Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/t86JvVqlznTxitOJ7d33zaVsLCA.roa
File: t86JvVqlznTxitOJ7d33zaVsLCA.roa (raw, json)
Hash identifier: JCQIfkE8Ygo+m8Y3UKXmuBz2VfiU1JUPIm6nV05RPY0=
Subject key identifier: B7:CE:89:BD:5A:A5:CE:74:F1:8A:D3:89:ED:DD:F7:CD:A5:6C:2C:20
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 019598B3B81DDB0FCF4E12F602CD22B73491
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/t86JvVqlznTxitOJ7d33zaVsLCA.roa
Signing time: Sat 15 Mar 2025 07:27:49 +0000
ROA not before: Sat 15 Mar 2025 07:27:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 92.62.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:98:b3:b8:1d:db:0f:cf:4e:12:f6:02:cd:22:b7:34:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Mar 15 07:27:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b7ce89bd5aa5ce74f18ad389edddf7cda56c2c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c9:28:a6:94:2a:64:3c:4a:6b:0b:bf:0a:df:
11:69:72:55:de:c7:22:dc:80:a8:47:22:45:4d:b3:
54:f0:68:3d:7f:3d:fd:73:f7:c2:fb:e8:5d:58:b3:
47:b1:f9:cc:44:9d:68:3b:7e:14:ac:67:57:dc:c0:
0f:cf:04:e6:ca:a2:81:54:32:2e:9e:21:2f:86:6a:
2c:bb:1c:b3:a5:a0:12:90:be:35:90:b8:5c:bc:03:
5a:ea:0c:aa:da:6e:0e:c1:a8:6c:7b:a6:5b:45:30:
bc:88:27:af:8e:75:35:26:c6:14:3a:07:27:46:36:
86:77:ca:6a:47:9d:8b:c1:df:d0:ab:96:53:b2:15:
f8:c5:88:74:2c:86:94:54:e7:31:e9:a6:8a:b1:1b:
ea:db:0e:ed:77:3d:b7:62:b9:3f:1d:16:4f:9b:87:
83:5b:76:c3:11:0a:9e:80:6f:e2:dd:e3:ac:fb:8a:
a4:97:49:43:2b:8d:d7:f8:6d:8b:df:41:d0:f4:e0:
d9:21:46:9c:6d:35:80:03:e8:8e:ae:ce:04:47:4f:
14:15:81:d6:10:49:73:cf:86:8a:21:ea:f8:b3:1b:
08:ce:48:b2:3d:c7:18:0d:46:3d:f4:c7:8e:8d:1e:
a1:74:91:22:4c:fe:ad:5e:09:10:a3:bb:5a:e2:09:
6d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CE:89:BD:5A:A5:CE:74:F1:8A:D3:89:ED:DD:F7:CD:A5:6C:2C:20
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/t86JvVqlznTxitOJ7d33zaVsLCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.62.253.0/24
Signature Algorithm: sha256WithRSAEncryption
66:55:77:f9:83:97:e3:58:f4:99:7b:18:1e:b8:b8:a4:d2:08:
cf:66:8d:69:b3:ed:b3:c0:6f:a5:76:56:88:32:cb:dd:49:8a:
d3:a9:52:c2:70:16:7a:4a:a9:11:09:aa:69:73:84:82:b7:1f:
a3:93:3a:6e:f2:5e:8b:cf:fb:80:42:f3:2a:4c:7c:aa:e2:9f:
5f:d1:00:bb:a8:30:16:70:ff:30:8a:54:ed:7f:a1:56:cf:7e:
58:1b:dc:28:23:06:52:53:7f:a9:f0:ff:c0:eb:44:81:a5:bc:
78:5c:87:dd:5a:8d:98:11:4f:24:65:79:32:1e:60:e9:93:07:
02:6e:bd:17:a5:cd:90:a6:3a:f1:64:60:b4:1c:5d:51:c0:80:
01:ff:67:c6:91:e4:fc:00:94:ee:17:2d:6c:88:27:3d:75:5d:
04:f4:74:40:86:0d:e2:3b:79:59:f4:0a:ca:64:42:9a:79:e4:
71:8b:06:83:3e:b2:8e:57:33:c5:af:c1:24:d4:35:c4:2d:6f:
52:73:ca:65:3d:ad:91:f2:7c:e6:5b:c2:77:56:62:ff:65:cc:
55:2b:58:c7:fc:4c:4a:02:c5:c0:e9:2b:3c:aa:25:af:33:f3:
cb:1d:38:f2:60:ad:6e:a6:3e:93:f6:ab:8f:c8:65:fe:c8:9d:
8b:1c:45:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:46:36 2025 by rpki-client on console.sobornost.net