Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/tN1M0qDlNsqdjJPTzeyI0WzCCdI.roa
File: tN1M0qDlNsqdjJPTzeyI0WzCCdI.roa (raw, json)
Hash identifier: 2lLeXXkFr4FgIvYl4GcfcYRTUBCkW6uiyp63MoM01xw=
Subject key identifier: B4:DD:4C:D2:A0:E5:36:CA:9D:8C:93:D3:CD:EC:88:D1:6C:C2:09:D2
Certificate issuer: /CN=e2d73ffc3f37c4fec4bd35ad1c595cd056baecfd
Certificate serial: 019421443915F0878B13491B07610E3138D5
Authority key identifier: E2:D7:3F:FC:3F:37:C4:FE:C4:BD:35:AD:1C:59:5C:D0:56:BA:EC:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tc__D83xP7EvTWtHFlc0Fa67P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/tN1M0qDlNsqdjJPTzeyI0WzCCdI.roa
Signing time: Wed 01 Jan 2025 09:48:26 +0000
ROA not before: Wed 01 Jan 2025 09:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44947
IP address blocks: 185.93.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:39:15:f0:87:8b:13:49:1b:07:61:0e:31:38:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d73ffc3f37c4fec4bd35ad1c595cd056baecfd
Validity
Not Before: Jan 1 09:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b4dd4cd2a0e536ca9d8c93d3cdec88d16cc209d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4d:46:ad:5b:a0:90:bd:16:b6:1b:f6:63:0a:
cf:22:94:b8:df:3d:d5:a4:d5:64:b6:4c:c9:0c:fe:
7b:64:84:87:1c:06:1f:12:a1:56:99:7a:b4:6b:25:
84:fb:39:a9:0d:e8:05:ad:d8:a9:69:12:94:35:9f:
ae:2d:f8:3c:4e:7b:90:57:1c:0e:75:cf:27:d7:14:
1d:20:cf:c0:b0:7e:85:79:c0:cc:9b:cd:0a:09:56:
88:23:f5:50:49:11:4d:ab:8e:13:a4:27:8d:36:15:
fd:6e:fa:4a:97:31:e3:76:66:d3:b5:23:76:36:a8:
f8:cc:72:91:0b:8d:74:02:91:cc:d8:dc:a1:9f:ef:
52:8a:e5:f6:19:ae:4c:32:be:8f:61:ee:a6:d5:0a:
f4:ed:95:50:50:2a:46:47:88:20:6b:ed:6a:92:f3:
a4:bc:67:01:00:89:3e:1e:b1:9b:a5:46:27:61:e3:
41:da:16:94:45:ea:86:8d:0f:10:a4:e4:72:a1:4f:
1b:6b:85:30:d0:22:96:68:06:82:d5:27:a3:77:b1:
59:c4:a8:a1:a3:be:82:25:54:41:66:64:79:f9:3b:
7d:7d:bd:75:76:6f:26:78:8f:15:75:e5:a5:29:e0:
46:4e:d2:d5:66:59:9e:0a:1d:4c:44:33:95:b9:20:
53:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DD:4C:D2:A0:E5:36:CA:9D:8C:93:D3:CD:EC:88:D1:6C:C2:09:D2
X509v3 Authority Key Identifier:
keyid:E2:D7:3F:FC:3F:37:C4:FE:C4:BD:35:AD:1C:59:5C:D0:56:BA:EC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tc__D83xP7EvTWtHFlc0Fa67P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/tN1M0qDlNsqdjJPTzeyI0WzCCdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/4tc__D83xP7EvTWtHFlc0Fa67P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.89.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:5c:a5:67:5c:d3:c7:04:2a:1c:8e:ef:85:52:d8:85:dd:0d:
e7:ee:a4:91:8d:39:03:36:46:33:7c:64:1f:96:05:0a:2d:04:
1e:a1:9a:83:a9:4a:92:2a:68:ea:2a:f8:1f:02:03:63:17:09:
62:60:c4:b9:70:1b:cf:bc:43:46:92:b4:e5:e4:68:45:52:a6:
7c:c3:25:ea:b8:88:b9:72:0b:be:f2:ba:5e:48:53:29:f0:57:
fe:1f:70:07:91:2f:d8:f4:3b:f2:95:3a:e0:72:5a:e2:13:68:
2e:c1:bf:8b:ac:0f:23:50:4f:c7:3a:48:b8:87:11:2d:dd:d1:
3c:16:04:fe:4d:24:f8:aa:dd:dc:17:3c:f1:04:71:fc:9e:fc:
38:2b:53:80:52:16:e7:f5:06:1f:9a:72:4c:a3:dd:e0:6d:d0:
64:e0:fc:97:72:ab:13:ac:93:13:05:91:02:ec:db:f3:67:8b:
69:8e:45:a2:4c:b4:82:dd:39:02:ee:5d:26:18:b5:51:cc:a4:
8c:1a:82:27:90:2f:b2:d1:5e:67:6d:83:33:57:3f:e4:f3:bc:
b9:d4:00:d6:84:2f:6b:bd:a6:b0:8e:8d:49:0b:2f:7a:9f:c5:
67:e1:a5:ba:ae:03:f2:06:c7:83:58:62:3a:fa:b6:1f:17:50:
fb:23:c7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 15:47:28 2025 by rpki-client on console.sobornost.net