Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AMVTEGnZ9vqiPbHcahCfVLtQQ8g.roa
File: AMVTEGnZ9vqiPbHcahCfVLtQQ8g.roa (raw, json)
Hash identifier: kyFpIEZOPU/dSscty+a75v+9WbgTZW9cWKo8Uzr840Q=
Subject key identifier: 00:C5:53:10:69:D9:F6:FA:A2:3D:B1:DC:6A:10:9F:54:BB:50:43:C8
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01962F81D5134A25D4CA6013354895F86479
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AMVTEGnZ9vqiPbHcahCfVLtQQ8g.roa
Signing time: Sun 13 Apr 2025 14:15:59 +0000
ROA not before: Sun 13 Apr 2025 14:15:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213426
IP address blocks: 89.144.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2f:81:d5:13:4a:25:d4:ca:60:13:35:48:95:f8:64:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 13 14:15:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00c5531069d9f6faa23db1dc6a109f54bb5043c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a9:a1:71:b8:f7:df:46:97:fc:53:5e:de:92:
1d:02:cc:e3:e3:d5:af:16:aa:99:29:02:ec:ba:66:
2b:9d:58:79:35:46:05:95:bf:ea:4d:16:76:e3:56:
d1:5b:4c:c7:2f:5e:c0:49:f5:bb:99:47:f6:b0:84:
1a:b7:64:60:7e:d2:70:5f:55:09:9d:66:2a:ba:59:
c3:f3:6b:48:35:a6:7a:e6:61:c5:d3:87:13:fc:ea:
70:22:f7:f6:e2:e3:e6:4a:fb:72:96:3d:53:33:8e:
c2:9d:b0:00:2f:e5:d8:a9:e5:6e:a5:36:56:12:f7:
a3:02:27:ad:27:5a:df:c4:bd:31:65:4a:b6:c2:96:
da:e3:76:d6:f2:cf:07:2d:c9:ef:0e:e4:f9:43:36:
9e:26:0b:75:15:da:ba:f9:a6:1f:67:af:0d:38:ed:
13:1c:9d:4f:97:d5:a1:59:39:b7:00:75:54:4b:bd:
9c:bf:f5:f4:c2:d1:bc:0e:60:cd:6e:f1:f5:2e:f2:
5f:38:28:9c:db:bb:44:d3:01:f3:9f:1d:22:19:f2:
05:35:99:a4:90:1e:65:f7:45:58:c3:a1:c3:73:f2:
87:6d:a1:5a:9f:17:4a:b0:9e:56:65:27:c3:11:c7:
93:a5:de:e9:fa:00:c8:73:b3:b4:8e:1b:d3:ba:1c:
06:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C5:53:10:69:D9:F6:FA:A2:3D:B1:DC:6A:10:9F:54:BB:50:43:C8
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AMVTEGnZ9vqiPbHcahCfVLtQQ8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.144.60.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:a0:88:25:cf:cb:be:66:b4:3f:e2:88:75:bb:21:58:b0:46:
32:d5:1f:32:f0:53:a8:c0:f5:78:60:eb:61:1f:03:09:e5:6a:
bd:50:35:33:87:89:94:db:e6:ab:17:bf:5a:b8:1d:72:7c:e1:
14:1c:ef:01:25:dc:98:b6:7d:b7:0b:41:73:de:bb:8f:29:b7:
e1:c7:f7:68:ed:5f:7c:4c:1e:b3:23:66:58:47:11:06:70:d2:
cd:ec:e8:c0:4c:ba:cd:2a:6a:21:9e:41:2f:f8:cd:d1:f3:c3:
27:ae:e6:ac:54:5a:24:f1:a6:2f:09:97:a5:42:c1:81:a1:24:
02:b4:e2:35:7a:4d:73:8b:4d:f1:27:c9:53:4b:a6:86:6d:fe:
bf:7c:13:ee:30:2b:01:18:7c:cb:01:b9:a7:0d:a3:15:3a:1d:
75:60:ff:2f:15:8a:61:00:34:47:24:5a:99:d7:41:51:6b:6d:
ed:af:55:63:31:e6:27:63:e9:0d:a1:66:75:b4:cf:86:09:77:
b8:cd:e8:42:d3:73:bd:40:67:ba:d6:c2:db:72:44:de:50:57:
1e:b4:5e:ca:42:60:6f:4e:c9:df:bb:7d:1e:78:24:a1:c7:f0:
08:11:6c:b7:65:52:97:cd:57:00:6c:9c:28:d5:68:72:48:ed:
74:fd:b7:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net