Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/z8F3ihjnj-frzmamSA87IqM65-s.roa
File: z8F3ihjnj-frzmamSA87IqM65-s.roa (raw, json)
Hash identifier: pC4POcK25UWJxlCnvzRO0SCrbBCamaDST6gjDgECEho=
Subject key identifier: CF:C1:77:8A:18:E7:8F:E7:EB:CE:66:A6:48:0F:3B:22:A3:3A:E7:EB
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 01928AF880DD54BDEA59A62132F75A5358DB
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/z8F3ihjnj-frzmamSA87IqM65-s.roa
Signing time: Mon 14 Oct 2024 12:19:54 +0000
ROA not before: Mon 14 Oct 2024 12:19:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197483
IP address blocks: 89.40.80.0/24 maxlen: 24
2a00:8a84:c010::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8a:f8:80:dd:54:bd:ea:59:a6:21:32:f7:5a:53:58:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Oct 14 12:19:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cfc1778a18e78fe7ebce66a6480f3b22a33ae7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:34:4f:a5:b1:30:be:1f:61:e9:53:b1:61:50:
2b:2f:09:2f:63:ac:55:d4:9b:04:4c:86:67:ea:c5:
b0:6c:be:ce:08:19:13:6f:52:79:da:76:19:aa:40:
f0:80:c4:9b:25:ef:7a:a6:48:8a:cd:6b:0b:35:87:
93:2e:fb:a8:e0:9c:d5:2a:af:9c:23:7a:9a:84:80:
44:14:41:86:28:34:42:14:82:23:7b:be:4e:34:f1:
88:a4:8f:fa:50:f5:1d:79:cb:be:f7:ea:b9:a5:d2:
0a:9c:45:d0:32:7c:5a:d9:3c:bb:52:99:0c:23:d0:
e6:ce:b8:3e:68:57:70:d5:5a:bc:ca:a3:87:25:bf:
a6:95:59:d9:d0:b3:4e:83:3a:02:d3:03:5c:e4:e7:
ff:1d:29:2a:a2:5a:a0:33:d4:7a:56:a1:d8:51:e5:
02:fb:b0:d5:4b:68:8e:4a:c1:42:e3:6f:5c:50:dd:
d9:81:2e:ae:72:73:63:9e:74:13:a2:63:40:e3:fa:
31:45:02:0f:78:59:ba:ae:d0:a2:71:28:3c:fe:5d:
9d:87:2d:1c:9c:6c:88:cf:ad:e2:5b:36:1c:e9:5e:
61:b8:0d:dc:f6:79:f0:9e:01:86:41:cd:3a:30:87:
b5:f0:c0:1c:04:70:b5:2d:c3:ae:6d:1e:33:f3:6b:
75:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C1:77:8A:18:E7:8F:E7:EB:CE:66:A6:48:0F:3B:22:A3:3A:E7:EB
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/z8F3ihjnj-frzmamSA87IqM65-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.80.0/24
IPv6:
2a00:8a84:c010::/44
Signature Algorithm: sha256WithRSAEncryption
bb:a2:8a:74:9d:4a:8b:b9:6e:54:9e:f6:16:4c:36:cf:23:a8:
15:e1:7e:89:29:ac:50:89:02:16:6d:c3:7e:10:67:c8:2e:87:
90:77:0a:15:3e:d5:46:ec:d0:c1:60:e6:c7:de:39:a3:f6:62:
29:0c:5a:85:8e:c9:f4:97:5f:80:87:59:cb:c5:c2:96:2f:5c:
1c:d0:b2:58:4c:d1:d8:0c:a6:dd:4a:43:38:9d:3e:91:27:71:
13:4b:59:86:8f:f2:aa:51:e5:cb:ba:c2:69:34:dc:f3:68:9c:
27:f8:cb:63:2c:b7:13:56:bb:cc:53:7e:cc:1b:47:bd:95:1e:
71:70:13:1e:3e:40:4e:0c:45:1f:87:63:b4:0e:09:ac:b8:f3:
ce:ea:0e:f8:85:39:19:32:5e:3a:ce:93:02:9e:84:9a:93:f9:
53:56:5e:3c:b3:48:ca:1d:d9:2b:7b:7a:c1:7d:34:6e:71:ae:
48:ef:5a:bb:f8:93:f7:7f:9f:d7:0d:52:b9:00:98:8d:90:92:
c4:03:17:93:7d:64:7c:04:e4:05:1e:de:ed:fa:12:85:95:7c:
44:35:9a:9d:b8:9e:f8:70:96:aa:9c:2f:b5:bd:9a:6a:1c:03:
69:7f:b2:a1:22:9a:ab:cc:f1:20:43:45:61:40:2b:79:d8:38:
76:1c:92:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:24 2024 by rpki-client on console.sobornost.net