Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/x5V3LKEEs9oK4b6RHpDDd8MI0y0.roa
File: x5V3LKEEs9oK4b6RHpDDd8MI0y0.roa (raw, json)
Hash identifier: J6/kZs2WsxkNOAGpQppF69M5PlyTDdES3E9QUB+NdiM=
Subject key identifier: C7:95:77:2C:A1:04:B3:DA:0A:E1:BE:91:1E:90:C3:77:C3:08:D3:2D
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 0194221FBD53EFFA24DE17C73C5DD2D80CF9
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/x5V3LKEEs9oK4b6RHpDDd8MI0y0.roa
Signing time: Wed 01 Jan 2025 13:48:12 +0000
ROA not before: Wed 01 Jan 2025 13:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6873
IP address blocks: 89.174.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:bd:53:ef:fa:24:de:17:c7:3c:5d:d2:d8:0c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 13:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c795772ca104b3da0ae1be911e90c377c308d32d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8e:17:3e:3c:1c:56:a4:4e:22:c6:84:b8:7c:
06:72:e6:bb:c5:fe:9c:24:bc:4e:4d:fd:ae:a0:24:
2b:c6:82:23:5c:47:1f:8c:c5:df:36:4f:15:70:55:
42:46:0c:3d:94:24:d8:9a:fd:f0:29:c9:7f:a1:33:
09:88:97:3c:47:27:e5:dc:97:3f:78:73:67:d7:f2:
2f:77:1b:83:1c:af:d7:57:f2:3a:37:ec:e1:de:02:
cd:b1:59:9a:8d:f6:85:05:1d:6d:db:3f:b2:f4:81:
f7:c5:0b:c9:51:b5:f0:9a:26:79:d6:4c:76:8c:63:
13:18:d0:69:42:70:c2:c1:83:37:0b:ce:4b:59:4a:
79:d0:2b:53:f3:51:53:5d:38:44:34:c4:3f:ec:11:
f2:f6:d4:cc:12:3a:cb:d3:d6:2a:7b:36:1e:76:b0:
d1:69:e2:53:88:32:c6:23:48:5b:62:81:0e:04:e4:
ec:44:1a:be:b8:65:c5:8a:55:72:a4:e2:d6:f4:5f:
d2:3f:0d:c0:4f:6c:e9:02:50:a3:82:09:75:68:03:
61:2a:7b:d0:d6:d0:7e:35:17:13:53:c2:5d:c7:d5:
90:fa:ef:91:91:6c:84:1b:39:1b:ff:26:f8:0d:ad:
ea:32:6a:cb:4c:db:2e:d2:8d:5e:43:93:23:49:ab:
78:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:95:77:2C:A1:04:B3:DA:0A:E1:BE:91:1E:90:C3:77:C3:08:D3:2D
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/x5V3LKEEs9oK4b6RHpDDd8MI0y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.174.75.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:aa:65:fc:b6:3a:a0:3c:0f:8f:c3:6d:b9:c2:2c:b3:c3:98:
1e:f5:84:af:9d:e8:9f:65:d5:92:94:48:03:3e:84:84:aa:46:
22:31:ca:e2:49:24:2a:77:59:e4:07:0c:56:5d:fe:6f:eb:de:
70:2c:d1:ee:48:1a:24:6e:da:f5:ef:4f:a0:87:0f:e3:b3:d9:
18:4f:f0:b8:7c:37:ef:28:75:54:ff:28:06:e3:fe:43:f7:51:
9c:8f:1e:0c:71:96:d0:44:01:43:db:fd:8e:0a:87:50:0a:46:
ab:93:c9:b7:fc:3b:cc:b3:4e:19:67:fd:50:44:16:de:d3:0a:
7e:04:ee:7e:36:e8:e7:5d:27:80:c8:05:12:23:b5:1e:ed:e7:
c7:de:bd:5a:9d:50:be:cb:09:23:65:7a:b3:52:f0:8f:3a:37:
c1:7c:9f:c1:dc:72:a2:8c:cb:a5:a8:ed:67:05:17:79:b3:45:
18:74:b3:89:49:9f:44:d3:a7:f4:86:78:8a:4e:ba:48:d7:5b:
77:75:f0:43:a5:8e:f0:05:5d:00:89:eb:c7:81:7a:60:f8:28:
2f:6f:25:f8:ba:74:ba:86:9e:c1:d2:13:2e:78:0a:ab:88:e1:
5e:f6:0d:62:ea:04:47:fb:c5:51:8b:43:f9:98:b3:5e:10:37:
bc:9d:a0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:49 2025 by rpki-client on console.sobornost.net