Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/iYA_2X6usQ-6YdR8PggDt72LFWo.roa
File: iYA_2X6usQ-6YdR8PggDt72LFWo.roa (raw, json)
Hash identifier: cU7w4mp5wZ9b5vYC2DRlLeH7emv6re8WBMB//kfRpeA=
Subject key identifier: 89:80:3F:D9:7E:AE:B1:0F:BA:61:D4:7C:3E:08:03:B7:BD:8B:15:6A
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01941FFA7666A2D1E9FC8E3038D89DB2E514
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/iYA_2X6usQ-6YdR8PggDt72LFWo.roa
Signing time: Wed 01 Jan 2025 03:48:15 +0000
ROA not before: Wed 01 Jan 2025 03:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199910
IP address blocks: 82.160.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:76:66:a2:d1:e9:fc:8e:30:38:d8:9d:b2:e5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 03:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89803fd97eaeb10fba61d47c3e0803b7bd8b156a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c9:9f:f2:0a:0f:6a:11:26:65:44:69:d0:78:
fd:82:f0:97:09:3d:05:ca:be:87:91:56:68:23:d8:
83:7e:20:65:cc:d2:7a:84:29:72:ca:41:92:fa:a9:
f5:f8:ec:17:e4:cb:19:d9:b5:8f:0d:6b:f3:e8:5c:
7d:33:b9:a4:44:20:95:81:ee:cc:77:4a:be:37:ab:
e2:dc:bc:32:db:1a:4c:9d:cb:ba:d9:67:a0:18:e6:
15:c9:06:da:20:76:e2:55:02:17:ee:90:7c:cf:79:
8a:a8:38:aa:a4:e9:aa:a2:78:f8:e6:de:22:ed:e7:
7b:8f:ea:ce:9f:a6:a8:11:3e:60:63:93:ea:4f:bf:
2d:dc:3d:59:0f:35:40:6b:dc:0b:8f:e3:c5:54:92:
ae:72:69:21:c4:4a:4f:10:31:1c:82:61:50:38:61:
aa:e0:b2:54:ec:c9:7a:d4:21:93:88:58:a9:5b:84:
f3:7b:12:6c:a6:b5:8d:47:41:85:8c:19:4e:0e:3d:
96:90:e4:6e:0a:62:f7:61:35:6d:00:f3:19:1a:f4:
4b:0f:5e:86:8a:c1:6a:3a:ce:1d:f8:d0:fe:cb:54:
5c:2c:ce:b1:19:87:c9:e1:f4:d1:71:3d:6e:02:20:
1d:9c:95:80:6b:77:0d:69:8b:d8:b9:cf:e5:8e:dd:
d6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:80:3F:D9:7E:AE:B1:0F:BA:61:D4:7C:3E:08:03:B7:BD:8B:15:6A
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/iYA_2X6usQ-6YdR8PggDt72LFWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.160.97.0/24
Signature Algorithm: sha256WithRSAEncryption
04:32:2b:15:8c:34:f7:06:bc:54:44:22:0f:a0:2e:ad:91:a4:
14:af:2b:94:e5:b3:46:69:65:29:71:1a:7e:d2:06:cd:dd:dc:
07:50:87:03:a9:84:27:30:cb:06:06:e9:60:68:a0:12:e7:68:
b0:d6:e1:b2:83:c5:0d:1a:15:7f:35:4d:c4:e0:88:78:21:9d:
03:a6:11:41:5c:62:44:c6:d3:b8:77:81:1b:2d:e9:3e:ec:e3:
15:27:29:25:11:c9:42:ce:46:99:36:82:82:b4:8d:78:82:65:
df:d5:d6:55:1e:e6:6c:56:22:89:96:d9:3e:23:93:f2:d0:65:
b3:74:2d:8d:6f:85:6d:41:b2:15:e5:09:d4:a6:ff:ce:34:e7:
51:91:fc:60:e5:45:15:c8:77:3c:e2:2e:f3:02:f1:09:77:62:
5b:81:6c:46:0f:17:59:72:85:27:37:6e:73:77:c8:30:58:04:
9b:ed:0a:3b:66:cd:09:b4:27:f7:aa:fb:93:b7:3f:27:3e:9a:
2d:2b:29:b4:bd:c5:bd:2f:46:ff:77:05:3f:cb:bd:c3:ca:8c:
1e:84:f8:94:68:c5:f2:6e:56:cf:02:af:3c:aa:4c:77:e8:1a:
b7:ca:76:3b:31:cb:aa:a7:58:64:81:3a:c1:3d:44:f8:cd:49:
fe:06:b1:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net