Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/Tk0yJ1bjflKTC944sf8jxUdAur8.roa
File: Tk0yJ1bjflKTC944sf8jxUdAur8.roa (raw, json)
Hash identifier: 6dYDEtJgRG//rWQzlwwyW4Bpdk48HDD5vTsrhKz92b4=
Subject key identifier: 4E:4D:32:27:56:E3:7E:52:93:0B:DE:38:B1:FF:23:C5:47:40:BA:BF
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0196205D10391A2F7BC5055B591C12DCC796
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/Tk0yJ1bjflKTC944sf8jxUdAur8.roa
Signing time: Thu 10 Apr 2025 15:41:31 +0000
ROA not before: Thu 10 Apr 2025 15:41:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213896
IP address blocks: 89.106.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:20:5d:10:39:1a:2f:7b:c5:05:5b:59:1c:12:dc:c7:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Apr 10 15:41:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e4d322756e37e52930bde38b1ff23c54740babf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:67:da:d4:2e:48:24:ea:20:74:7e:55:dc:
a1:90:7a:ac:a2:bb:c6:47:31:ad:ea:bd:c1:c5:36:
35:94:47:a7:cb:e2:10:fd:eb:fa:ca:7e:49:14:a2:
d7:0a:0e:88:3a:e5:4c:6a:7e:cd:45:03:cd:8c:53:
ca:bb:e8:c1:d6:72:18:79:39:4d:bf:50:58:73:ac:
0b:36:00:07:00:19:21:3d:d1:03:f1:bd:d0:e2:a3:
0f:85:db:72:07:f1:5e:e7:5d:61:56:9a:d4:e4:28:
33:9f:4d:80:98:ed:af:e2:a0:de:e1:84:f2:8f:db:
88:cd:57:2e:7a:42:ce:0f:66:dd:54:fa:78:4b:4b:
81:78:48:27:75:2e:3e:7d:d4:62:4d:aa:51:6b:f4:
04:dc:e1:58:41:6b:10:92:72:5d:de:90:8b:f9:8b:
d2:be:73:64:54:09:89:0c:a9:17:f7:82:04:19:b5:
6d:6e:40:9e:72:de:bc:cf:82:c9:52:a0:65:ba:97:
dc:aa:7a:7f:80:08:16:6a:3c:30:59:88:b9:b0:83:
cf:02:ca:8e:c0:a7:6e:4a:6b:3c:35:34:f4:fb:df:
bc:43:e6:6f:ce:82:53:f1:f9:96:36:cc:d3:b6:9a:
45:db:99:a9:47:ff:2d:35:f5:fe:e9:93:d0:5b:41:
e5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4D:32:27:56:E3:7E:52:93:0B:DE:38:B1:FF:23:C5:47:40:BA:BF
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/Tk0yJ1bjflKTC944sf8jxUdAur8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.12.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0c:28:6a:d4:7c:8e:a9:68:5e:6b:47:1d:35:9e:2b:8b:75:
be:7f:26:7f:84:64:c8:1b:c7:3c:6e:fb:f6:24:71:72:92:90:
41:85:df:9a:ba:82:b2:9d:ad:e8:77:6c:bd:3d:7e:ec:5e:a9:
91:a6:8a:dd:5e:7d:54:b8:6a:d6:d7:39:19:b8:46:3e:8b:74:
cb:81:64:0c:71:bc:bf:5f:a8:52:d4:52:5f:af:d2:af:36:e9:
ef:80:40:4c:57:a0:e6:ec:dc:d3:81:51:43:2b:37:79:16:ae:
2c:18:14:2c:fc:95:49:f0:ba:de:80:46:a3:60:5f:cc:86:66:
21:60:5f:23:ab:46:75:60:47:12:5a:76:0c:36:42:c7:33:19:
4b:d5:44:94:95:2d:6f:95:72:d1:e0:2d:ec:9e:be:0b:5d:f6:
a7:4a:bb:ac:47:f5:06:2d:e8:9c:0a:6b:96:f4:24:0f:c9:d9:
6e:69:d1:d0:9b:3c:7a:6d:f7:db:2c:63:0b:fd:92:99:21:01:
03:48:cc:14:e0:e2:92:cb:a3:af:64:a5:af:94:91:66:61:22:
d6:9a:2f:8f:25:85:97:97:ce:4f:18:30:5d:f5:a1:b8:da:82:
3e:26:3e:b5:ae:20:ba:4f:93:c5:ac:11:10:33:ad:3e:71:a9:
57:38:5e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net