Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/bHywZIpT6KePzqd-y04f9_gubE4.roa
File: bHywZIpT6KePzqd-y04f9_gubE4.roa (raw, json)
Hash identifier: t+U3j3yQlSyR3lx2MZ9I+FTCYrv0GnN+ja0QXS2Zfac=
Subject key identifier: 6C:7C:B0:64:8A:53:E8:A7:8F:CE:A7:7E:CB:4E:1F:F7:F8:2E:6C:4E
Certificate issuer: /CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Certificate serial: 019426D9F7CFADF9DBED711B7A3369F554E6
Authority key identifier: 5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/bHywZIpT6KePzqd-y04f9_gubE4.roa
Signing time: Thu 02 Jan 2025 11:50:06 +0000
ROA not before: Thu 02 Jan 2025 11:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29646
IP address blocks: 89.30.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:f7:cf:ad:f9:db:ed:71:1b:7a:33:69:f5:54:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Validity
Not Before: Jan 2 11:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c7cb0648a53e8a78fcea77ecb4e1ff7f82e6c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:df:ee:0e:4f:46:e2:06:36:80:ab:05:46:bb:
9e:45:72:00:63:de:7d:c3:45:3a:dc:e5:70:52:5b:
64:0c:ba:84:36:ba:9a:62:97:00:8b:67:d8:38:05:
30:aa:42:d2:ff:d7:21:3e:07:ce:0b:44:04:9c:e1:
86:b7:a5:eb:f9:70:a9:1e:4b:d2:2a:a5:98:dd:7d:
26:30:2a:29:75:03:6d:a8:18:5a:d9:c4:9b:04:55:
30:49:69:25:fc:21:7d:79:52:6a:10:9a:78:61:6a:
a8:c4:4c:b7:2e:4b:97:26:77:f7:b2:9a:19:b0:62:
f7:68:07:de:1d:ef:78:4f:87:20:43:7f:07:3f:b3:
07:15:3e:b9:1c:28:15:61:e8:52:4d:2d:ea:1a:b4:
a8:32:f6:04:62:88:5f:44:65:5c:be:ba:87:d8:21:
9f:3b:06:5f:3e:77:b9:d0:df:df:42:b4:03:05:99:
b8:cf:b5:29:ed:5c:bc:15:c6:31:82:b0:71:5d:2d:
8b:09:4a:d2:64:c0:25:e4:7a:8b:78:bb:f4:59:59:
37:e0:2f:2b:0f:e1:75:71:85:c8:a1:2e:54:a4:92:
62:16:97:6a:0c:c5:8d:82:de:65:bf:db:5e:06:18:
d2:42:9a:c5:7c:50:71:18:d3:5d:f6:20:94:67:28:
07:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7C:B0:64:8A:53:E8:A7:8F:CE:A7:7E:CB:4E:1F:F7:F8:2E:6C:4E
X509v3 Authority Key Identifier:
keyid:5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/bHywZIpT6KePzqd-y04f9_gubE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.30.113.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:fe:f1:43:76:5c:7d:73:2d:23:44:ac:00:b9:63:ae:eb:f7:
1c:74:c2:e9:68:19:b7:5c:3e:65:79:27:4c:ca:86:2a:16:61:
53:f0:f1:4e:6d:cf:08:29:d5:e8:82:58:26:38:16:f3:3a:33:
b9:7d:3f:1d:a6:0f:9d:d7:e7:5e:ee:87:30:bf:9d:3e:ab:05:
08:ee:d1:1c:15:1c:40:7c:b5:70:a7:32:34:7d:10:9d:15:f9:
55:c2:85:68:be:14:48:c1:91:45:d1:a7:5e:22:8c:95:c6:62:
aa:21:51:4c:d2:28:69:33:cc:95:63:30:ca:69:40:7a:24:52:
f0:a8:82:2e:78:a2:91:3f:09:2c:07:e9:9d:03:60:e0:1c:e0:
5d:3e:89:8f:d9:9b:ee:5b:83:f1:b4:55:93:f0:ad:48:43:a3:
06:d3:98:ae:07:38:f2:ea:35:c8:cd:51:79:29:4e:57:b8:ee:
e6:56:37:18:d3:8e:12:a4:f3:57:a7:7c:a0:e8:73:14:67:a1:
af:3d:95:9d:bc:20:a2:45:31:63:2f:32:40:18:ba:bc:7c:fd:
6a:d2:cd:5d:2b:99:76:41:22:d5:fd:3c:3e:32:7a:43:a3:cd:
aa:cd:02:14:19:68:0b:4e:68:4d:2d:1a:af:93:8f:16:0b:e6:
df:53:fa:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net