Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/iDHFx2Zwy-f_IDJH8ymgCbum6nA.roa
File: iDHFx2Zwy-f_IDJH8ymgCbum6nA.roa (raw, json)
Hash identifier: BRwzpnb5uRZBZyO/g9hikbLOanVTPu4OHJMhQpM40Gc=
Subject key identifier: 88:31:C5:C7:66:70:CB:E7:FF:20:32:47:F3:29:A0:09:BB:A6:EA:70
Certificate issuer: /CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Certificate serial: 01941FFA81943CC5B9DEBC62A9B254AC74ED
Authority key identifier: 66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/iDHFx2Zwy-f_IDJH8ymgCbum6nA.roa
Signing time: Wed 01 Jan 2025 03:48:18 +0000
ROA not before: Wed 01 Jan 2025 03:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58222
IP address blocks: 45.80.16.0/22 maxlen: 24
91.210.70.0/24 maxlen: 24
185.234.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:81:94:3c:c5:b9:de:bc:62:a9:b2:54:ac:74:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Validity
Not Before: Jan 1 03:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8831c5c76670cbe7ff203247f329a009bba6ea70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:1f:95:d3:ca:a9:b3:33:37:5c:44:45:30:
da:f5:05:76:de:2f:8d:63:75:4e:98:33:41:aa:cf:
20:9b:0b:49:f7:83:67:76:8d:ca:40:ef:50:f0:92:
db:1b:61:ac:47:fa:cd:24:49:73:94:15:6a:a0:df:
3e:5c:fb:da:9d:c5:48:e4:57:a9:4d:78:f2:4c:a6:
c3:30:b5:d4:18:1b:f0:3d:2a:06:a2:1b:b1:da:a1:
7c:be:e1:e0:bd:f9:62:12:52:a4:1d:ad:69:ac:77:
2a:cb:f8:5b:03:38:63:a1:d1:93:fc:21:54:f8:6c:
73:4f:da:bd:83:60:38:e3:a2:d7:7e:b4:f3:09:55:
e6:50:c7:05:ab:c5:e5:76:9b:c3:a8:e6:b7:46:ee:
88:f8:2a:3a:a0:ee:53:4b:a3:b3:26:d9:7e:60:96:
f6:d0:d5:9a:51:e8:75:64:db:f2:21:a6:bd:97:34:
03:7f:f2:cc:04:20:4c:12:ca:a2:b4:32:be:b8:43:
b4:d2:f7:99:15:61:da:8a:e6:9c:e4:a2:1d:54:20:
12:da:89:3a:44:7d:d5:39:95:f6:4d:91:bb:f5:4a:
38:82:5f:50:57:ce:35:d1:ab:73:2f:31:d7:f6:6a:
99:44:39:ea:98:12:78:bb:b4:0b:d4:5d:07:03:33:
38:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:31:C5:C7:66:70:CB:E7:FF:20:32:47:F3:29:A0:09:BB:A6:EA:70
X509v3 Authority Key Identifier:
keyid:66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/iDHFx2Zwy-f_IDJH8ymgCbum6nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/Zt_InAeuEzG_s3E4Vo6nmof-zzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.16.0/22
91.210.70.0/24
185.234.16.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:60:77:e5:50:dd:26:34:8c:f3:88:4a:8c:2d:10:6f:0b:e6:
ce:da:1d:1f:c7:69:1c:36:ae:73:d8:9d:0f:04:9b:06:1a:f1:
a3:a6:c2:59:48:c7:2a:94:05:0c:82:6f:e8:59:34:2e:cf:34:
83:d5:8f:6a:54:9d:ef:1a:d6:01:aa:43:70:31:17:40:1c:a6:
c9:ea:43:d7:d0:5c:90:a2:1c:be:88:3f:d9:f5:b9:60:14:52:
37:aa:11:2a:9f:d2:f2:e5:c9:7e:d9:5c:ce:b4:c2:3e:b1:5c:
c8:21:27:0e:5b:9e:f5:8d:45:6c:6f:c1:43:5e:b0:81:35:bc:
28:77:f1:2d:36:ba:0e:26:eb:02:7d:ab:52:bd:17:87:67:67:
c7:89:35:36:d9:b5:78:28:d0:4a:3e:db:93:27:8b:94:29:ff:
2e:56:86:6e:06:9d:14:b0:48:b3:64:d0:ae:8f:bd:42:1e:df:
9a:f3:bb:d6:7e:87:58:0c:87:97:c9:f3:eb:8f:c6:60:9f:50:
62:c3:75:bb:ae:07:de:cc:67:06:41:e0:a6:bc:f9:86:75:b6:
c8:9f:f0:6f:87:2e:d2:11:9d:a4:c5:89:33:f3:8f:57:ba:18:
13:34:88:9e:7d:19:8d:c4:e3:d8:6d:8f:e1:68:3a:92:2e:0d:
fa:f5:85:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net