Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/9355ef-e0bf-4c63-99a7-7852206213e0/1/abJHppOXbNRTL5BB9_dNqlKen94.roa
File: abJHppOXbNRTL5BB9_dNqlKen94.roa (raw, json)
Hash identifier: yyWwgZa5PLui39TWj5tUmAj6wvoO0anzfsZ9NlvSNwI=
Subject key identifier: 69:B2:47:A6:93:97:6C:D4:53:2F:90:41:F7:F7:4D:AA:52:9E:9F:DE
Certificate issuer: /CN=8fbc7f1707b6d0b22bcd8180f4fbb1b63efc99f9
Certificate serial: 019427B5CA053D8C66749E3299B0CA8FDA1C
Authority key identifier: 8F:BC:7F:17:07:B6:D0:B2:2B:CD:81:80:F4:FB:B1:B6:3E:FC:99:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j7x_Fwe20LIrzYGA9Puxtj78mfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/9355ef-e0bf-4c63-99a7-7852206213e0/1/abJHppOXbNRTL5BB9_dNqlKen94.roa
Signing time: Thu 02 Jan 2025 15:50:12 +0000
ROA not before: Thu 02 Jan 2025 15:50:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51661
IP address blocks: 185.99.71.80/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:ca:05:3d:8c:66:74:9e:32:99:b0:ca:8f:da:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fbc7f1707b6d0b22bcd8180f4fbb1b63efc99f9
Validity
Not Before: Jan 2 15:50:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69b247a693976cd4532f9041f7f74daa529e9fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5e:08:c2:99:be:b1:dd:63:5f:37:0a:59:31:
76:44:30:5a:d4:9e:29:53:30:5d:cf:6a:88:ac:32:
c6:f0:22:94:e8:d8:31:ce:11:74:2e:ff:5f:91:d6:
d3:37:dc:81:fb:24:b6:dc:90:ba:90:60:19:86:9b:
8c:d7:f3:71:b6:f6:70:0b:b4:9c:e4:9f:b8:4d:ca:
7c:79:5c:c4:1e:e4:3a:b6:2a:c7:fe:56:ca:31:ed:
37:04:f4:a6:77:6a:9f:ae:0a:26:1d:f8:58:a0:3b:
d7:a0:d7:3c:60:41:95:93:5e:57:ad:57:a8:81:f0:
c4:e7:57:31:4c:ec:74:8d:65:79:aa:f2:63:7a:01:
fb:32:6b:6f:fe:3c:41:a6:c2:28:9c:73:c9:43:d5:
61:30:ce:ef:24:dc:50:b8:ac:d3:03:7e:4c:3c:3d:
d3:c9:5f:0b:c0:8d:e4:ab:00:e9:de:b9:10:35:38:
45:00:bf:cf:1b:6e:ed:b7:b0:b6:a6:74:ec:a0:25:
7a:4e:95:65:ea:82:2b:96:a9:66:79:34:0c:98:aa:
58:89:a8:08:2c:c2:d4:86:76:82:09:e3:ab:ad:0c:
9c:aa:64:b1:59:ee:61:e0:d4:24:2b:dd:3a:90:d1:
85:41:a3:02:05:e6:76:e4:60:b7:66:aa:65:70:94:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B2:47:A6:93:97:6C:D4:53:2F:90:41:F7:F7:4D:AA:52:9E:9F:DE
X509v3 Authority Key Identifier:
keyid:8F:BC:7F:17:07:B6:D0:B2:2B:CD:81:80:F4:FB:B1:B6:3E:FC:99:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7x_Fwe20LIrzYGA9Puxtj78mfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/9355ef-e0bf-4c63-99a7-7852206213e0/1/abJHppOXbNRTL5BB9_dNqlKen94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/9355ef-e0bf-4c63-99a7-7852206213e0/1/j7x_Fwe20LIrzYGA9Puxtj78mfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.71.80/29
Signature Algorithm: sha256WithRSAEncryption
65:d1:59:17:f0:47:b4:43:fe:2e:6d:83:41:05:33:47:95:54:
6e:9f:80:0f:ec:67:79:7f:d6:65:72:d4:9f:32:6e:c5:a0:65:
41:9b:ff:11:95:f4:49:6b:d8:cd:ff:9b:66:d0:9f:72:26:6d:
62:98:f0:4c:0b:83:16:9a:68:1b:19:dc:8b:88:3e:24:84:36:
e0:c7:fe:f0:3e:b4:36:e5:64:dd:5d:64:82:c6:f1:6d:30:c7:
c5:d0:07:43:ea:fc:01:90:b7:3f:e2:bb:5f:06:6b:ab:25:a2:
de:23:83:5c:81:c4:3c:14:e5:6e:2c:3c:41:eb:ad:4e:a2:b0:
1e:1d:af:fd:61:a0:26:45:69:9d:b5:95:20:8d:21:04:5b:5e:
9e:95:1b:fb:0c:a3:a5:71:51:a9:de:f9:e0:e4:0d:84:00:50:
75:33:bd:13:8e:f2:3d:21:83:9d:0a:94:5c:1d:48:03:b2:b4:
7d:25:ff:5a:0b:9a:27:07:54:e3:02:0a:0f:80:2c:84:2a:58:
3c:1f:fd:4a:e9:96:20:0f:f3:03:6c:19:10:a7:cf:7d:ad:32:
56:36:35:15:22:23:02:6c:15:c9:38:47:26:27:4f:c4:1f:ba:
cb:9f:28:17:f3:d7:ec:21:e7:81:76:e2:77:c5:a2:1a:f7:94:
ff:16:95:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net