Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/8USyjcIT_1GOHpkZIowE_fxQy7g.roa
File: 8USyjcIT_1GOHpkZIowE_fxQy7g.roa (raw, json)
Hash identifier: SrhI+FQKoLnBdoVigVeYKJo+5g+IVUyEqc65USNCWB0=
Subject key identifier: F1:44:B2:8D:C2:13:FF:51:8E:1E:99:19:22:8C:04:FD:FC:50:CB:B8
Certificate issuer: /CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Certificate serial: 019425FC3D9D49AE42BE4160A8B95B97DDEB
Authority key identifier: 88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/8USyjcIT_1GOHpkZIowE_fxQy7g.roa
Signing time: Thu 02 Jan 2025 07:47:55 +0000
ROA not before: Thu 02 Jan 2025 07:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212288
IP address blocks: 83.242.108.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:3d:9d:49:ae:42:be:41:60:a8:b9:5b:97:dd:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Validity
Not Before: Jan 2 07:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f144b28dc213ff518e1e9919228c04fdfc50cbb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f1:e3:45:bf:b4:56:11:d4:da:95:a8:73:56:
6a:d0:6a:d1:23:e8:a3:99:d0:61:b0:8a:33:30:ed:
8f:a4:07:41:d9:e1:d0:be:38:d7:53:e4:2d:a3:ef:
c5:99:94:48:02:68:5f:4f:1d:21:05:d5:5e:80:26:
64:bd:34:0e:d5:d7:b9:f3:d3:f8:e0:b4:f1:d4:2e:
04:b6:d4:9e:d2:47:e4:e7:54:69:d0:e9:f0:89:eb:
df:b1:f7:9e:93:93:f2:27:78:cb:0b:05:d1:ea:6e:
7a:2e:87:8e:7e:c1:48:2a:75:f5:0e:e5:12:71:22:
0e:07:6a:b3:67:8d:35:2d:df:c3:35:43:a4:d9:76:
2a:96:4c:87:af:fa:60:33:2d:f8:39:48:b4:9d:bf:
d7:7d:fe:0a:ba:bf:12:20:74:d5:7e:de:91:86:d9:
0e:f0:fa:5d:3d:8c:d3:0d:06:43:98:17:6a:5c:30:
47:94:73:69:10:8c:bc:1c:06:8e:a8:a6:02:39:fa:
e0:83:56:80:6e:1e:04:a0:a1:60:88:42:9f:ac:50:
9e:8e:40:21:72:12:ef:62:1a:b2:43:55:42:d0:1e:
6d:c9:6e:db:dd:a1:ee:45:02:2f:a0:08:33:97:3c:
9c:ca:56:cf:9e:64:6b:39:be:d6:82:7a:11:f5:df:
13:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:44:B2:8D:C2:13:FF:51:8E:1E:99:19:22:8C:04:FD:FC:50:CB:B8
X509v3 Authority Key Identifier:
keyid:88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/8USyjcIT_1GOHpkZIowE_fxQy7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.242.108.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:bf:98:05:b2:0a:f3:48:d8:1f:27:3b:ca:c1:81:36:0a:8d:
63:ee:be:28:9b:06:13:22:4a:98:83:17:73:9d:84:7e:75:82:
2e:cd:6f:61:f5:93:ce:11:48:aa:6f:92:6f:59:8b:96:21:cf:
d0:fa:cb:88:ad:7d:bc:43:23:49:dc:a9:68:2f:dd:dc:dc:01:
18:d7:16:42:c7:b1:30:fb:2a:8c:12:fd:a0:22:73:af:d2:09:
e6:82:f0:81:ad:47:b4:d4:90:02:23:e6:e4:fb:ca:5f:f8:9a:
ea:d6:66:92:ab:a9:96:3a:a4:5d:46:83:87:03:0e:5c:bc:03:
0f:ce:c4:37:98:6f:65:b9:08:f6:19:70:82:84:85:85:56:c2:
4b:76:91:0f:f4:a6:23:06:81:12:6e:b3:1d:2a:d1:d5:71:eb:
87:84:cc:d5:a6:bf:cc:18:31:eb:c1:24:dc:8e:56:29:ae:ad:
20:af:97:32:46:9a:1c:c4:c8:bc:60:ec:9e:21:e0:8b:17:5a:
77:0f:3a:87:8b:ea:63:d7:a1:47:15:49:52:d9:d2:9f:a3:91:
99:52:72:3a:27:e5:b1:7e:1b:a4:a5:0a:48:47:3c:c3:7a:ca:
f2:37:14:74:bb:6e:34:60:a2:23:8c:01:1e:a0:20:df:9f:a9:
4f:2a:a0:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:45 2025 by rpki-client on console.sobornost.net