Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/iT3aXvbqCSM8C0EOtQbsrIdF3MI.roa
File: iT3aXvbqCSM8C0EOtQbsrIdF3MI.roa (raw, json)
Hash identifier: kG4itny14VuG2q0hBxrlUoWDGWiOU+QhP7GyoEwImNs=
Subject key identifier: 89:3D:DA:5E:F6:EA:09:23:3C:0B:41:0E:B5:06:EC:AC:87:45:DC:C2
Certificate issuer: /CN=2ccb9b89bc0bc21752474e650dc34f069da5c0b3
Certificate serial: 019424B3F03A270F3AD2471E3D188681DEA9
Authority key identifier: 2C:CB:9B:89:BC:0B:C2:17:52:47:4E:65:0D:C3:4F:06:9D:A5:C0:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMubibwLwhdSR05lDcNPBp2lwLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/iT3aXvbqCSM8C0EOtQbsrIdF3MI.roa
Signing time: Thu 02 Jan 2025 01:49:19 +0000
ROA not before: Thu 02 Jan 2025 01:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213375
IP address blocks: 93.157.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:f0:3a:27:0f:3a:d2:47:1e:3d:18:86:81:de:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ccb9b89bc0bc21752474e650dc34f069da5c0b3
Validity
Not Before: Jan 2 01:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=893dda5ef6ea09233c0b410eb506ecac8745dcc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ba:de:fb:78:c4:69:d5:c3:42:a6:20:8a:27:
0e:23:72:61:a8:34:14:99:ea:db:4e:28:09:9b:63:
6f:82:a3:14:13:7e:32:09:75:3f:97:a5:13:44:d8:
d9:0b:14:d2:1f:bc:64:ef:29:20:81:52:cb:1a:f3:
e3:27:b9:7c:dd:83:c5:0e:e0:ff:51:f8:c6:0b:7c:
af:1f:7d:4f:56:1e:a6:85:af:6d:21:75:86:91:a7:
b2:b5:e8:12:d4:af:c5:25:fb:22:cd:9f:a6:96:29:
04:df:74:d2:39:a7:c9:dd:ea:d3:98:60:c3:c1:3f:
e8:89:eb:56:bc:71:8e:fa:da:d7:d9:18:4d:bb:58:
47:d7:8c:1d:67:5a:d1:53:c2:55:54:27:9d:0d:c9:
67:7e:9e:34:d5:4b:ea:98:b3:24:f9:c9:b8:5f:96:
85:e2:58:89:62:30:4c:89:21:4b:39:91:53:fb:cd:
26:13:c6:8c:37:f1:10:07:e4:34:f6:27:ea:26:24:
55:c5:2f:2f:e3:ce:19:86:09:b0:df:25:de:35:de:
91:e8:65:39:43:1e:fa:56:d0:0b:80:82:68:5e:8a:
d6:11:d5:86:54:86:3b:17:d2:a7:1f:24:5d:0b:7f:
67:7c:f3:fc:51:1b:9a:61:7c:a5:42:ed:07:b9:23:
1f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3D:DA:5E:F6:EA:09:23:3C:0B:41:0E:B5:06:EC:AC:87:45:DC:C2
X509v3 Authority Key Identifier:
keyid:2C:CB:9B:89:BC:0B:C2:17:52:47:4E:65:0D:C3:4F:06:9D:A5:C0:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMubibwLwhdSR05lDcNPBp2lwLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/iT3aXvbqCSM8C0EOtQbsrIdF3MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/LMubibwLwhdSR05lDcNPBp2lwLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.12.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:5a:d9:5e:12:37:47:6f:f1:a5:fa:7a:9d:57:c9:5a:84:81:
51:1c:fe:8f:3b:13:6d:28:88:ef:35:3d:c1:1a:57:f7:38:1d:
61:de:74:bf:5a:47:e5:2c:56:d1:a0:8e:09:6a:47:92:ea:4d:
29:64:26:e4:03:bc:4a:71:a0:4d:d5:51:95:31:db:ce:e9:8a:
fb:59:14:b9:15:cd:b0:22:ab:ab:08:e3:af:8a:b0:81:00:cb:
d0:2d:04:ec:5a:95:47:11:36:35:31:c3:a5:c3:87:0a:94:5e:
ed:81:90:0f:c4:50:1b:b0:24:94:b7:25:49:be:a9:6f:4d:25:
be:84:4c:28:cb:5d:85:8b:0d:1b:3b:bb:99:7a:63:5b:34:a3:
48:61:c2:af:24:08:5b:d3:fb:20:dc:25:0d:20:33:cc:f8:26:
c6:37:18:2b:05:43:d9:cc:cc:99:7f:ad:4b:fb:eb:97:be:0a:
05:41:46:e2:46:f2:29:7a:56:bd:ac:ed:a8:9d:a1:99:e5:a1:
fa:3b:e5:02:e5:63:3b:78:60:98:97:bf:f1:ff:1d:02:a4:5b:
05:f5:5f:77:91:53:b4:e2:2c:0b:85:a9:8b:6f:4c:bc:af:e3:
30:53:af:41:92:be:0c:00:56:e2:7a:d9:a7:c8:00:e7:0c:7c:
d3:c5:b3:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:38 2025 by rpki-client on console.sobornost.net