Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/700164-89d1-404f-af35-4ef47fc4bd7f/1/aWSQ60fTjhFq8BmN0FZ_DbIEn6o.roa
File: aWSQ60fTjhFq8BmN0FZ_DbIEn6o.roa (raw, json)
Hash identifier: 1Q+7ghrbje6c/seey8iSk1VcIG8kMHtOYKlCWV3dgaY=
Subject key identifier: 69:64:90:EB:47:D3:8E:11:6A:F0:19:8D:D0:56:7F:0D:B2:04:9F:AA
Certificate issuer: /CN=af6eaeff123ca67446d0e49401e495057078e174
Certificate serial: 0194252204632B18D6CE35152A02322112AD
Authority key identifier: AF:6E:AE:FF:12:3C:A6:74:46:D0:E4:94:01:E4:95:05:70:78:E1:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r26u_xI8pnRG0OSUAeSVBXB44XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/700164-89d1-404f-af35-4ef47fc4bd7f/1/aWSQ60fTjhFq8BmN0FZ_DbIEn6o.roa
Signing time: Thu 02 Jan 2025 03:49:33 +0000
ROA not before: Thu 02 Jan 2025 03:49:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30962
IP address blocks: 93.89.4.0/24 maxlen: 24
93.89.5.0/24 maxlen: 24
93.89.6.0/24 maxlen: 24
93.89.7.0/24 maxlen: 24
2a0b:2300::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:04:63:2b:18:d6:ce:35:15:2a:02:32:21:12:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af6eaeff123ca67446d0e49401e495057078e174
Validity
Not Before: Jan 2 03:49:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=696490eb47d38e116af0198dd0567f0db2049faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1f:41:12:b5:8e:c9:1d:64:7d:a8:f7:99:d0:
c3:78:07:0f:7e:2a:ff:65:78:e0:39:ac:e8:bf:aa:
f6:1f:c9:75:90:c4:df:cd:34:e1:ad:43:6c:0c:e3:
4b:da:ab:d2:7b:c5:bb:c0:c5:e5:0c:49:be:33:56:
b9:f2:76:02:f3:07:6a:db:e0:4a:5e:8c:f9:c6:e1:
82:59:9b:cb:65:79:15:0f:d8:38:f1:38:c9:bc:cf:
7f:32:0e:27:e7:47:ad:c1:18:f9:3b:da:7f:ba:2f:
89:67:e9:18:de:a0:da:c8:e2:11:b5:ac:f6:f6:6c:
8b:10:8f:d2:9a:5f:3b:d2:9b:30:69:f8:b5:73:5a:
a0:d6:a2:bd:ef:15:2c:d9:13:88:d9:1a:5a:44:37:
79:b4:2c:aa:c2:45:39:9b:d7:a8:6a:06:e1:b9:a8:
10:30:1f:e5:81:6f:e4:b7:96:0b:e0:6a:5d:5a:a5:
b2:3e:94:a0:5d:61:db:f2:88:aa:66:d6:69:f7:8e:
b5:a1:5d:ef:0e:0e:81:0b:1c:e0:c0:ff:2c:dd:3c:
33:c5:17:93:0b:63:7d:08:5f:71:9c:89:8b:d8:57:
00:2b:41:8e:bb:1a:41:7b:59:e3:70:28:a6:cc:95:
ef:32:69:8a:0b:db:c0:92:f5:04:e9:f7:59:88:59:
88:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:64:90:EB:47:D3:8E:11:6A:F0:19:8D:D0:56:7F:0D:B2:04:9F:AA
X509v3 Authority Key Identifier:
keyid:AF:6E:AE:FF:12:3C:A6:74:46:D0:E4:94:01:E4:95:05:70:78:E1:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r26u_xI8pnRG0OSUAeSVBXB44XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/700164-89d1-404f-af35-4ef47fc4bd7f/1/aWSQ60fTjhFq8BmN0FZ_DbIEn6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/700164-89d1-404f-af35-4ef47fc4bd7f/1/r26u_xI8pnRG0OSUAeSVBXB44XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.4.0/22
IPv6:
2a0b:2300::/32
Signature Algorithm: sha256WithRSAEncryption
71:7e:7b:e5:21:0b:ac:be:0a:65:4b:ec:1a:dc:47:c4:dc:63:
3a:eb:3c:84:8d:ae:42:d5:db:6f:26:1e:b1:0d:b3:eb:2b:1d:
f1:42:18:10:28:be:02:b9:2f:41:7e:8a:f4:1e:66:32:87:67:
83:53:bb:a3:66:75:5b:72:91:63:55:b7:91:af:ca:25:b2:34:
1c:54:5b:0f:39:07:f8:ce:73:e2:84:f3:c6:8f:e7:33:4b:8a:
fa:0d:e8:22:f1:c0:fd:3d:31:38:8d:b0:3d:a8:32:c7:ce:e8:
29:6e:4d:41:6b:1f:ff:d8:16:ed:91:d8:96:05:4a:d3:e7:d0:
38:f1:02:ee:83:e6:a1:4a:72:f7:f7:8f:3d:7a:ab:f9:ad:03:
e2:3a:8e:86:03:2c:63:ad:f8:39:2f:c7:91:52:a1:50:c7:a6:
b4:e2:50:32:ad:f5:b3:87:a8:0d:28:f6:8c:79:ed:5f:39:02:
1a:d9:95:77:00:d0:f1:c3:ee:03:71:99:45:4c:90:6f:d8:a5:
98:03:52:a3:ff:12:ab:fd:5a:81:c6:16:fa:4c:bf:9a:6e:97:
8e:12:56:a4:39:4f:55:14:d4:54:e4:56:40:86:6d:53:34:df:
d5:6a:e0:20:2a:2b:08:dc:61:9f:48:8f:55:a3:e7:5c:c3:f6:
0c:12:92:21
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQlIgRjKxjWzjUVKgIyIRKtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNmVhZWZmMTIzY2E2NzQ0NmQwZTQ5NDAxZTQ5NTA1NzA3
OGUxNzQwHhcNMjUwMTAyMDM0OTMzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTY0OTBlYjQ3ZDM4ZTExNmFmMDE5OGRkMDU2N2YwZGIyMDQ5ZmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwB9BErWOyR1kfaj3mdDDeAcPfir/
ZXjgOazov6r2H8l1kMTfzTThrUNsDONL2qvSe8W7wMXlDEm+M1a58nYC8wdq2+BK
Xoz5xuGCWZvLZXkVD9g48TjJvM9/Mg4n50etwRj5O9p/ui+JZ+kY3qDayOIRtaz2
9myLEI/Sml870pswafi1c1qg1qK97xUs2ROI2RpaRDd5tCyqwkU5m9eoagbhuagQ
MB/lgW/kt5YL4GpdWqWyPpSgXWHb8oiqZtZp9461oV3vDg6BCxzgwP8s3TwzxReT
C2N9CF9xnImL2FcAK0GOuxpBe1njcCimzJXvMmmKC9vAkvUE6fdZiFmIEQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGlkkOtH044RavAZjdBWfw2yBJ+qMB8GA1UdIwQY
MBaAFK9urv8SPKZ0RtDklAHklQVweOF0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjI2dV94SThwblJHME9TVUFlU1ZCWEI0NFhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MDAxNjQtODlkMS00MDRmLWFmMzUt
NGVmNDdmYzRiZDdmLzEvYVdTUTYwZlRqaEZxOEJtTjBGWl9EYklFbjZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy83MDAxNjQtODlkMS00MDRmLWFmMzUtNGVmNDdmYzRiZDdm
LzEvcjI2dV94SThwblJHME9TVUFlU1ZCWEI0NFhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCXVkEMA0E
AgACMAcDBQAqCyMAMA0GCSqGSIb3DQEBCwUAA4IBAQBxfnvlIQusvgplS+wa3EfE
3GM66zyEja5C1dtvJh6xDbPrKx3xQhgQKL4CuS9Bfor0HmYyh2eDU7ujZnVbcpFj
VbeRr8olsjQcVFsPOQf4znPihPPGj+czS4r6Degi8cD9PTE4jbA9qDLHzugpbk1B
ax//2BbtkdiWBUrT59A48QLug+ahSnL39489eqv5rQPiOo6GAyxjrfg5L8eRUqFQ
x6a04lAyrfWzh6gNKPaMee1fOQIa2ZV3ANDxw+4DcZlFTJBv2KWYA1Kj/xKr/VqB
xhb6TL+abpeOElakOU9VFNRU5FZAhm1TNN/VauAgKisI3GGfSI9Vo+dcw/YMEpIh
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:21 2025 by rpki-client on console.sobornost.net