Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/bjCT3AVcMSsUvzlUV22vDpDgm88.roa
File: bjCT3AVcMSsUvzlUV22vDpDgm88.roa (raw, json)
Hash identifier: x4ngTz88Z2Xqe2E3hfhNz2+VZin5gGJSvgjTiP2om64=
Subject key identifier: 6E:30:93:DC:05:5C:31:2B:14:BF:39:54:57:6D:AF:0E:90:E0:9B:CF
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01941FFA1E425DC6923C93F2611A73F656CD
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/bjCT3AVcMSsUvzlUV22vDpDgm88.roa
Signing time: Wed 01 Jan 2025 03:47:52 +0000
ROA not before: Wed 01 Jan 2025 03:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57187
IP address blocks: 94.207.32.0/20 maxlen: 24
2a00:f2f::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:1e:42:5d:c6:92:3c:93:f2:61:1a:73:f6:56:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Jan 1 03:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e3093dc055c312b14bf3954576daf0e90e09bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:53:c7:bd:12:57:94:aa:96:61:25:ec:30:c6:
e9:ce:25:f6:6b:0b:3c:a6:cb:8f:aa:19:3d:2c:f0:
94:f9:1c:c7:6d:f3:4f:cd:84:8d:19:24:ce:35:70:
31:64:26:83:d2:83:12:82:c9:7b:c8:30:58:bc:f6:
be:76:da:a1:69:e3:4a:bf:8e:10:cc:05:58:ce:b6:
8f:16:8a:e1:f4:e0:65:8b:1f:fd:d2:c4:71:bb:03:
eb:81:68:66:22:54:af:b4:4a:7c:b5:cd:ac:e2:5f:
b4:e5:de:20:c2:9b:81:db:3a:a1:ff:89:74:47:e6:
dc:96:b8:0d:29:1e:23:26:4f:44:e4:bf:5d:1e:c0:
01:2b:db:93:18:49:bc:14:dc:ed:41:83:f0:a3:c2:
9a:73:2b:b6:13:95:44:63:28:c4:45:92:00:d1:2e:
77:f6:1a:c4:de:35:2b:5a:49:33:9c:72:84:b5:03:
a9:62:19:45:0c:8f:65:6a:14:b5:0a:7f:01:d3:85:
74:48:a0:f1:4d:7b:52:97:ef:9c:4c:02:7a:62:db:
52:48:27:f9:e0:29:d7:1c:ff:c0:82:9e:21:25:40:
b7:a8:46:35:9b:c2:7f:24:06:65:88:a6:36:26:a9:
d7:b8:73:f6:b8:6e:d6:9e:1e:21:4f:53:2b:13:57:
fd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:30:93:DC:05:5C:31:2B:14:BF:39:54:57:6D:AF:0E:90:E0:9B:CF
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/bjCT3AVcMSsUvzlUV22vDpDgm88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.207.32.0/20
IPv6:
2a00:f2f::/32
Signature Algorithm: sha256WithRSAEncryption
6e:e8:86:b6:e6:74:1e:70:82:3a:35:89:f2:43:89:7f:87:a3:
90:1d:3a:b1:68:ae:27:18:4d:5c:6d:90:47:90:90:2e:2b:6a:
10:5a:05:4d:32:a8:d7:d1:e3:80:07:44:d3:ef:03:6b:12:a2:
b8:1f:99:b7:f7:7b:4d:ce:66:48:5f:e2:1d:24:52:23:37:ab:
91:f8:69:64:fe:ae:ec:f0:fc:31:2f:be:ef:03:70:c3:69:32:
dd:cf:54:b3:76:17:22:0e:9c:e1:3b:a1:dd:a4:d5:7b:61:dd:
86:fa:10:27:d7:49:06:d1:e3:92:81:fd:a1:9d:6a:65:53:b4:
40:35:ff:c4:53:60:c0:95:06:be:43:d0:5d:ce:b8:d6:2f:1c:
90:29:01:24:30:28:f7:67:69:0b:75:fa:89:ce:1c:ed:92:b1:
d9:a2:ff:7a:f4:db:c0:f7:8f:17:62:de:28:2a:bf:d8:e9:53:
e5:0c:c2:1d:d8:f4:c1:ae:de:94:c4:a2:04:fb:9c:58:60:2a:
fe:ad:e8:2a:26:62:6b:9b:cd:66:61:5e:06:a1:b8:49:fc:bd:
c2:d3:f2:6c:e1:52:a7:72:f8:e6:c0:2a:53:65:bd:14:bf:3c:
3d:b9:80:b3:c2:b7:8b:85:8c:31:ba:7f:77:72:66:f0:fe:bd:
54:81:b1:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:19 2025 by rpki-client on console.sobornost.net