Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/4ZybfYtxnNE19cT0vymR3-VIu7I.roa
File: 4ZybfYtxnNE19cT0vymR3-VIu7I.roa (raw, json)
Hash identifier: WttrLE1rHMijPtxHkIbXWOB6VSRTvdZnBxC+wcqifZw=
Subject key identifier: E1:9C:9B:7D:8B:71:9C:D1:35:F5:C4:F4:BF:29:91:DF:E5:48:BB:B2
Certificate issuer: /CN=fbd83efdd9996f8c75e7f4114e466ebf836968ea
Certificate serial: 01942747EB58919B86430E7E8B9AFFE952B2
Authority key identifier: FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/4ZybfYtxnNE19cT0vymR3-VIu7I.roa
Signing time: Thu 02 Jan 2025 13:50:12 +0000
ROA not before: Thu 02 Jan 2025 13:50:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48803
IP address blocks: 88.206.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:eb:58:91:9b:86:43:0e:7e:8b:9a:ff:e9:52:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbd83efdd9996f8c75e7f4114e466ebf836968ea
Validity
Not Before: Jan 2 13:50:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e19c9b7d8b719cd135f5c4f4bf2991dfe548bbb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7c:34:66:d2:08:90:69:19:d5:c4:83:5f:26:
10:9c:fc:9c:04:92:68:76:ed:03:55:c5:a2:f7:0b:
90:15:73:9e:37:f1:d9:9a:43:e5:9e:84:d9:83:d4:
40:64:e8:db:ec:cf:33:3d:f7:ae:dc:88:bb:76:11:
0f:ec:3f:f4:ad:83:ac:1e:60:10:c1:2d:8b:ba:b1:
df:6e:9f:bc:ee:b1:92:c5:1a:49:b8:2f:a1:71:9b:
75:09:98:73:84:9d:85:e8:27:9a:43:f6:ee:bc:e3:
32:43:59:91:ef:33:74:5c:5f:3c:6d:20:4e:75:18:
2d:2c:7f:c8:c8:64:fd:03:9b:2b:86:84:10:a4:45:
9d:96:4a:01:cf:2e:7d:30:0c:4c:ed:0e:d3:60:64:
8c:28:2a:d1:fc:02:9f:44:b0:dd:65:d6:bc:45:48:
49:d9:7b:1b:2f:08:ac:be:ec:b3:de:94:ba:53:ea:
d9:52:0b:d1:dc:8d:33:16:cc:45:42:0a:03:4c:c5:
d5:bf:a2:84:58:cd:bf:24:cf:9c:e4:20:84:04:7a:
7a:09:5f:63:b2:16:85:c1:12:2a:2e:12:25:8d:cb:
9d:bf:33:b1:5d:b0:15:81:97:9a:c6:74:35:63:85:
5e:5f:3f:1c:25:ad:2f:98:ba:6f:6c:8c:b2:6e:71:
11:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9C:9B:7D:8B:71:9C:D1:35:F5:C4:F4:BF:29:91:DF:E5:48:BB:B2
X509v3 Authority Key Identifier:
keyid:FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/4ZybfYtxnNE19cT0vymR3-VIu7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/1-9g-_dmZb4x15_QRTkZuv4NpaOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.206.176.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:b5:06:24:0a:08:ac:31:48:d6:15:99:72:7e:52:16:1c:17:
9a:c2:1f:c7:aa:20:c9:4a:f2:d2:df:b0:06:de:9f:ef:98:cb:
8e:30:12:af:df:dd:04:5a:a6:0e:7c:8f:2d:da:fc:b3:a8:fb:
a7:e9:57:c0:a6:03:84:e9:c5:62:dd:91:f3:b8:f6:a3:27:db:
91:4a:42:88:08:69:7b:0e:28:85:03:29:0d:88:62:f4:23:ba:
9a:f7:cc:2c:d8:c1:19:7f:8a:ea:d8:bd:85:dc:c6:44:6b:ef:
02:d2:6a:74:67:72:80:60:a2:50:df:3d:58:e4:e4:7b:b3:c3:
ee:de:38:ad:27:78:53:16:65:cc:61:20:07:cd:bc:64:99:3d:
fc:76:5c:57:bc:46:f4:f1:6c:46:da:df:5d:b3:a7:12:d6:94:
c1:f2:bd:89:bd:9f:6d:2d:ec:4c:f6:b1:a5:1e:47:11:39:9a:
72:f3:dc:dc:57:0f:b2:69:d2:90:e0:8e:d9:21:58:1b:5c:ae:
cf:51:9a:51:d3:3b:56:52:64:8a:fc:5c:1c:51:51:66:40:94:
6d:e7:b0:dc:65:e1:df:ba:5b:bb:39:7d:c5:37:d2:ec:59:67:
36:4b:37:69:60:15:ad:f6:5d:8e:de:13:1f:9f:d7:9a:54:a3:
c6:dd:d6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:46 2025 by rpki-client on console.sobornost.net