Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/JN5O0QCPrYg2gGsd5bY4WvuMm88.roa
File: JN5O0QCPrYg2gGsd5bY4WvuMm88.roa (raw, json)
Hash identifier: Fx9qqqMuryeKb6+Rb+Dr8zIFkW7rIV44uKPsq4V2Qsk=
Subject key identifier: 24:DE:4E:D1:00:8F:AD:88:36:80:6B:1D:E5:B6:38:5A:FB:8C:9B:CF
Certificate issuer: /CN=7ebb888f2b99de9972e2446eba058ab8e2cd7b3f
Certificate serial: 0194228DDAE4E9964E02F270AA31C4C02260
Authority key identifier: 7E:BB:88:8F:2B:99:DE:99:72:E2:44:6E:BA:05:8A:B8:E2:CD:7B:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fruIjyuZ3ply4kRuugWKuOLNez8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/JN5O0QCPrYg2gGsd5bY4WvuMm88.roa
Signing time: Wed 01 Jan 2025 15:48:29 +0000
ROA not before: Wed 01 Jan 2025 15:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201032
IP address blocks: 185.77.89.0/24 maxlen: 24
2a05:60c0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:da:e4:e9:96:4e:02:f2:70:aa:31:c4:c0:22:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ebb888f2b99de9972e2446eba058ab8e2cd7b3f
Validity
Not Before: Jan 1 15:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=24de4ed1008fad8836806b1de5b6385afb8c9bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6d:85:e6:df:6e:43:4a:4d:d9:2f:95:37:2b:
19:60:8f:c5:84:db:30:05:2e:0e:6c:a7:65:aa:8c:
b3:6a:9a:67:91:06:1e:79:2a:ad:31:c2:c0:cf:59:
72:b9:d7:17:17:2c:81:7d:5d:de:9d:27:a8:e6:c9:
94:08:22:49:f7:91:78:f2:00:e5:85:ae:96:e5:de:
bc:d1:1d:00:ec:6c:de:33:e7:7e:11:67:a7:24:ef:
dc:38:75:a6:04:a4:52:1f:16:6d:a1:d3:1c:dc:8a:
e4:8f:f8:f6:56:61:38:35:25:77:ad:26:c1:3a:95:
a3:87:29:bf:bd:6e:f9:a9:92:7e:87:96:02:af:bf:
c3:49:f3:b2:5c:ff:27:c2:92:40:4a:15:6b:22:17:
73:18:4c:e9:60:8c:4d:cf:a7:1c:bf:11:3f:52:dd:
74:6a:a9:2d:eb:23:89:3a:f0:e8:81:ad:f5:ae:d0:
3c:6f:a9:28:72:d0:1b:01:08:15:57:f7:0d:e1:66:
9b:d3:4f:79:22:4a:90:cd:6d:62:4a:bc:51:30:86:
4c:18:80:91:97:2a:ef:dd:52:d1:8a:f9:27:8b:ad:
39:86:70:c4:1c:5a:fa:59:e8:98:a9:1e:6b:4a:79:
a6:c8:6f:b6:c1:5a:ae:8f:d4:e0:2f:1c:33:30:90:
c5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DE:4E:D1:00:8F:AD:88:36:80:6B:1D:E5:B6:38:5A:FB:8C:9B:CF
X509v3 Authority Key Identifier:
keyid:7E:BB:88:8F:2B:99:DE:99:72:E2:44:6E:BA:05:8A:B8:E2:CD:7B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fruIjyuZ3ply4kRuugWKuOLNez8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/JN5O0QCPrYg2gGsd5bY4WvuMm88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/fruIjyuZ3ply4kRuugWKuOLNez8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.89.0/24
IPv6:
2a05:60c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
7b:18:42:3b:fb:cd:4a:49:05:ba:bc:de:c1:69:72:e7:3e:4c:
2f:1b:8f:82:fb:75:f6:16:9a:d4:31:5a:d0:05:97:c4:2d:08:
e7:a1:df:a9:55:1f:85:4a:1d:13:85:cf:36:65:a5:d3:64:67:
74:ec:46:a7:62:92:2b:e1:d7:e7:6c:02:26:b3:45:17:98:46:
46:22:75:33:e2:28:ab:56:55:20:c3:07:b8:79:02:bd:de:cb:
7d:18:e8:21:6a:6b:c5:c2:63:a1:ba:07:10:38:81:7e:4b:66:
99:51:c7:ee:12:ae:fe:db:5a:0e:ce:7f:8d:24:a7:b3:96:c8:
7f:31:65:f4:a6:84:44:4b:85:24:bb:6d:88:13:3f:19:89:4c:
c2:52:a6:e6:2f:d0:17:5f:25:bb:f0:28:9d:67:f2:85:3b:03:
14:17:90:dc:25:66:2d:84:da:b5:bd:5e:5b:89:2e:8e:c3:03:
07:47:9d:40:b7:35:21:10:03:c7:fb:85:dc:3b:c3:ed:7a:8b:
5d:e7:3b:2b:1b:9f:87:ea:ce:b6:5b:16:28:aa:52:6f:f3:4a:
21:88:12:82:79:fb:80:35:d8:25:c0:41:c0:77:b4:bc:23:25:
d8:28:1a:94:82:f7:5e:8e:38:13:6f:9f:e5:51:d7:55:8a:d8:
a9:05:37:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:15 2025 by rpki-client on console.sobornost.net