Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/9FT3KL25pcGsoXSj7Zm9KFO0qWQ.roa
File: 9FT3KL25pcGsoXSj7Zm9KFO0qWQ.roa (raw, json)
Hash identifier: mGNBEWzBBhk4z2HQFPI+/oNwcNE/D7AWHzTzOsWC6UY=
Subject key identifier: F4:54:F7:28:BD:B9:A5:C1:AC:A1:74:A3:ED:99:BD:28:53:B4:A9:64
Certificate issuer: /CN=762c60af4d73725845ceaf0b7b585e7757066965
Certificate serial: 0193F48C71A514E40E3369CC35B18090010D
Authority key identifier: 76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/9FT3KL25pcGsoXSj7Zm9KFO0qWQ.roa
Signing time: Mon 23 Dec 2024 17:24:25 +0000
ROA not before: Mon 23 Dec 2024 17:24:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202987
IP address blocks: 194.246.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f4:8c:71:a5:14:e4:0e:33:69:cc:35:b1:80:90:01:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762c60af4d73725845ceaf0b7b585e7757066965
Validity
Not Before: Dec 23 17:24:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f454f728bdb9a5c1aca174a3ed99bd2853b4a964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f6:55:88:11:39:2c:2e:14:c8:da:84:29:36:
a9:a1:9a:90:63:96:25:35:8d:29:d7:77:32:f9:11:
26:2d:c3:8c:db:af:6b:50:41:01:ee:7e:e0:30:cc:
93:81:ab:5c:b1:00:fc:f7:ff:65:1d:18:5c:ff:c7:
b3:a2:3a:ab:8e:6d:c8:b4:4a:5d:c8:02:78:0a:b6:
65:21:7c:b9:3e:45:0a:86:de:ec:51:d6:dc:76:f4:
a9:85:e5:4e:24:1c:88:81:ff:11:e4:f5:60:3f:3f:
29:c1:11:aa:95:ad:33:27:5a:f8:73:5d:cb:77:06:
72:7b:91:b2:e9:59:c3:b7:e5:d5:f4:28:d2:90:44:
55:67:ab:73:16:54:1e:b6:19:d3:9c:0e:65:62:e1:
44:60:98:9c:c0:de:89:e3:7c:6c:f2:aa:61:8d:1e:
f0:51:2b:e0:73:cf:ac:9a:44:d2:c5:62:30:12:b3:
c6:ff:6d:5d:eb:91:85:de:e9:c8:78:f0:3e:d4:eb:
94:5b:a1:b8:09:0e:c5:da:15:78:d1:20:b6:05:11:
a9:31:80:fe:8f:cf:28:1e:e4:17:7c:aa:93:7a:62:
51:b0:d2:f5:8b:9c:e6:7d:ca:ed:e8:f3:b8:72:ca:
b8:0d:0c:5a:81:dc:87:98:d6:26:e9:6c:7a:c9:b3:
32:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:54:F7:28:BD:B9:A5:C1:AC:A1:74:A3:ED:99:BD:28:53:B4:A9:64
X509v3 Authority Key Identifier:
keyid:76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/9FT3KL25pcGsoXSj7Zm9KFO0qWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/dixgr01zclhFzq8Le1hed1cGaWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.89.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f4:41:52:d3:4a:99:d5:17:dd:1e:05:16:12:03:84:27:de:
14:97:90:51:e7:59:dd:43:48:4f:65:bc:71:bf:df:c0:e2:cb:
74:00:0e:57:7a:6a:14:a1:e6:2a:3e:84:13:8f:a5:29:ff:6d:
d9:f6:c6:f6:11:08:93:49:14:bd:bf:7f:c6:54:98:a4:89:de:
a9:f4:84:c4:88:f5:4d:0b:8b:ee:c1:f4:5a:5f:cb:4b:c4:a9:
12:3c:62:2d:31:80:56:8f:7d:ee:6c:f7:a7:6a:d1:e3:ea:0d:
44:14:58:36:3a:15:40:29:1f:2f:f6:5b:aa:3d:b1:e3:d8:dc:
24:30:c4:e7:70:ca:0f:69:a1:ec:f7:ab:d4:ac:3f:69:07:95:
c2:d2:cf:eb:5c:ae:73:c8:d7:1f:68:0f:1a:41:b7:fa:08:b1:
39:20:72:19:57:72:6a:07:40:1e:28:cc:c9:92:ec:da:a8:1f:
f3:20:71:f7:b7:22:7c:ec:bd:33:12:19:68:0c:d9:64:1f:4b:
66:67:6f:f8:4e:3c:2e:a0:d9:f1:cb:e4:72:dd:8a:7f:71:8c:
d5:9a:d5:ca:13:5e:c2:44:6c:a0:76:3a:8e:3d:ae:d3:ed:1d:
4c:95:f5:85:5a:a0:ca:34:04:a1:4a:40:43:49:22:3f:b4:46:
fc:41:75:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:23 2024 by rpki-client on console.sobornost.net