Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/mazjpEOiTRGyO0IL263f_3CQd1U.roa
File: mazjpEOiTRGyO0IL263f_3CQd1U.roa (raw, json)
Hash identifier: MKiEFvVqubL0G1YHY988sj28nrhwlcgHnMA3zXfPogY=
Subject key identifier: 99:AC:E3:A4:43:A2:4D:11:B2:3B:42:0B:DB:AD:DF:FF:70:90:77:55
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0195477450B67C731BD67C9C3BBA754F549A
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/mazjpEOiTRGyO0IL263f_3CQd1U.roa
Signing time: Thu 27 Feb 2025 12:49:19 +0000
ROA not before: Thu 27 Feb 2025 12:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34918
IP address blocks: 89.44.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:47:74:50:b6:7c:73:1b:d6:7c:9c:3b:ba:75:4f:54:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Feb 27 12:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99ace3a443a24d11b23b420bdbaddfff70907755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bd:62:8f:28:81:ca:0c:6e:9b:5b:9d:6d:7f:
53:81:b0:39:c6:22:36:68:ff:ab:94:5b:86:ff:94:
81:5e:ca:ed:d7:1d:27:1e:d8:89:da:ba:07:b5:92:
ae:12:61:22:40:33:49:ed:e1:fc:1a:3c:9a:b4:6b:
e6:57:cc:f0:d5:74:9b:8a:ad:02:e8:7a:9b:6d:6a:
cc:2b:d7:c7:84:65:cd:68:00:bd:a5:53:fd:e6:86:
ea:03:4e:80:b3:47:27:d4:63:0a:4b:f9:82:01:da:
09:3a:46:7c:03:9b:0f:ca:bf:d5:06:c4:95:9a:19:
df:94:44:8f:7a:fa:2f:bb:15:a2:f1:41:29:33:2b:
ae:85:cb:5e:39:21:d6:44:47:77:45:26:59:59:c6:
82:46:92:34:36:b7:60:56:81:a9:a1:13:a1:a8:dc:
84:7f:be:22:a9:25:0d:90:c0:3a:4c:1f:b7:ab:03:
8e:a5:86:18:cb:b5:57:38:39:48:d8:7a:52:85:75:
72:a3:4b:e6:6d:69:33:60:8c:51:14:28:45:e0:2e:
90:1b:d0:a9:85:ee:36:6c:ab:fe:5a:f2:ab:ec:da:
a9:5a:b5:c6:79:a0:b2:54:09:af:b0:bf:22:3a:2d:
9b:88:71:df:bb:60:0f:02:1d:87:cb:eb:e4:90:5d:
08:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AC:E3:A4:43:A2:4D:11:B2:3B:42:0B:DB:AD:DF:FF:70:90:77:55
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/mazjpEOiTRGyO0IL263f_3CQd1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.243.0/24
Signature Algorithm: sha256WithRSAEncryption
12:05:a6:68:c2:61:15:29:42:ec:89:9f:40:35:d6:5c:c8:77:
36:10:a5:aa:69:af:69:17:7a:2b:3a:00:ad:fe:e4:3c:af:ae:
25:e6:00:60:f3:32:1e:c7:7b:4d:92:a1:74:fb:12:ab:76:b8:
eb:cc:bc:11:d4:d0:96:0e:5f:0b:ab:63:73:73:59:61:85:17:
1a:b9:ef:a5:27:91:69:4e:35:4f:43:a0:a3:62:45:a2:51:42:
e0:2e:82:c7:e2:e1:a8:56:03:62:56:53:3a:e5:07:ea:b2:22:
61:64:35:f6:d0:e1:94:de:f5:a4:45:07:85:f2:45:23:93:f7:
4d:e9:e2:d5:57:18:b9:c1:a2:d7:e1:8d:72:18:94:4d:17:db:
be:c7:a9:8d:c5:52:3f:7c:26:f0:67:ad:84:bf:6f:90:30:9a:
57:13:81:53:19:d5:1e:88:49:08:d5:2d:e4:c4:f3:8b:f6:78:
c4:22:45:fa:d9:cd:bc:78:4c:80:51:7b:ae:51:65:61:25:a0:
92:e2:83:8e:32:bc:24:22:01:f9:71:13:3d:e4:10:2c:e9:22:
45:31:16:28:73:f9:1b:51:e5:fc:b9:2e:9f:32:e8:48:98:6a:
c7:8d:69:94:b3:82:60:22:51:52:23:83:74:57:c4:62:26:5d:
d2:d2:be:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net