Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/zYBlb8-4iJi2Xsk5poztWDw6ukY.roa
File: zYBlb8-4iJi2Xsk5poztWDw6ukY.roa (raw, json)
Hash identifier: veXHQ0WmE+2KQkfYtO+EXvFrciAIGT+yWdclt50BTQA=
Subject key identifier: CD:80:65:6F:CF:B8:88:98:B6:5E:C9:39:A6:8C:ED:58:3C:3A:BA:46
Certificate issuer: /CN=4cd47b8b8aa9fbcccff3d507814fc74464a2abf0
Certificate serial: 019427B518A8AF2ADFA5A1FF313F5BB88F99
Authority key identifier: 4C:D4:7B:8B:8A:A9:FB:CC:CF:F3:D5:07:81:4F:C7:44:64:A2:AB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNR7i4qp-8zP89UHgU_HRGSiq_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/zYBlb8-4iJi2Xsk5poztWDw6ukY.roa
Signing time: Thu 02 Jan 2025 15:49:27 +0000
ROA not before: Thu 02 Jan 2025 15:49:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60090
IP address blocks: 89.200.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:18:a8:af:2a:df:a5:a1:ff:31:3f:5b:b8:8f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd47b8b8aa9fbcccff3d507814fc74464a2abf0
Validity
Not Before: Jan 2 15:49:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd80656fcfb88898b65ec939a68ced583c3aba46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5c:58:dd:ce:e2:75:cf:bd:c1:76:b0:13:74:
4d:64:59:00:c8:d9:06:d9:b0:2d:b2:db:40:73:4b:
c7:a9:f8:43:d8:05:cc:80:dc:f8:cf:d6:c1:1f:da:
12:73:e7:da:d8:ff:0f:d3:cf:00:68:ff:45:57:91:
27:63:9c:87:42:43:f7:66:21:d3:71:9a:b6:3d:36:
17:cf:da:1d:a2:75:30:8a:6f:ce:00:de:af:fd:37:
03:90:d0:d7:02:6b:a1:13:9e:b4:3d:ae:fc:fd:20:
b3:a0:b1:20:24:0e:33:ca:00:74:1d:44:73:ba:23:
05:d1:6f:5c:34:72:22:e1:a9:5c:3c:fd:bd:ca:df:
86:5e:04:96:31:45:19:a0:2e:a8:97:cd:f1:1f:37:
eb:91:70:48:ce:fd:94:21:27:3c:f3:bb:2f:5a:0e:
dd:f2:8c:6c:8a:88:76:42:2a:0d:bd:92:89:90:a6:
e6:72:9c:4b:17:d1:d9:e2:07:88:5b:e9:f8:c1:7d:
cd:f0:27:db:a9:32:7c:31:ca:01:32:90:2d:25:da:
e9:83:b1:36:4e:15:57:f0:db:86:6c:86:31:00:2d:
d4:1a:29:10:ee:21:35:4b:c8:b4:c0:9f:57:5c:95:
71:aa:4d:a8:c5:ca:d7:27:01:5b:e4:b0:79:71:36:
37:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:80:65:6F:CF:B8:88:98:B6:5E:C9:39:A6:8C:ED:58:3C:3A:BA:46
X509v3 Authority Key Identifier:
keyid:4C:D4:7B:8B:8A:A9:FB:CC:CF:F3:D5:07:81:4F:C7:44:64:A2:AB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNR7i4qp-8zP89UHgU_HRGSiq_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/zYBlb8-4iJi2Xsk5poztWDw6ukY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/TNR7i4qp-8zP89UHgU_HRGSiq_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.200.243.0/24
Signature Algorithm: sha256WithRSAEncryption
59:32:b1:82:0f:e7:14:74:74:2a:35:0f:63:53:25:7b:56:02:
4e:6f:af:6f:60:3a:ff:14:f3:fc:51:3d:38:49:08:e3:8c:d3:
50:25:f0:a5:15:df:e5:3b:0b:a7:47:67:5c:c6:fc:7f:8b:4d:
82:2b:12:0e:db:34:a4:8f:55:4c:c0:d1:f2:11:fd:e7:89:8a:
14:86:10:2a:6c:21:71:a8:5e:cd:00:c4:ca:ca:f4:bc:a3:f0:
c7:b8:1e:c4:3c:49:64:66:d0:4f:39:17:8a:5c:48:5f:cf:3f:
63:49:7f:ad:aa:63:93:26:ad:8a:6d:f3:6c:1e:a4:55:4e:4e:
34:93:d6:01:58:25:f9:a2:3b:09:59:85:cd:7c:0c:13:9d:f7:
aa:c6:a8:e9:dc:a8:52:d9:dc:97:d8:79:45:59:2a:ed:ff:54:
cf:62:82:a1:34:d2:f3:7d:55:1f:7f:ac:0e:04:be:f7:29:ed:
58:2b:4c:3e:ca:99:fe:cf:02:43:64:c9:30:75:fa:42:04:fb:
b6:10:59:9c:9c:35:37:a1:df:1f:85:94:df:ff:08:36:67:cb:
2e:53:c8:40:d5:30:b4:b3:4d:50:c5:9f:ca:b8:a7:17:af:8c:
bf:1f:0f:10:64:4f:d7:89:39:69:2e:1c:8d:5c:2f:fa:34:5b:
96:8a:d0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:24 2025 by rpki-client on console.sobornost.net