Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/itCPu8Htj_DCrNIT9SPGnSWcfyQ.roa
File: itCPu8Htj_DCrNIT9SPGnSWcfyQ.roa (raw, json)
Hash identifier: KyXawd2wxUAMnyBE6VKJohT9NeVAA5nhSGjZmO+RO28=
Subject key identifier: 8A:D0:8F:BB:C1:ED:8F:F0:C2:AC:D2:13:F5:23:C6:9D:25:9C:7F:24
Certificate issuer: /CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Certificate serial: 01948CCBFDC7F8B1802B1DDB9F3BDD90E5A0
Authority key identifier: E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/itCPu8Htj_DCrNIT9SPGnSWcfyQ.roa
Signing time: Wed 22 Jan 2025 06:56:06 +0000
ROA not before: Wed 22 Jan 2025 06:56:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44894
IP address blocks: 89.21.76.0/24 maxlen: 24
89.21.77.0/24 maxlen: 24
91.193.128.0/22 maxlen: 22
91.193.128.0/23 maxlen: 23
91.193.128.0/24 maxlen: 24
91.193.129.0/24 maxlen: 24
91.193.130.0/23 maxlen: 23
91.193.130.0/24 maxlen: 24
91.193.131.0/24 maxlen: 24
91.203.60.0/22 maxlen: 22
91.203.60.0/23 maxlen: 23
91.203.60.0/24 maxlen: 24
91.203.61.0/24 maxlen: 24
91.203.62.0/23 maxlen: 23
91.203.62.0/24 maxlen: 24
91.203.63.0/24 maxlen: 24
193.150.49.0/24 maxlen: 24
194.107.230.0/23 maxlen: 23
194.107.230.0/24 maxlen: 24
194.107.231.0/24 maxlen: 24
194.110.2.0/23 maxlen: 23
194.110.2.0/24 maxlen: 24
194.110.3.0/24 maxlen: 24
194.150.104.0/23 maxlen: 23
194.150.104.0/24 maxlen: 24
194.150.105.0/24 maxlen: 24
194.150.106.0/24 maxlen: 24
2001:67c:2f2c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8c:cb:fd:c7:f8:b1:80:2b:1d:db:9f:3b:dd:90:e5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Validity
Not Before: Jan 22 06:56:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8ad08fbbc1ed8ff0c2acd213f523c69d259c7f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:77:05:a7:e0:ac:d0:ad:c7:4c:5e:fe:60:75:
62:39:fc:56:b3:ed:bb:8b:89:87:03:05:cd:b2:ab:
dd:df:cd:51:f8:fb:a7:77:1f:34:a0:a7:a4:81:76:
93:8b:2d:77:ee:25:96:71:9d:48:cf:82:75:91:5e:
ea:e6:7b:4a:7a:a9:19:3b:7b:0a:9d:56:a2:45:4a:
9c:99:fa:d5:e8:1f:fe:ab:8e:08:0c:15:52:f2:d5:
34:8c:48:33:9b:11:da:2b:b7:f1:85:60:01:93:c8:
63:5f:91:75:24:22:75:3f:36:8f:01:86:9b:c9:a4:
b7:2a:9a:e2:9c:52:cd:ae:32:61:e6:49:5e:57:6d:
41:83:f3:bd:15:ea:e5:3f:92:bf:e6:93:92:fc:c8:
9e:2d:e6:48:54:64:1b:35:a4:10:f3:6b:4d:95:e9:
13:36:0f:f8:b9:81:26:e1:a1:cd:56:d8:79:5b:e1:
5c:64:b2:60:af:90:83:6b:60:ac:a0:fa:e2:8f:a0:
2f:3d:a3:20:48:8a:41:95:3b:58:b3:a2:e4:ca:72:
d3:03:5e:d1:6d:94:85:34:69:1e:69:e1:e9:f9:0e:
52:e5:5c:14:2b:91:34:18:1f:0e:f8:57:a5:62:10:
0f:5d:2e:22:7b:fb:31:70:12:75:4b:cf:bb:c2:11:
3a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D0:8F:BB:C1:ED:8F:F0:C2:AC:D2:13:F5:23:C6:9D:25:9C:7F:24
X509v3 Authority Key Identifier:
keyid:E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/itCPu8Htj_DCrNIT9SPGnSWcfyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/5p5FpEgUVhSOLgA0nYeqV8VrJKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.21.76.0/23
91.193.128.0/22
91.203.60.0/22
193.150.49.0/24
194.107.230.0/23
194.110.2.0/23
194.150.104.0-194.150.106.255
IPv6:
2001:67c:2f2c::/48
Signature Algorithm: sha256WithRSAEncryption
68:de:fd:6c:1e:ae:20:4d:bf:b7:77:6b:b6:3b:92:a8:18:97:
76:3a:1f:f1:de:61:d6:b8:cb:b8:e1:29:f1:f9:12:dd:f5:5e:
dd:4d:36:1f:16:40:34:92:69:fe:12:0a:96:e9:85:5c:80:ed:
52:f8:d3:a3:80:be:33:fb:a2:e7:a7:f8:09:19:fc:cd:25:0c:
eb:27:00:5e:d8:96:8f:71:ca:2d:49:ec:c2:f6:17:f9:08:b5:
d6:87:02:5e:fc:00:68:af:20:27:0d:08:dd:45:52:31:3e:e8:
55:a7:6b:06:33:14:8b:28:29:e7:4a:a5:bb:b6:39:34:d5:6d:
57:41:0a:10:b3:13:02:a2:89:0a:a6:bd:80:5b:1a:c9:9c:f2:
3f:2d:5a:af:00:74:28:70:ce:06:c8:3f:0d:8c:f6:20:f2:90:
79:2c:16:60:a1:d2:b0:eb:dd:c0:22:42:5a:46:c8:62:0a:67:
67:38:b1:75:9b:47:d2:8e:31:ac:0d:f2:ae:a9:72:ed:9e:c7:
56:14:5e:ab:6a:d4:09:dc:f8:1c:5d:f1:5b:e4:79:97:92:cc:
35:e3:96:53:6a:a8:75:52:5a:48:bd:8b:4b:9c:d3:e4:b1:39:
a3:e7:a9:c0:94:35:18:62:a2:92:93:ef:47:67:88:73:b1:f6:
5f:0f:00:27
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:00 2025 by rpki-client on console.sobornost.net