0:a4:c0:d6:51:
f9:d0:d7:b7:0f:61:3f:b0:2b:03:3a:c6:c8:48:1d:e6:7b:2a:
f5:f8:54:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:43 2025 by rpki-client on console.sobornost.net