Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/bpthfOzMCHmNWPoyMwo5XIQPCUQ.roa
File: bpthfOzMCHmNWPoyMwo5XIQPCUQ.roa (raw, json)
Hash identifier: VtftbkCJkVOtxURtiBDwhwZ/TrioGRiRetZ47whwsMM=
Subject key identifier: 6E:9B:61:7C:EC:CC:08:79:8D:58:FA:32:33:0A:39:5C:84:0F:09:44
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 01942521E4D0AB4832423C03EDF45D0626A3
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/bpthfOzMCHmNWPoyMwo5XIQPCUQ.roa
Signing time: Thu 02 Jan 2025 03:49:25 +0000
ROA not before: Thu 02 Jan 2025 03:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41483
IP address blocks: 89.254.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:e4:d0:ab:48:32:42:3c:03:ed:f4:5d:06:26:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: Jan 2 03:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e9b617ceccc08798d58fa32330a395c840f0944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:5e:b5:cc:15:a6:2f:ba:bc:5e:31:a4:ca:
33:d9:23:37:e4:b6:5b:c5:16:16:02:02:45:57:26:
a7:7d:e2:53:84:9a:cd:a4:ba:8a:29:15:ae:5a:8b:
19:cb:19:e1:57:88:63:ad:1e:54:24:19:62:3e:6c:
01:a2:6b:b3:56:ef:dc:ec:7f:5e:0b:4d:65:49:ca:
48:e7:d5:a5:4d:a2:ce:df:98:93:dc:e1:54:75:dc:
1f:ed:5a:9f:ae:25:e0:21:dc:44:35:90:66:9c:b0:
d0:33:84:63:2c:9f:a5:9f:47:c3:e7:bb:dd:a0:32:
27:95:8b:c7:fd:c0:c7:72:66:a5:01:be:92:32:3c:
69:a4:c3:14:c4:a7:11:49:a6:57:31:61:e8:4c:40:
26:80:ed:12:b3:2f:6e:2d:41:d2:bb:8f:48:df:41:
be:f5:c0:ec:8b:1d:70:b0:8e:f3:ed:f3:47:3d:93:
ac:06:77:02:ba:96:39:c2:51:b5:cb:d4:0d:9d:59:
6d:56:78:89:6a:31:ce:ba:8f:38:ef:e5:61:96:6e:
d1:03:a9:f9:5a:40:11:83:23:66:09:9c:74:36:25:
1a:88:12:b9:44:44:94:e9:7f:b8:15:92:40:d8:21:
48:c9:ef:db:1d:bf:59:8f:51:50:ea:5e:cf:c6:b7:
5d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9B:61:7C:EC:CC:08:79:8D:58:FA:32:33:0A:39:5C:84:0F:09:44
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/bpthfOzMCHmNWPoyMwo5XIQPCUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.254.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b3:dc:aa:00:d2:aa:44:ed:d9:f8:1a:07:3b:42:b8:ef:5e:f4:
e7:6b:9b:97:24:78:41:71:06:03:f3:e7:6f:0d:10:da:93:d7:
a2:d0:a7:e7:73:56:04:9b:d0:e4:65:e3:97:c5:88:62:27:85:
68:0c:d2:9c:46:b7:a5:ba:47:62:e9:cd:ca:31:1c:f9:76:2c:
c3:8c:19:f9:c3:42:94:a0:f0:4d:1d:0a:6b:35:9b:78:f1:50:
04:90:a8:06:65:98:b0:19:31:a1:63:1f:e0:3c:a5:c2:e6:8f:
d6:cc:78:8c:de:18:a9:90:7f:a9:f9:28:93:51:e7:70:b1:87:
7d:ac:51:fe:cf:8a:41:11:54:bf:78:3c:3c:72:5b:2c:64:9e:
c8:5f:eb:89:30:7e:03:67:ae:98:d7:c6:e6:3e:7b:20:3c:b0:
df:19:a5:ce:a4:d7:78:14:85:5a:ac:7c:2e:16:aa:a1:f1:a1:
ec:ec:99:5d:1c:c8:63:b9:0a:d1:2a:2e:b2:22:3e:ac:c8:4d:
84:00:1d:14:c0:d8:ad:95:11:9e:34:ab:4b:5b:2e:a5:4b:50:
97:d3:8e:79:51:85:5f:10:8b:de:68:07:a4:7e:02:4a:b8:32:
6f:38:6b:34:7e:6f:58:cf:c5:9a:ed:7c:78:44:b2:7d:96:00:
03:e6:61:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:07 2025 by rpki-client on console.sobornost.net