Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1c762-5b4e-4212-9ad8-d0c55b0d4639/1/9GDBOU9_J7es0wo35klUOn0T51U.roa
File: 9GDBOU9_J7es0wo35klUOn0T51U.roa (raw, json)
Hash identifier: cMQbqhsLcUBPEgQ9vc2CK4bGp5osIlpssNdk9BGiNMw=
Subject key identifier: F4:60:C1:39:4F:7F:27:B7:AC:D3:0A:37:E6:49:54:3A:7D:13:E7:55
Certificate issuer: /CN=41dd79557255419eb7fdc6d0af31fa707fdfbac8
Certificate serial: 0195EEA6CE80C5EB4D02E6384B869F986E20
Authority key identifier: 41:DD:79:55:72:55:41:9E:B7:FD:C6:D0:AF:31:FA:70:7F:DF:BA:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qd15VXJVQZ63_cbQrzH6cH_fusg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1c762-5b4e-4212-9ad8-d0c55b0d4639/1/9GDBOU9_J7es0wo35klUOn0T51U.roa
Signing time: Tue 01 Apr 2025 00:01:03 +0000
ROA not before: Tue 01 Apr 2025 00:01:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60781
IP address blocks: 45.89.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ee:a6:ce:80:c5:eb:4d:02:e6:38:4b:86:9f:98:6e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41dd79557255419eb7fdc6d0af31fa707fdfbac8
Validity
Not Before: Apr 1 00:01:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f460c1394f7f27b7acd30a37e649543a7d13e755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:04:d3:83:8b:e1:c6:46:e4:ed:12:9a:7b:b0:
b6:a3:56:d2:bd:a5:95:24:98:26:81:17:35:6a:1a:
cd:36:3f:49:17:fb:c1:b0:a8:4c:77:ec:cb:14:d5:
94:43:8d:2a:a5:55:9e:05:65:45:1c:fb:93:a4:e1:
b1:a5:2a:1d:04:84:fd:57:d7:db:b8:09:c7:bd:f1:
43:f8:1b:16:b7:00:fb:69:06:3c:d5:87:74:f3:6e:
2f:a5:69:1a:37:a8:58:6d:8d:5c:74:d6:c7:e6:c1:
9e:b5:9e:6b:00:30:0b:b7:51:aa:98:3b:04:cf:a4:
ac:5c:aa:02:1f:86:fe:86:32:2a:19:3c:e1:2f:25:
1c:9f:ed:92:be:7d:54:3f:b7:e6:b9:6a:c4:34:ca:
7e:e0:91:56:b4:b0:b5:2a:8f:df:8a:b0:78:04:70:
48:2a:dd:47:21:a0:17:fb:d0:06:f1:65:48:e4:b4:
40:9f:2e:54:82:c0:b5:9c:5e:03:b3:77:f7:16:d7:
be:b5:3a:b0:2d:27:67:02:15:e0:f9:52:e3:8a:1b:
eb:30:16:16:dc:aa:c2:e4:18:ef:15:54:69:91:dd:
5d:98:b7:47:86:c4:b3:b1:4b:40:b7:2e:0f:0b:d1:
1f:8b:5a:72:53:f0:85:33:ef:ae:38:97:3f:52:7b:
a9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:60:C1:39:4F:7F:27:B7:AC:D3:0A:37:E6:49:54:3A:7D:13:E7:55
X509v3 Authority Key Identifier:
keyid:41:DD:79:55:72:55:41:9E:B7:FD:C6:D0:AF:31:FA:70:7F:DF:BA:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qd15VXJVQZ63_cbQrzH6cH_fusg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1c762-5b4e-4212-9ad8-d0c55b0d4639/1/9GDBOU9_J7es0wo35klUOn0T51U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1c762-5b4e-4212-9ad8-d0c55b0d4639/1/Qd15VXJVQZ63_cbQrzH6cH_fusg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.220.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:b0:43:70:08:bd:4f:f1:53:ff:a9:8d:f4:88:d0:5c:d8:2b:
3d:a0:0d:03:9d:7d:30:d2:b6:ba:33:e7:07:72:e0:7e:bf:72:
dd:dc:1f:ef:ee:38:47:85:d9:7d:1d:6d:aa:ef:45:20:ea:a2:
0e:76:89:7d:0c:11:8d:a7:97:8b:8a:6a:0d:8f:a6:83:81:26:
7a:ac:a5:63:d0:74:e2:d0:a9:64:06:be:82:30:5f:23:20:17:
f0:7c:71:34:54:e4:e9:3f:bc:65:12:d4:07:06:d2:b6:cd:a9:
71:b4:ba:70:c7:1b:d7:1e:f4:f9:48:03:a4:25:9d:76:98:6d:
70:2e:8c:63:38:4d:3f:5c:50:58:5e:c8:7b:ed:18:23:d0:50:
13:61:8b:6b:b0:26:f5:1a:c7:6a:15:02:e5:33:8e:7f:e0:09:
39:e0:31:05:40:31:79:7f:5f:f8:d9:a8:20:82:2f:ac:4b:95:
35:0f:91:89:23:e9:30:f7:99:37:ed:b0:43:80:c0:1e:90:91:
4b:a7:a5:31:0b:6c:d1:12:1f:fa:40:44:bb:da:bd:7e:ad:2c:
96:dd:bb:e9:46:21:2d:fb:9b:61:ab:b0:29:df:87:90:65:dc:
0e:a8:05:50:d3:db:60:d2:92:17:6d:8c:6a:b0:50:ce:c7:34:
cd:df:3e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:55 2025 by rpki-client on console.sobornost.net