Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/E5_9p_TGg2FNMpZSH1jH4wJ3rfA.roa
File: E5_9p_TGg2FNMpZSH1jH4wJ3rfA.roa (raw, json)
Hash identifier: GcTlxtoi4GEP2bLooVydD/oQvGI42+1RU87/9gjgDvc=
Subject key identifier: 13:9F:FD:A7:F4:C6:83:61:4D:32:96:52:1F:58:C7:E3:02:77:AD:F0
Certificate issuer: /CN=8569f2100c2fc454ad07adec796b9e6f6366f071
Certificate serial: 01942823E2342329376C9B1BD9207B119D80
Authority key identifier: 85:69:F2:10:0C:2F:C4:54:AD:07:AD:EC:79:6B:9E:6F:63:66:F0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWnyEAwvxFStB63seWueb2Nm8HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/E5_9p_TGg2FNMpZSH1jH4wJ3rfA.roa
Signing time: Thu 02 Jan 2025 17:50:27 +0000
ROA not before: Thu 02 Jan 2025 17:50:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57256
IP address blocks: 89.187.216.0/24 maxlen: 24
89.187.217.0/24 maxlen: 24
89.187.218.0/24 maxlen: 24
89.187.219.0/24 maxlen: 24
89.187.220.0/24 maxlen: 24
89.187.221.0/24 maxlen: 24
89.187.222.0/24 maxlen: 24
89.187.223.0/24 maxlen: 24
185.176.144.0/24 maxlen: 24
185.176.145.0/24 maxlen: 24
185.176.146.0/24 maxlen: 24
185.176.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:e2:34:23:29:37:6c:9b:1b:d9:20:7b:11:9d:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8569f2100c2fc454ad07adec796b9e6f6366f071
Validity
Not Before: Jan 2 17:50:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=139ffda7f4c683614d3296521f58c7e30277adf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:04:02:4f:86:ce:ce:ad:af:b2:5b:cc:8b:f7:
70:23:c2:2a:e3:65:69:2b:ee:b1:08:e8:9a:98:58:
34:1b:6d:74:c4:6e:13:89:83:77:9c:32:c3:d3:2f:
09:be:d3:dd:4b:ab:bb:80:4c:55:b2:c2:bf:59:e9:
a5:08:2f:b2:ac:01:34:f1:0e:3e:f1:35:6e:f7:84:
00:f4:1f:ac:6c:54:99:1f:52:61:a8:97:64:53:08:
c1:a2:9e:67:50:1f:db:52:8b:66:35:30:eb:6a:96:
b5:3d:a7:e6:6b:ca:85:1e:19:e3:18:77:c7:13:ae:
b5:e9:eb:df:68:65:53:01:4d:66:02:19:a4:c2:4c:
c1:29:dd:bc:e7:fd:80:fa:98:3c:0d:0d:59:8a:ed:
df:a8:6a:65:e5:c2:af:c9:66:9b:fa:8d:81:69:47:
c4:6b:71:96:c2:c4:34:97:55:6a:c8:76:31:59:e8:
22:23:55:67:5e:69:61:2c:01:d0:5a:a0:26:ae:ee:
45:0a:a9:bc:34:6b:dc:69:e4:1e:78:ec:86:bc:be:
4f:41:8f:77:b6:76:24:2f:3b:c2:a1:c9:67:73:69:
52:16:6f:63:26:a6:49:57:e4:7d:1b:87:54:24:7c:
9f:ea:1e:d5:2b:87:b9:d0:66:f3:ca:ab:62:5f:df:
a1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9F:FD:A7:F4:C6:83:61:4D:32:96:52:1F:58:C7:E3:02:77:AD:F0
X509v3 Authority Key Identifier:
keyid:85:69:F2:10:0C:2F:C4:54:AD:07:AD:EC:79:6B:9E:6F:63:66:F0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWnyEAwvxFStB63seWueb2Nm8HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/E5_9p_TGg2FNMpZSH1jH4wJ3rfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/hWnyEAwvxFStB63seWueb2Nm8HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.216.0/21
185.176.144.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:81:a0:06:f3:e1:77:e7:c2:3e:c4:67:28:dc:b7:b3:df:3a:
05:dc:d9:9b:c0:46:33:51:7c:4a:8c:8b:61:18:bb:12:4f:33:
12:08:52:ba:64:58:fa:95:76:ee:98:e6:77:b7:3a:d1:ed:5f:
40:9a:95:e8:74:d2:73:ce:1f:bd:87:be:a6:b8:ef:6d:f7:17:
f8:cf:9a:2b:37:27:e8:7a:cd:38:7e:78:5b:14:39:3b:0c:56:
54:76:c2:40:e4:f3:bb:00:50:d6:2a:47:ed:d7:1e:ef:5a:20:
ef:35:b0:7d:47:a5:a6:cc:9a:83:23:19:48:1d:6e:12:27:48:
63:52:78:96:1c:1c:67:a1:40:08:18:cc:3b:ce:03:89:02:e5:
10:50:28:ea:41:63:c9:eb:10:19:94:c6:a4:6f:93:ee:ad:63:
a1:58:2d:44:5d:0b:24:88:34:2b:f0:bd:60:de:30:79:42:0d:
9f:61:e0:b7:0f:ff:9a:65:47:c3:08:06:65:de:1d:de:37:4e:
79:1f:4d:a7:fc:64:7b:fa:42:eb:81:42:e7:c7:27:c1:49:5a:
b8:18:86:3e:47:b9:70:37:b5:5e:06:ad:05:e6:4b:f7:c5:d2:
09:86:81:f7:89:73:84:88:4a:14:00:d6:1a:e7:0e:e6:0e:d8:
a5:1a:86:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net