Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/9e1d5b-de61-4d9a-84bd-02792f9cf07b/1/SP7-jlb8fquT9Xw5-EjgzR9HA2E.roa
File: SP7-jlb8fquT9Xw5-EjgzR9HA2E.roa (raw, json)
Hash identifier: DsFrWyBQnZWHq/oPisk4Qiv/gEwwPLiz9AzqPL+e0fg=
Subject key identifier: 48:FE:FE:8E:56:FC:7E:AB:93:F5:7C:39:F8:48:E0:CD:1F:47:03:61
Certificate issuer: /CN=c3042f5c4789c97c4f92ef2177e7b8938c8dd5c4
Certificate serial: 01904F614B0A4F0BEB622BC6D402F3B986DD
Authority key identifier: C3:04:2F:5C:47:89:C9:7C:4F:92:EF:21:77:E7:B8:93:8C:8D:D5:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wwQvXEeJyXxPku8hd-e4k4yN1cQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/9e1d5b-de61-4d9a-84bd-02792f9cf07b/1/SP7-jlb8fquT9Xw5-EjgzR9HA2E.roa
Signing time: Tue 25 Jun 2024 12:31:34 +0000
ROA not before: Tue 25 Jun 2024 12:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43259
IP address blocks: 89.145.170.0/24 maxlen: 24
89.145.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:61:4b:0a:4f:0b:eb:62:2b:c6:d4:02:f3:b9:86:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3042f5c4789c97c4f92ef2177e7b8938c8dd5c4
Validity
Not Before: Jun 25 12:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48fefe8e56fc7eab93f57c39f848e0cd1f470361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:26:12:ba:2a:de:48:77:80:1f:a1:03:26:a7:
3a:80:b6:e4:6a:e3:87:3c:15:70:35:85:ef:92:1b:
e3:eb:a0:82:7d:24:17:ae:d4:be:31:eb:0c:d0:9e:
4f:08:2e:8d:d6:40:de:96:72:94:13:08:1c:f5:4b:
cd:4e:5f:97:d5:d5:4d:d1:1a:58:10:a5:4a:89:9f:
f8:eb:78:8d:a2:bf:29:cd:0c:08:26:d5:9b:2e:51:
c1:2a:dc:fc:aa:bf:95:f3:ac:2c:d4:85:ac:73:1d:
1a:f2:08:d3:bb:1f:b0:64:e2:cd:8d:48:15:c6:1c:
0c:13:4a:d3:69:1d:25:94:0e:8d:76:b7:80:16:b3:
18:52:50:6d:e6:1f:0b:13:05:d9:5a:45:0b:c2:c4:
38:8b:cb:c1:6a:7d:1b:58:12:5a:88:5f:5f:de:38:
64:f9:ee:b3:df:a2:14:b0:7e:23:f0:ac:51:d4:bb:
b5:d8:ed:57:18:de:b9:96:a5:d1:d3:c5:a8:18:38:
d2:95:5b:c3:51:34:d0:ba:fa:b1:77:29:18:97:33:
67:2d:6b:97:a4:47:1f:1b:8f:2d:22:34:ed:78:a2:
99:79:c2:2e:f5:c5:bc:33:98:10:d9:12:50:54:33:
24:c4:c7:8d:7f:10:f4:26:d6:b9:bf:12:94:e2:bb:
c9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FE:FE:8E:56:FC:7E:AB:93:F5:7C:39:F8:48:E0:CD:1F:47:03:61
X509v3 Authority Key Identifier:
keyid:C3:04:2F:5C:47:89:C9:7C:4F:92:EF:21:77:E7:B8:93:8C:8D:D5:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wwQvXEeJyXxPku8hd-e4k4yN1cQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/9e1d5b-de61-4d9a-84bd-02792f9cf07b/1/SP7-jlb8fquT9Xw5-EjgzR9HA2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/9e1d5b-de61-4d9a-84bd-02792f9cf07b/1/wwQvXEeJyXxPku8hd-e4k4yN1cQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.145.170.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:91:01:31:10:e3:1b:0c:5b:5f:68:45:e8:66:54:94:39:30:
3c:bd:26:76:d5:27:8d:0c:f2:17:30:f3:b5:aa:1b:ec:7d:7c:
90:78:15:5f:f7:c2:28:0a:fa:88:60:b2:15:2d:88:b3:e2:24:
87:fe:e4:fe:d2:1c:7b:00:70:4c:f1:b0:2a:fc:bf:0c:58:ce:
18:1e:35:67:b1:f5:23:9c:87:9a:3f:ce:89:69:55:ea:63:63:
ff:37:78:81:42:bc:da:ac:c6:da:97:80:6e:77:c4:03:a6:df:
12:df:fc:61:0a:4d:5f:2d:74:98:d3:d3:57:2f:ce:5c:8c:2a:
22:f0:a5:4e:f5:1c:c0:ca:5c:1d:5d:e4:8e:18:5d:f2:ef:85:
9b:c0:b6:25:ed:e5:25:af:bc:f0:89:2f:65:02:0f:fb:43:03:
9d:ba:ee:08:9c:a6:72:5d:7f:3d:4e:a8:23:37:5e:06:4b:63:
73:31:dc:23:8e:61:e0:85:6d:bc:69:5f:f9:61:23:59:2e:ae:
00:d7:67:b1:e5:57:b9:39:df:ae:90:02:59:0d:49:da:da:e3:
bb:d7:44:1c:65:14:49:7d:3b:f0:ac:61:da:ba:96:db:ed:cb:
98:21:bf:e3:7d:36:1a:97:02:00:75:cc:16:a0:33:f3:49:70:
1e:2f:27:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:47 2024 by rpki-client on console.sobornost.net