Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/l9okOQVZZh4k_2XsicRAHiKO6wk.roa
File: l9okOQVZZh4k_2XsicRAHiKO6wk.roa (raw, json)
Hash identifier: vgXQGPTtDQePnIVmNkGUjC3Tn7aU0XAq8ldXK+mdNeo=
Subject key identifier: 97:DA:24:39:05:59:66:1E:24:FF:65:EC:89:C4:40:1E:22:8E:EB:09
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0196162825B521501CDF72607C422F1497B2
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/l9okOQVZZh4k_2XsicRAHiKO6wk.roa
Signing time: Tue 08 Apr 2025 16:07:31 +0000
ROA not before: Tue 08 Apr 2025 16:07:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212335
IP address blocks: 89.106.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:28:25:b5:21:50:1c:df:72:60:7c:42:2f:14:97:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Apr 8 16:07:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=97da24390559661e24ff65ec89c4401e228eeb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a2:4f:1c:28:88:5b:e3:46:dd:41:d6:06:55:
b7:38:ce:fb:8c:16:91:94:96:82:a7:d4:55:83:cf:
b1:cd:e1:c7:bd:e9:f9:0a:06:78:87:23:eb:5f:a6:
09:9f:68:4e:7c:66:75:8d:54:13:c5:c1:3c:ef:11:
3e:30:5a:08:1f:4f:0c:d1:09:0a:9a:7d:dc:fe:e6:
ca:44:da:27:06:f9:91:4f:79:9e:b2:e5:63:fb:a3:
7a:9b:ac:45:68:ed:51:cc:84:99:da:40:f9:76:5c:
0c:6f:50:db:ee:12:99:ec:d4:f4:14:c0:72:30:e6:
87:cb:75:85:e6:c1:f0:5d:cb:16:34:f4:ee:c3:6a:
a1:70:6b:0b:2f:4b:5d:52:e0:24:46:bb:ce:3b:f4:
dd:57:97:f2:85:d5:b1:49:8e:ca:2e:ef:06:65:50:
89:b4:6a:84:a5:d2:21:a9:93:11:f5:6d:56:9a:3f:
c4:d8:11:13:5b:87:33:f3:1f:db:07:b9:74:34:27:
86:e2:ae:de:8b:33:6e:de:2f:b2:54:72:ff:bc:fd:
ed:fb:7e:3e:46:d9:1a:21:dc:0e:d9:a8:a5:1a:50:
62:9e:aa:d9:40:de:ed:dd:ac:29:78:1d:d8:42:36:
66:49:cc:9d:39:5d:a6:b5:8b:1b:15:8e:58:03:76:
b1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DA:24:39:05:59:66:1E:24:FF:65:EC:89:C4:40:1E:22:8E:EB:09
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/l9okOQVZZh4k_2XsicRAHiKO6wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:fd:b6:a2:c8:fa:95:5e:bd:1d:c9:c6:a5:78:2b:2b:ee:b4:
9c:02:fe:ad:a3:4b:82:74:62:98:5e:b7:3e:46:76:b7:8e:79:
56:ef:d8:a5:aa:54:36:ad:1c:6b:a1:43:08:2d:60:9b:46:6c:
26:33:4a:93:d8:58:a2:3c:9d:59:67:48:36:fc:5c:49:ad:f9:
79:46:90:84:e9:7f:87:6d:ff:9c:b3:57:ae:b8:66:49:a2:bd:
f6:66:a2:b5:4a:bd:73:9f:16:2d:24:6a:3a:a5:73:f7:30:1d:
f1:bf:3f:99:ff:bb:88:29:ef:e6:51:e5:c0:8a:4c:5a:75:12:
bf:4d:8d:9d:fa:81:98:e1:8e:74:22:79:94:f0:d7:41:94:3d:
15:7a:34:75:09:e9:4a:5e:ab:86:b8:5c:a3:c1:32:e8:b2:87:
5b:b4:ef:fc:b8:46:7a:c6:cb:71:14:91:7a:29:8b:96:bc:83:
3c:12:e0:c3:d0:51:59:9f:c7:30:ef:3a:5d:7f:e0:8e:bd:3f:
62:31:ff:88:4a:f4:08:37:33:bf:fe:03:42:03:59:50:c1:27:
6b:6e:69:03:36:14:48:4b:ce:9e:72:c0:ba:3b:cb:ca:56:df:
70:15:13:40:eb:a9:e4:d2:92:a1:01:c8:5f:e2:a8:35:07:6c:
31:bf:2e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net