Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/WjTYhnjd8JZNKcEGGyvScBW7ujg.roa
File: WjTYhnjd8JZNKcEGGyvScBW7ujg.roa (raw, json)
Hash identifier: xm9/rrII6hlVm8eUope1QTZ7F33LVLrGkQUEXzf0iIk=
Subject key identifier: 5A:34:D8:86:78:DD:F0:96:4D:29:C1:06:1B:2B:D2:70:15:BB:BA:38
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 01942067E53953D7F36FA685BC375EB054C2
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/WjTYhnjd8JZNKcEGGyvScBW7ujg.roa
Signing time: Wed 01 Jan 2025 05:47:47 +0000
ROA not before: Wed 01 Jan 2025 05:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205669
IP address blocks: 89.234.160.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:e5:39:53:d7:f3:6f:a6:85:bc:37:5e:b0:54:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Jan 1 05:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a34d88678ddf0964d29c1061b2bd27015bbba38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:46:08:ba:5a:85:b6:2d:4a:cb:e4:66:f8:04:
2a:1b:8f:53:0b:f3:d4:b4:d8:39:83:01:ad:c2:ff:
5e:b2:42:eb:75:58:41:8f:be:c1:a5:b0:a0:9a:bb:
5c:77:9d:f3:af:0f:e2:48:71:86:c1:1b:c2:06:c8:
fd:a6:5c:36:c5:8a:0a:00:59:0b:56:1c:7c:08:47:
10:53:eb:46:7c:c5:99:9a:10:8d:95:62:98:fa:df:
73:cd:68:8c:d5:0a:e7:59:b5:49:44:b0:e5:c0:26:
d6:11:28:45:af:2d:e0:3f:2b:a1:6e:7f:48:f2:c7:
af:3c:da:0b:09:d6:00:00:1e:ec:bf:2f:ee:96:df:
a6:a6:b8:6d:cb:85:51:2d:a8:e0:b0:5c:87:f2:62:
db:85:75:66:61:76:82:5e:d6:75:ee:f0:31:46:cb:
61:b7:6b:9b:c9:c3:b8:16:21:0a:21:07:88:62:9d:
f6:94:aa:d4:aa:71:38:8d:75:7f:b8:5b:a0:f6:1c:
e5:ac:e6:36:b4:c1:a5:cf:c2:9b:b5:bd:cc:b2:8e:
42:aa:fa:48:ac:09:8b:32:c0:12:61:b5:62:da:e1:
cc:f4:63:9e:9f:1b:ea:00:f8:f8:a7:5b:d1:a6:7c:
37:0e:45:45:6e:19:e6:e8:3e:4e:2c:8e:e4:f1:95:
28:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:34:D8:86:78:DD:F0:96:4D:29:C1:06:1B:2B:D2:70:15:BB:BA:38
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/WjTYhnjd8JZNKcEGGyvScBW7ujg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.160.0/21
Signature Algorithm: sha256WithRSAEncryption
02:48:65:26:3b:7c:91:83:04:c2:de:84:a4:b0:6d:c1:a8:05:
d7:89:d3:42:72:45:45:f4:0e:89:0a:ce:02:32:8a:26:b6:1e:
d0:42:12:92:8b:0b:fd:0f:9a:39:91:04:55:f6:2b:a7:8b:84:
48:f6:b4:e1:5a:ea:0f:28:f1:30:90:8b:03:7e:be:d4:61:33:
f7:0f:8e:1e:9d:3b:49:a9:63:b2:cc:9b:cf:06:a0:6a:a4:a9:
72:af:92:1b:b5:67:b1:c7:46:cd:a1:f9:ba:cc:f5:b8:ec:fb:
fd:f8:dc:ea:a2:8b:99:2c:27:ba:a4:da:a1:54:f1:1b:4d:bd:
e0:f8:b7:5a:d1:3c:85:7d:55:e8:5f:03:3a:61:8c:37:83:97:
0d:4e:c5:6f:3b:7f:fd:a6:c8:6b:63:13:f1:63:94:8a:62:18:
39:c4:cb:e3:a9:32:4a:cd:97:5e:ad:40:40:f7:2b:bf:a6:47:
91:1f:d1:c7:07:97:c9:f1:d5:b8:ac:aa:df:3a:52:fc:b3:a3:
96:94:93:db:72:91:0f:50:31:9f:43:d8:00:6c:50:d4:3d:54:
fc:89:1b:6d:82:6a:0d:91:1e:62:3d:9b:e6:18:28:20:e4:cb:
66:85:05:35:4c:ad:cc:17:6a:35:92:17:2f:5f:c8:49:4f:60:
0f:92:f6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net