Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/qvPm57YEBA1Gnl47iz-cQbRx7UY.roa
File: qvPm57YEBA1Gnl47iz-cQbRx7UY.roa (raw, json)
Hash identifier: tBKdpc8P9meJArJGr//IYbXNDI8iochN8kxy5UtDRE8=
Subject key identifier: AA:F3:E6:E7:B6:04:04:0D:46:9E:5E:3B:8B:3F:9C:41:B4:71:ED:46
Certificate issuer: /CN=08e7d7b3bc4c0791c0cffe3f1555ab773e3ed16e
Certificate serial: 019561D453F7C3FA36DB953552377B86FDC4
Authority key identifier: 08:E7:D7:B3:BC:4C:07:91:C0:CF:FE:3F:15:55:AB:77:3E:3E:D1:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/qvPm57YEBA1Gnl47iz-cQbRx7UY.roa
Signing time: Tue 04 Mar 2025 15:44:19 +0000
ROA not before: Tue 04 Mar 2025 15:44:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56740
IP address blocks: 93.189.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:61:d4:53:f7:c3:fa:36:db:95:35:52:37:7b:86:fd:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08e7d7b3bc4c0791c0cffe3f1555ab773e3ed16e
Validity
Not Before: Mar 4 15:44:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aaf3e6e7b604040d469e5e3b8b3f9c41b471ed46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fc:10:eb:a6:b1:87:29:05:9f:94:f7:bd:0a:
4e:15:ec:30:f8:b6:99:40:58:32:42:e8:52:b7:3c:
bd:a2:a1:06:40:1a:47:6d:3f:71:3f:0c:2a:82:84:
e3:9f:25:ee:0e:2e:0e:bd:70:77:89:c5:7f:bc:5e:
cf:74:d8:a4:2c:97:cc:36:f0:ea:ef:c1:6f:aa:5d:
63:06:5b:43:79:69:e9:bc:f5:98:22:8f:6c:60:6a:
29:05:fc:23:d0:0b:51:6c:ed:d6:39:49:72:48:f7:
11:1b:6c:f2:9f:35:d1:68:27:66:8b:b6:dd:f1:c4:
d6:e8:83:2c:10:c4:67:08:7b:69:07:b3:7b:40:5f:
6a:2e:88:33:0a:5d:14:f9:23:18:e4:09:d5:1d:7d:
c1:27:10:06:fb:41:10:aa:bc:b9:08:b5:4d:cc:af:
71:20:6a:94:91:48:10:05:25:db:b6:f7:7f:c4:b3:
4a:15:fa:2c:0b:13:6e:47:1f:cd:73:e6:86:8d:4f:
e8:10:e1:af:13:5b:ae:62:17:0f:e6:92:37:0d:29:
06:71:d8:9f:e2:af:24:59:e3:a9:ed:4b:46:e3:6f:
92:52:d6:2c:21:3a:50:6a:ee:16:1b:b8:11:38:54:
62:5d:ce:33:de:79:7f:ba:c7:73:92:d8:06:04:aa:
6f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F3:E6:E7:B6:04:04:0D:46:9E:5E:3B:8B:3F:9C:41:B4:71:ED:46
X509v3 Authority Key Identifier:
keyid:08:E7:D7:B3:BC:4C:07:91:C0:CF:FE:3F:15:55:AB:77:3E:3E:D1:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/qvPm57YEBA1Gnl47iz-cQbRx7UY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/COfXs7xMB5HAz_4_FVWrdz4-0W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.189.225.0/24
Signature Algorithm: sha256WithRSAEncryption
86:d2:16:86:4e:55:b8:8b:fb:92:a6:3e:4e:74:88:e7:a7:21:
1f:33:45:0a:8e:7f:a4:37:1b:87:5a:8b:f0:8a:1b:24:0c:3a:
c0:95:bd:3a:7d:88:30:1d:ef:5d:75:5e:ee:c4:eb:85:2a:92:
4e:91:18:2a:ef:67:9c:be:72:ee:1b:23:d2:88:40:34:e5:27:
95:5d:78:6e:c3:9a:f7:3a:0f:d7:71:21:d8:4b:f8:40:91:62:
6d:d1:8b:97:6e:52:ca:02:54:e2:75:d6:0c:02:28:46:44:13:
7d:e3:3d:37:89:9d:f4:ca:68:3d:ee:59:1d:a1:5e:fb:a1:f9:
98:fe:6d:65:32:1d:a0:39:4f:0a:69:b5:2d:37:5a:f8:80:57:
a2:93:5b:2c:52:fd:f5:70:f3:fa:da:a3:29:9b:7d:d6:8c:05:
0c:90:95:1c:3a:6d:bd:55:0f:11:ab:6c:ca:6a:dd:08:15:cf:
4b:6c:c1:47:32:49:1e:c0:15:b9:de:95:a0:53:a5:75:97:3f:
c8:5e:df:c8:75:4b:ce:50:2c:99:08:b2:ef:de:69:f3:f4:9a:
e7:c0:36:76:ea:31:5f:fa:4d:75:d0:5e:32:d1:e5:70:e3:7a:
ff:2a:50:cc:8b:33:b5:d8:1e:c9:13:8c:0f:78:81:ed:0c:ed:
88:24:66:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net