Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/0F29lTh5g8dl00BTttMJHXDlxXo.roa
File: 0F29lTh5g8dl00BTttMJHXDlxXo.roa (raw, json)
Hash identifier: XXznrLXbXMiSUary8NYBr+/upyWAZYJt+xoqdQS8x4E=
Subject key identifier: D0:5D:BD:95:38:79:83:C7:65:D3:40:53:B6:D3:09:1D:70:E5:C5:7A
Certificate issuer: /CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Certificate serial: 019423D796AE7AECD3D2B4A3FF5184DEBE2E
Authority key identifier: EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/0F29lTh5g8dl00BTttMJHXDlxXo.roa
Signing time: Wed 01 Jan 2025 21:48:38 +0000
ROA not before: Wed 01 Jan 2025 21:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44947
IP address blocks: 81.30.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:96:ae:7a:ec:d3:d2:b4:a3:ff:51:84:de:be:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Validity
Not Before: Jan 1 21:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d05dbd95387983c765d34053b6d3091d70e5c57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:65:f2:0f:42:ed:38:4b:88:3a:29:e8:e8:74:
fd:d3:e6:3c:8b:df:bc:06:6f:25:a8:80:17:22:ad:
ae:59:33:0e:4c:1c:c9:cf:35:2d:68:63:60:07:0f:
ec:d2:82:2b:d4:8c:c1:1b:e2:50:f7:c2:9b:40:6e:
e2:e0:5d:59:04:78:9e:70:87:ab:2e:2e:53:fc:45:
2f:4d:f4:9a:20:d1:2c:0c:09:e0:87:fd:88:38:f2:
e5:50:e9:a9:34:d7:49:09:3f:95:fd:27:2f:e4:e0:
6e:e1:cf:76:ac:b5:ae:7a:4f:1a:e2:c9:4c:9b:71:
2b:e2:99:8c:25:e9:ea:5a:c1:47:fe:a7:8b:15:a4:
0b:ba:e1:e0:e8:76:21:d0:6d:47:4a:a6:c7:df:22:
e0:fc:d1:63:f6:56:f5:13:c8:5b:2a:39:e5:a8:30:
9b:3a:ec:11:aa:94:04:f6:ad:0a:11:a4:62:02:5d:
c7:9c:c4:3b:c7:70:c9:e8:b1:43:f5:ac:c6:46:0e:
5c:b4:5b:07:36:5d:7b:98:0d:8e:e1:e2:43:c9:5e:
0e:cb:c3:1f:a5:de:cc:fa:23:1f:f4:ac:ce:7d:19:
fb:4d:4d:aa:22:8f:e9:0e:39:94:a8:e9:3b:74:cd:
b0:2a:0f:5f:b6:8d:2d:8a:6e:e8:70:82:72:6e:24:
6d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5D:BD:95:38:79:83:C7:65:D3:40:53:B6:D3:09:1D:70:E5:C5:7A
X509v3 Authority Key Identifier:
keyid:EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/0F29lTh5g8dl00BTttMJHXDlxXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/7HRpxUKO75q3aNntbCyJRDprtL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:6b:f3:ac:1e:62:90:f8:3d:cc:b9:e6:41:9c:8f:b4:26:5c:
d0:44:3d:c6:39:50:fa:c7:1d:5d:ef:c5:38:9d:fb:d2:0e:60:
66:98:e5:e4:29:bd:7a:a7:55:a6:6a:d7:86:1f:97:73:97:25:
a9:e1:8c:e5:f1:fc:95:50:ff:63:a8:82:fc:d1:c2:d7:21:dd:
b8:85:55:c4:55:a9:a8:b3:68:8a:63:cb:38:bd:ae:57:3e:3a:
43:2c:22:d6:96:a6:8a:21:e0:f6:cb:4e:9a:38:ec:cf:31:2d:
fd:c8:21:88:08:fd:65:b9:b6:fe:cb:3f:b1:7b:61:42:b5:fa:
d3:29:ae:03:c1:0b:38:ac:2a:b2:fd:52:31:e7:47:02:24:e0:
76:de:f5:2d:ee:0d:38:e9:5f:c0:36:57:0d:70:8c:10:2f:9e:
ca:5e:25:28:0f:0a:34:9a:25:20:e0:bf:b2:e1:f7:0f:4e:2c:
e8:5c:67:cd:f2:b9:d5:31:9c:ae:e6:09:64:27:45:61:7b:2a:
4e:97:5c:4c:bb:e7:bd:0d:dc:b1:1f:f0:a2:5a:cc:19:65:ab:
ec:a9:a7:ed:94:4c:a0:66:5a:82:42:8b:14:af:5a:81:52:83:
6e:d5:ae:c8:70:b0:32:98:73:04:37:37:8a:a2:04:cc:1a:11:
eb:ac:5c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:22:06 2025 by rpki-client on console.sobornost.net