Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/y8m9amzLmae8ItHiMvheSyE9Nx8.roa
File: y8m9amzLmae8ItHiMvheSyE9Nx8.roa (raw, json)
Hash identifier: 8zVLnA/N3lIj0lFWMFMz9DjNCtAbj26HOd2D9jMQnX4=
Subject key identifier: CB:C9:BD:6A:6C:CB:99:A7:BC:22:D1:E2:32:F8:5E:4B:21:3D:37:1F
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0196205B3B6EF8726A63B19D13E1757E568F
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/y8m9amzLmae8ItHiMvheSyE9Nx8.roa
Signing time: Thu 10 Apr 2025 15:39:31 +0000
ROA not before: Thu 10 Apr 2025 15:39:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59642
IP address blocks: 89.106.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:20:5b:3b:6e:f8:72:6a:63:b1:9d:13:e1:75:7e:56:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Apr 10 15:39:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cbc9bd6a6ccb99a7bc22d1e232f85e4b213d371f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:8d:f4:1e:e6:14:37:9d:e4:f5:45:9f:72:
d7:5d:bf:de:2c:86:e5:4b:f2:7c:68:45:00:05:bc:
52:f4:55:83:14:a1:b6:b7:e7:4e:54:a9:a6:30:4e:
e8:c2:0f:4b:ab:4f:03:88:8f:8b:71:f4:46:28:61:
44:e0:d7:1a:84:4e:84:3c:82:7c:f8:0b:02:50:61:
73:7b:3a:46:4d:fb:46:eb:20:91:c9:1c:08:c5:db:
87:b0:8d:53:c6:b7:b2:b2:9a:ce:7f:8e:14:5b:09:
0e:9c:70:34:bd:d8:e7:c1:44:cd:fc:39:d2:22:b2:
0a:cd:d6:8e:c1:33:1b:77:5d:ed:ae:4b:46:21:00:
9b:5a:b0:dc:49:a9:57:41:97:b6:be:46:2d:c6:c2:
82:07:ea:58:9e:41:fb:d3:2f:52:d9:39:92:b4:02:
da:76:39:b2:99:db:26:56:ba:03:bb:f4:89:ab:8b:
1e:35:32:9c:3a:fe:39:8d:66:2b:9f:49:61:7f:c9:
c4:48:16:50:85:4f:76:3b:31:ab:a3:bc:35:af:84:
a4:61:39:0f:e2:1d:3a:4c:e3:5f:79:e4:03:04:ee:
66:39:6f:81:bd:65:fd:1c:33:c6:33:a1:92:db:19:
61:21:41:30:2f:9c:84:b5:f7:98:bf:ee:93:96:c6:
04:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C9:BD:6A:6C:CB:99:A7:BC:22:D1:E2:32:F8:5E:4B:21:3D:37:1F
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/y8m9amzLmae8ItHiMvheSyE9Nx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.5.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:f4:9c:57:b7:a9:fd:00:cb:5b:49:5a:e7:ca:96:95:b5:ab:
6f:44:35:ac:3f:8d:13:9c:5f:fa:4c:87:50:c7:ec:b9:29:f9:
07:f8:7c:f7:2a:f8:46:50:80:11:33:01:76:39:3b:cc:4b:84:
de:8c:63:6c:b3:b1:a5:0b:43:d0:70:b2:eb:30:54:56:9e:fd:
da:0b:0f:9d:b2:3e:d6:62:c9:e7:bb:cc:d2:01:e0:23:ac:f4:
8e:f9:86:3b:90:62:66:d0:36:80:76:13:2e:90:b8:6f:0b:c9:
ed:38:5a:a1:29:96:ee:76:53:42:3c:7b:a3:5a:96:b3:83:63:
66:b1:a8:ff:1d:90:30:40:db:f0:88:bd:5b:84:3e:9a:5d:94:
c1:71:e0:34:ed:c2:21:f3:f2:b7:b2:a9:19:41:56:21:58:45:
77:74:5f:3c:23:2a:a4:9b:6a:7b:38:1b:11:49:61:4d:6b:4a:
ee:bd:20:18:39:59:f3:f3:01:55:29:6c:ac:87:41:42:5c:52:
92:be:2e:6c:d5:a4:67:9d:93:7a:a3:0d:a0:2c:d8:1d:a9:46:
ef:23:6f:d9:45:c6:10:60:1e:fd:67:67:40:bc:d8:74:f0:f7:
da:ce:2d:41:5c:41:23:02:85:83:44:f4:3f:fe:67:5b:f4:0b:
9d:dc:9a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net