Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/d_mDouVtydIsXoD1I1kmanE7QdE.roa
File: d_mDouVtydIsXoD1I1kmanE7QdE.roa (raw, json)
Hash identifier: LhnrAE1NqO/WJxjZIP+R8AUtoWMyRXFMztjGxmdOIhE=
Subject key identifier: 77:F9:83:A2:E5:6D:C9:D2:2C:5E:80:F5:23:59:26:6A:71:3B:41:D1
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 0194266B93797DB0A84D7D80D6FBB66C6BCB
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/d_mDouVtydIsXoD1I1kmanE7QdE.roa
Signing time: Thu 02 Jan 2025 09:49:31 +0000
ROA not before: Thu 02 Jan 2025 09:49:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197483
IP address blocks: 89.40.80.0/24 maxlen: 24
2a00:8a84:c010::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:93:79:7d:b0:a8:4d:7d:80:d6:fb:b6:6c:6b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 2 09:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77f983a2e56dc9d22c5e80f52359266a713b41d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:10:ee:39:25:e2:f1:47:d5:72:6e:ec:60:17:
f8:c4:e0:86:f6:ae:69:cd:86:e5:f3:1f:aa:11:82:
a2:b0:d6:8b:14:33:e6:91:9b:83:78:e9:23:0c:82:
bc:a5:05:5f:03:78:b4:9a:77:8c:88:a2:22:d1:7c:
75:8f:f0:ac:75:2c:f6:12:3f:e7:a4:87:d1:22:16:
77:73:08:3b:59:76:d5:ae:38:76:53:92:7a:ab:27:
47:66:f2:db:d8:5a:fb:32:a3:c4:ea:4f:04:96:a9:
76:68:dc:a3:49:04:e6:1b:f8:1b:ae:86:91:a6:e8:
6a:09:7a:25:60:b4:91:c4:b0:10:ec:68:fb:11:8a:
e7:61:24:73:ae:a6:69:b9:38:f2:e9:0f:77:d4:b8:
62:a4:f0:fe:d1:4e:21:43:d4:cf:11:4c:69:11:b8:
4e:9b:c2:02:34:05:80:c7:1b:91:79:3c:99:3f:09:
76:02:ce:5d:ef:82:42:6f:e5:e9:c6:66:c5:38:f2:
7b:dc:1a:fb:b4:22:79:ea:a4:2a:e4:f5:33:b3:6c:
41:82:c9:1a:43:b2:50:e2:c7:0a:42:e1:92:12:ce:
95:d4:97:f3:d2:a2:13:16:66:fc:db:58:a4:fa:bc:
df:26:10:75:e6:ea:f5:b6:cd:e6:5a:06:9b:2d:79:
0f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F9:83:A2:E5:6D:C9:D2:2C:5E:80:F5:23:59:26:6A:71:3B:41:D1
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/d_mDouVtydIsXoD1I1kmanE7QdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.80.0/24
IPv6:
2a00:8a84:c010::/44
Signature Algorithm: sha256WithRSAEncryption
b4:8e:d5:a2:a3:06:b4:6d:a0:5c:ee:a8:e3:4c:d5:4a:83:1e:
98:5a:9b:0d:fe:c3:f8:8d:87:eb:37:b0:f3:fa:e6:34:b7:ce:
c5:e1:38:b9:7e:c2:8b:a5:51:d9:14:c1:d2:c3:c2:02:0a:be:
54:7a:75:8a:cd:0f:58:9c:df:d7:ab:72:5b:13:ed:59:fc:ca:
36:83:9e:54:01:f9:6a:6b:8b:77:cd:00:1c:ae:87:09:01:7d:
b0:08:f7:86:44:87:a9:50:93:cc:9f:99:e6:25:a0:10:66:b0:
50:9a:06:6f:8d:8e:fa:2a:01:b6:41:44:a2:ef:d1:a9:28:8c:
cd:9d:dc:31:8f:ca:05:aa:cc:35:1c:d5:3c:89:ae:84:18:0b:
a4:b2:3b:26:c9:34:f8:fd:55:ff:15:b3:ec:5d:1f:b7:d9:70:
47:ee:35:df:f6:a9:73:f0:19:17:d8:f0:14:e4:06:b1:99:3e:
3c:a0:7b:ec:c2:41:be:58:1a:de:3b:bb:40:e2:8b:49:7c:ff:
4c:db:3f:fd:8a:a3:5a:a2:46:9b:8b:c8:19:6c:49:57:78:e3:
1c:a3:cc:a7:3b:7c:2a:40:a2:b1:9a:e3:f2:5a:70:c7:37:bc:
82:86:dd:37:1c:8d:c5:81:a6:73:ac:f7:67:90:87:8b:f9:09:
aa:d3:c6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net