Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/fbe350-69da-495d-96e2-abfa83fcff67/1/CU4niyNUzvl3bo6MJIWA5tTj6CU.roa
File: CU4niyNUzvl3bo6MJIWA5tTj6CU.roa (raw, json)
Hash identifier: x/+Sx7wfxoVvcQb4y9evGXyx182jgq9lJSOEeI3C9L0=
Subject key identifier: 09:4E:27:8B:23:54:CE:F9:77:6E:8E:8C:24:85:80:E6:D4:E3:E8:25
Certificate issuer: /CN=79bd5372e1e19d05beda353bd6a15bdd39291fa4
Certificate serial: 0194266B3918F62EE836357AFFBEE5C8BA05
Authority key identifier: 79:BD:53:72:E1:E1:9D:05:BE:DA:35:3B:D6:A1:5B:DD:39:29:1F:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eb1TcuHhnQW-2jU71qFb3TkpH6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/fbe350-69da-495d-96e2-abfa83fcff67/1/CU4niyNUzvl3bo6MJIWA5tTj6CU.roa
Signing time: Thu 02 Jan 2025 09:49:08 +0000
ROA not before: Thu 02 Jan 2025 09:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216293
IP address blocks: 212.46.60.0/24 maxlen: 24
2a13:d9c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:39:18:f6:2e:e8:36:35:7a:ff:be:e5:c8:ba:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79bd5372e1e19d05beda353bd6a15bdd39291fa4
Validity
Not Before: Jan 2 09:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=094e278b2354cef9776e8e8c248580e6d4e3e825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d8:8a:74:ef:59:22:3f:85:7a:2d:18:e9:ad:
29:3e:76:4f:96:2a:bd:7a:92:70:0a:87:5a:d8:31:
d5:d1:66:cd:9c:10:1d:6f:7a:53:86:34:3f:d6:bb:
71:78:70:fa:e5:2a:03:8e:73:68:c9:3e:4f:3e:e3:
5b:36:2b:26:39:ca:62:c1:04:88:bf:67:bc:77:c1:
58:d3:c4:28:f6:20:bf:d1:fd:e0:7a:cc:6f:6b:f2:
e6:bb:a2:d0:1f:5d:e3:ba:12:a3:0f:f6:df:ad:d1:
cb:42:10:09:20:92:c1:e8:cc:ec:76:da:d5:98:c1:
8d:c1:7e:4b:93:b1:de:da:ca:c9:a3:d3:6d:c7:63:
d6:a2:64:58:3c:18:b9:2e:fa:5c:e7:c6:eb:2c:77:
60:54:2b:05:2f:0b:ce:c5:5f:b1:b2:f6:13:6b:45:
4a:5c:09:3c:ad:02:77:bf:07:75:40:30:a1:de:4a:
82:4d:c8:2e:5b:d1:48:62:7a:45:74:ed:98:16:e1:
50:09:52:e3:c3:fc:65:d8:a2:6d:f4:0e:3c:b5:d1:
75:84:52:c5:e1:83:ba:e9:c1:fa:e8:55:58:dd:56:
2e:4c:9f:85:40:dc:e0:2e:34:dd:44:32:b6:3e:01:
6b:4e:a3:6a:7c:fd:16:14:e5:97:85:e7:45:00:f0:
6c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:4E:27:8B:23:54:CE:F9:77:6E:8E:8C:24:85:80:E6:D4:E3:E8:25
X509v3 Authority Key Identifier:
keyid:79:BD:53:72:E1:E1:9D:05:BE:DA:35:3B:D6:A1:5B:DD:39:29:1F:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb1TcuHhnQW-2jU71qFb3TkpH6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fbe350-69da-495d-96e2-abfa83fcff67/1/CU4niyNUzvl3bo6MJIWA5tTj6CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fbe350-69da-495d-96e2-abfa83fcff67/1/eb1TcuHhnQW-2jU71qFb3TkpH6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.60.0/24
IPv6:
2a13:d9c0::/29
Signature Algorithm: sha256WithRSAEncryption
c1:30:96:ce:39:1f:ef:b2:ec:b9:52:30:b2:88:d2:9a:4b:c6:
81:34:14:27:a5:3f:15:de:c0:e6:08:9d:09:36:c8:c2:e4:b8:
a5:71:e9:1c:ff:b7:b8:d5:7b:bb:36:1f:0d:b8:d8:f8:95:eb:
9c:de:02:6d:f7:ce:e5:64:ab:6f:60:53:e3:70:77:03:54:fb:
c7:58:bc:74:92:2a:45:07:97:34:89:14:da:f9:31:23:73:af:
d6:16:07:00:55:9f:87:b0:96:10:24:a0:eb:27:7d:17:17:c0:
7a:d5:53:b8:36:55:43:06:5d:77:be:12:71:6a:d8:d8:b1:c3:
a3:35:a8:6d:06:34:9a:c4:3f:c3:50:07:96:bf:6c:ca:c1:0b:
4c:14:10:5a:53:ca:33:71:42:3a:7c:5b:c3:5e:f6:fe:3f:f0:
4d:e2:59:a7:44:25:52:61:71:38:d9:87:65:17:76:55:35:cc:
c4:bf:f9:e2:bb:25:07:13:e7:1a:22:f0:c1:0e:e8:e4:0c:70:
32:81:bc:96:00:9f:26:51:ca:b6:91:bf:fe:01:7b:af:41:38:
14:33:48:b0:86:bd:5c:89:0d:5a:fa:cf:ae:e7:ea:9a:2b:ad:
69:87:ca:a2:49:cb:9d:50:f7:88:d5:33:ff:0d:8c:05:c6:57:
b5:4c:e9:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:46 2025 by rpki-client on console.sobornost.net