Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/ZZhM4agMSLBIL2haYlsOTut45qw.roa
File: ZZhM4agMSLBIL2haYlsOTut45qw.roa (raw, json)
Hash identifier: tlZdQEIfIHfZTsCBuvFm/zZ2aWHrYYJIO+AutbHuFk4=
Subject key identifier: 65:98:4C:E1:A8:0C:48:B0:48:2F:68:5A:62:5B:0E:4E:EB:78:E6:AC
Certificate issuer: /CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Certificate serial: 019423D79916A00AC0C0BF72880F47D84A1E
Authority key identifier: EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/ZZhM4agMSLBIL2haYlsOTut45qw.roa
Signing time: Wed 01 Jan 2025 21:48:39 +0000
ROA not before: Wed 01 Jan 2025 21:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207388
IP address blocks: 81.30.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:99:16:a0:0a:c0:c0:bf:72:88:0f:47:d8:4a:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Validity
Not Before: Jan 1 21:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=65984ce1a80c48b0482f685a625b0e4eeb78e6ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0e:2f:ff:44:0f:9f:95:dc:b2:ba:7f:40:c6:
bc:94:d6:88:cd:01:b9:f1:fd:77:55:64:b9:c0:19:
93:70:34:e0:dc:6d:1a:e3:66:01:04:33:29:b0:62:
fc:a5:18:2a:0d:df:45:13:96:0f:4c:da:07:09:d2:
5c:29:f3:91:a5:47:f7:2a:95:ec:11:aa:c9:6c:45:
d1:72:be:11:d3:7d:23:18:78:ae:06:5a:85:c7:cb:
bf:66:8e:2f:92:7b:bc:47:d3:56:9b:af:72:5f:e6:
7d:7c:4a:0e:e3:98:80:22:01:f5:00:a0:e8:4b:85:
61:e0:ac:ae:99:1a:e3:02:04:9b:b3:f2:6b:a4:3e:
c4:cc:a3:ad:33:7a:2e:da:29:57:17:36:db:8a:8f:
37:88:ea:49:7c:c8:72:04:bd:38:83:89:59:c4:88:
dd:2e:14:79:1a:b2:f4:a3:8e:ae:5f:3c:fb:a4:12:
5b:3c:07:84:dc:fc:8f:89:d9:79:48:62:7a:72:ea:
59:d9:26:60:be:8b:ce:5c:b5:7b:f5:e0:22:e2:05:
b5:20:11:fd:e6:f9:4a:d7:65:3b:f4:6f:2c:8a:88:
18:32:b6:ad:ab:10:46:14:22:90:a0:94:cd:d9:89:
84:d7:ce:96:a2:a9:d6:f5:bc:7b:98:71:e7:82:ea:
11:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:98:4C:E1:A8:0C:48:B0:48:2F:68:5A:62:5B:0E:4E:EB:78:E6:AC
X509v3 Authority Key Identifier:
keyid:EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/ZZhM4agMSLBIL2haYlsOTut45qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/7HRpxUKO75q3aNntbCyJRDprtL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:80:6c:4d:5e:71:8b:dd:3d:84:31:18:f1:63:69:14:03:03:
10:cf:3a:65:fc:e9:0d:d9:64:e1:06:fb:f8:7f:ed:08:73:10:
e2:55:a0:64:ff:ba:aa:5c:09:83:89:56:74:72:70:58:5d:2e:
69:4e:96:ff:c5:da:03:8f:23:ab:b8:c8:39:b9:18:84:43:b8:
ab:18:63:b3:4e:22:13:73:53:81:e9:38:dc:2c:c0:e7:08:d6:
90:05:04:ac:e6:39:de:91:53:85:1c:82:87:bb:4d:96:07:0b:
8f:82:3e:e9:3d:25:77:50:64:66:a9:47:a2:6c:b6:22:fa:1d:
dc:b7:f6:f7:33:3f:70:ac:7d:d5:5d:9a:ae:e2:02:9f:2a:9b:
dc:9e:b0:9b:0a:d7:3d:69:21:5f:d3:dd:a4:ea:3e:58:2a:1b:
60:8d:e9:8f:ba:04:df:c9:91:ea:89:cf:1c:5e:45:f4:74:6d:
65:53:fb:00:f3:91:4e:5d:84:73:64:d0:51:36:35:fa:8a:b8:
53:1e:65:be:89:67:82:3f:19:32:5d:40:65:7f:d3:1a:49:b5:
7f:89:e0:ce:60:2c:b4:d6:11:3a:8d:9a:22:01:1f:14:05:24:
40:db:5b:96:71:05:77:9a:f1:95:14:31:45:0b:04:fc:70:f0:
a6:9e:83:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:22:06 2025 by rpki-client on console.sobornost.net