Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/3716d9-473f-4af3-a1d3-24e6c0d4fad7/1/kKi1E3PbMMVFH7DkXfoL7bN1Y8Y.roa
File: kKi1E3PbMMVFH7DkXfoL7bN1Y8Y.roa (raw, json)
Hash identifier: KU0qbsM0A1KDDa+DQi187g2Fd0zrIojzhDbTUg8nXDE=
Subject key identifier: 90:A8:B5:13:73:DB:30:C5:45:1F:B0:E4:5D:FA:0B:ED:B3:75:63:C6
Certificate issuer: /CN=09b4bf37f39eec62982c4b63709fab5d146c7373
Certificate serial: 019426D9C666F4019290666092DC1D9DFE71
Authority key identifier: 09:B4:BF:37:F3:9E:EC:62:98:2C:4B:63:70:9F:AB:5D:14:6C:73:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbS_N_Oe7GKYLEtjcJ-rXRRsc3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/3716d9-473f-4af3-a1d3-24e6c0d4fad7/1/kKi1E3PbMMVFH7DkXfoL7bN1Y8Y.roa
Signing time: Thu 02 Jan 2025 11:49:53 +0000
ROA not before: Thu 02 Jan 2025 11:49:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44756
IP address blocks: 89.44.110.0/23 maxlen: 24
94.247.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:c6:66:f4:01:92:90:66:60:92:dc:1d:9d:fe:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09b4bf37f39eec62982c4b63709fab5d146c7373
Validity
Not Before: Jan 2 11:49:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=90a8b51373db30c5451fb0e45dfa0bedb37563c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d2:01:bd:c4:fe:0f:0f:ab:9f:93:79:4d:50:
4d:32:35:64:65:30:11:7f:93:ed:80:a7:84:95:6f:
5e:62:80:4e:a8:28:ab:79:ea:3c:35:0f:bd:e6:51:
b3:a8:3a:0e:c0:16:9e:ae:fc:6d:9f:ab:1d:09:96:
ff:4a:5b:53:2f:e6:b0:dc:65:bd:f3:4b:ce:97:c1:
ae:63:88:85:7d:2e:0a:a0:a5:cf:73:41:e5:1d:7b:
9b:c4:a7:fe:5b:43:8e:5c:fa:9d:75:e9:5f:b2:d0:
20:a6:7b:88:3e:eb:b5:b2:0c:23:a3:60:ee:07:b0:
c8:4b:9b:bf:a3:2f:b2:d3:1b:55:6b:dd:62:a5:d6:
7a:0f:46:d4:00:fb:62:cf:75:a6:80:ed:0c:52:0c:
94:71:90:35:d4:0e:8b:40:35:c5:b5:5a:7a:a1:32:
15:14:f6:80:71:d8:99:b7:46:89:3c:f0:0e:f8:db:
ae:6c:15:df:b2:10:16:2a:42:42:51:5b:7b:44:c1:
ad:33:85:c2:47:f0:67:a7:96:8e:4e:52:2a:8c:d2:
f8:9e:00:f1:2d:07:d8:ca:12:f9:da:04:dc:09:b9:
c0:98:e7:0d:e0:4c:b6:a7:49:46:84:37:23:43:70:
c2:6e:67:86:af:22:1d:5c:f7:ee:81:ae:0c:bc:08:
43:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A8:B5:13:73:DB:30:C5:45:1F:B0:E4:5D:FA:0B:ED:B3:75:63:C6
X509v3 Authority Key Identifier:
keyid:09:B4:BF:37:F3:9E:EC:62:98:2C:4B:63:70:9F:AB:5D:14:6C:73:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbS_N_Oe7GKYLEtjcJ-rXRRsc3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3716d9-473f-4af3-a1d3-24e6c0d4fad7/1/kKi1E3PbMMVFH7DkXfoL7bN1Y8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3716d9-473f-4af3-a1d3-24e6c0d4fad7/1/CbS_N_Oe7GKYLEtjcJ-rXRRsc3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.110.0/23
94.247.26.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:0a:18:f8:83:0f:b0:89:7a:fd:c4:7f:c3:db:8f:3d:28:1b:
bd:64:19:82:05:dc:9f:bb:84:94:d1:f2:bb:03:ad:93:59:00:
f2:c2:6c:42:aa:f6:60:bf:92:c2:97:d5:b5:ab:4f:90:7e:21:
1a:91:0b:16:21:fb:1a:c1:ca:90:b1:28:99:39:bd:06:29:9e:
07:61:a2:01:34:5b:53:b8:23:23:db:19:e1:c7:57:8c:9a:94:
ee:42:b1:2d:19:fd:7a:03:e1:09:b7:25:87:eb:60:08:99:48:
fb:2e:1e:c5:4c:68:c7:4f:4e:a7:24:97:a8:ec:92:39:c9:59:
76:b0:8c:63:e5:13:a9:a1:cd:3a:43:3c:f2:ef:ba:de:f1:f5:
ce:29:a6:30:0e:af:00:be:9f:b0:2a:9d:f8:7a:38:9d:46:91:
56:15:45:6a:0b:09:38:cb:92:fb:a2:cc:4c:e7:97:96:52:09:
5e:43:8d:df:36:45:1d:bc:82:72:46:c4:55:6f:53:1f:ca:12:
0f:94:ef:19:b4:42:dc:18:dc:21:6a:ea:7a:c1:e0:e1:2d:7f:
73:d9:5f:f2:c4:8c:c7:02:d0:34:30:41:ed:5e:8d:c1:94:9d:
bd:75:97:58:2d:2d:e8:39:35:02:eb:19:a2:c8:2f:51:48:95:
5f:be:f9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net