Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/lf4NF5YFKTAxJGLSYRl7TCniSuQ.roa
File: lf4NF5YFKTAxJGLSYRl7TCniSuQ.roa (raw, json)
Hash identifier: Ngb54ywBdOdnIJ6Olz02Tz5ECT2TEogyAA8QueUWhGc=
Subject key identifier: 95:FE:0D:17:96:05:29:30:31:24:62:D2:61:19:7B:4C:29:E2:4A:E4
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0196205C257E5A13879317D269E838CBAD97
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/lf4NF5YFKTAxJGLSYRl7TCniSuQ.roa
Signing time: Thu 10 Apr 2025 15:40:31 +0000
ROA not before: Thu 10 Apr 2025 15:40:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204770
IP address blocks: 89.106.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:20:5c:25:7e:5a:13:87:93:17:d2:69:e8:38:cb:ad:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Apr 10 15:40:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95fe0d1796052930312462d261197b4c29e24ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3c:f8:a5:ad:13:7d:b9:b5:4f:f7:81:27:b1:
0b:b4:56:72:9e:5c:d8:6a:f3:c0:7d:7b:ee:0e:d5:
81:3c:72:0c:6c:66:a5:6a:73:16:eb:95:5e:03:32:
f8:4a:78:9a:fb:a1:d1:8e:48:ae:8a:67:f3:e7:ce:
33:9c:c4:27:ee:d1:48:b6:48:28:39:ee:f3:3c:dd:
97:88:ee:c5:7a:64:26:3b:91:fd:fe:9b:47:16:97:
47:ca:a5:29:fd:28:a7:76:6d:9e:bd:0b:84:9b:2c:
56:d1:ca:db:82:0a:40:38:76:7c:24:50:9b:14:a1:
ee:01:48:93:cb:b1:06:7f:51:3a:bb:8a:01:9e:75:
07:40:2b:38:23:d7:3f:d0:8a:f4:41:ea:b4:1c:17:
8c:32:ce:cb:0b:34:09:32:1e:82:85:c3:ea:39:1c:
09:28:64:c9:6c:b3:43:7f:20:bf:cf:4c:cb:79:f0:
4b:da:ab:b6:fb:de:2a:f1:26:a2:74:0f:69:6a:f3:
ea:b4:2d:9a:6b:4f:ba:ff:da:02:cd:b3:64:6e:5f:
f9:32:e3:38:a9:b8:33:3f:d3:70:38:1f:5c:d8:e7:
15:e2:e7:68:b8:2b:30:0f:ae:8f:de:30:9b:ff:38:
82:cc:f9:bf:8e:89:41:1d:1e:4d:d8:17:c1:cc:42:
64:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FE:0D:17:96:05:29:30:31:24:62:D2:61:19:7B:4C:29:E2:4A:E4
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/lf4NF5YFKTAxJGLSYRl7TCniSuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.6.0/24
Signature Algorithm: sha256WithRSAEncryption
48:bf:7b:4b:2f:64:16:8a:63:fb:1f:04:0f:85:4c:50:d5:0d:
43:3a:53:d7:ac:e5:d1:82:3f:25:7c:15:03:50:96:0e:b3:bb:
2f:20:50:ff:08:2d:00:b4:e1:a5:91:38:7b:be:a7:7d:ad:c7:
d1:32:22:00:60:0c:5c:e2:08:e1:40:52:c0:56:e4:bf:ab:27:
85:b8:30:34:db:3b:56:bc:7f:a5:67:c7:42:11:f2:25:1f:25:
0a:1f:27:f3:1e:aa:57:55:19:2b:e7:7e:c3:f1:76:2b:21:5e:
79:42:cf:70:92:ee:60:29:c3:a6:4f:1e:a2:d9:21:73:40:62:
36:02:b5:f5:58:5b:dd:f7:6f:2d:fe:c2:1b:da:1b:2a:37:a6:
2c:f3:40:16:aa:cb:b6:00:df:00:8f:47:9b:04:70:e2:fd:98:
dc:f7:90:a8:25:0e:39:c2:04:7c:e9:24:cc:5a:d1:3a:37:2a:
91:6d:4d:f4:a3:fb:d0:8f:5b:ec:6d:8c:47:86:68:b6:59:d4:
58:3b:b2:46:28:f5:a9:19:11:b2:75:bf:da:91:63:05:73:bb:
98:bd:2c:26:82:1f:6e:96:b7:1d:e7:11:81:da:9a:95:65:0a:
e5:b7:a8:f7:c4:b4:13:8c:62:20:6d:66:e9:10:01:6e:99:51:
dd:39:b3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net