Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/bC09ek5WuOr4KHz6XRBeAdZr3Wg.roa
File: bC09ek5WuOr4KHz6XRBeAdZr3Wg.roa (raw, json)
Hash identifier: 9rtPMg3SgxD8TFsidIElrkOmK7YMUicLUpE0zFUPIvo=
Subject key identifier: 6C:2D:3D:7A:4E:56:B8:EA:F8:28:7C:FA:5D:10:5E:01:D6:6B:DD:68
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 019426D9EB94D81A92B2F2CDF2E637D24E91
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/bC09ek5WuOr4KHz6XRBeAdZr3Wg.roa
Signing time: Thu 02 Jan 2025 11:50:03 +0000
ROA not before: Thu 02 Jan 2025 11:50:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57456
IP address blocks: 83.217.220.0/22 maxlen: 24
83.217.220.0/23 maxlen: 23
83.217.222.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:eb:94:d8:1a:92:b2:f2:cd:f2:e6:37:d2:4e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Jan 2 11:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c2d3d7a4e56b8eaf8287cfa5d105e01d66bdd68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b0:ee:05:05:f9:cd:47:e3:58:c6:5f:b4:a2:
47:b2:53:d8:28:c6:58:35:a5:2e:99:e0:9f:f2:e5:
a7:0a:e4:db:c6:7e:36:b1:08:46:3b:b5:0b:34:ce:
d5:20:f8:1a:9a:54:96:12:2d:4d:0a:fb:ee:28:4b:
d4:95:b6:60:27:b7:e5:cb:87:2f:81:67:15:a3:4f:
c5:56:cd:12:00:01:5a:c0:4f:56:3e:d9:62:e3:33:
37:da:35:77:8c:24:8b:73:08:64:33:2f:a2:0a:a5:
65:e2:cf:20:41:6e:7f:57:6a:a5:fb:a3:a4:5e:91:
bc:69:05:77:37:2a:11:43:3b:0a:07:09:fe:56:74:
5a:ea:69:fe:64:5e:fc:42:61:87:c4:62:11:c2:6c:
cc:a3:d9:fa:7d:73:54:9f:e8:a7:73:19:06:6e:77:
4a:ed:9b:b6:d6:22:02:dd:d9:3b:bc:44:a5:82:21:
da:07:e4:7b:a4:3c:f6:65:54:08:b3:53:9d:05:fc:
c3:9a:8e:21:0d:42:4f:a6:d3:96:c6:b8:88:33:d9:
52:e1:e7:94:29:6c:a2:2f:c9:7c:c1:d6:f8:8c:0b:
af:a9:d9:66:4c:b0:cf:2f:39:39:f4:1d:d5:5b:6c:
2b:97:16:e2:b5:51:4e:ca:0f:46:e6:15:5e:6b:e9:
5e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2D:3D:7A:4E:56:B8:EA:F8:28:7C:FA:5D:10:5E:01:D6:6B:DD:68
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/bC09ek5WuOr4KHz6XRBeAdZr3Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.220.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:c1:f1:52:4c:8d:7b:18:30:ce:64:85:b1:6c:21:90:7e:fe:
c9:f9:27:0d:1c:99:a9:cc:ee:06:3a:06:00:7a:79:59:1d:00:
68:52:c9:dd:f0:03:63:93:5e:5a:17:2b:99:00:8b:81:04:4d:
3f:58:3a:a1:ce:6b:bb:c5:46:d3:0a:b4:25:3f:84:23:57:9d:
0b:3a:d7:40:04:2b:1b:06:4b:ad:8a:6f:18:dc:ff:61:05:0c:
09:92:af:d2:27:18:75:91:f4:31:37:5c:9d:ef:52:47:96:00:
d9:78:47:45:97:fb:90:dd:57:4b:58:14:49:c3:74:aa:17:00:
38:73:d7:94:61:a7:97:0a:79:d2:1a:3d:a9:2a:18:c9:3e:92:
9d:4f:0f:81:bf:48:8d:92:ad:f2:87:58:03:4d:a7:0b:2d:f6:
ea:61:6b:0e:04:28:3a:05:fe:af:27:32:3a:6b:80:cc:90:32:
1c:25:86:12:c9:fc:46:2c:39:12:de:2a:8c:0b:c2:37:c2:2a:
1b:cc:99:da:99:0e:b5:4f:90:da:4b:b0:fc:e1:24:b9:56:54:
a1:10:fa:db:a2:25:39:60:df:c0:ea:37:d0:42:8f:d0:0b:90:
52:41:08:0a:a2:b3:54:33:e3:a9:b7:a0:c0:e8:b3:18:cb:60:
27:7a:33:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:50 2025 by rpki-client on console.sobornost.net