Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ae0d8b-4857-4ba7-b342-5ec336bf743b/1/u706ESzCaab-BH-FndS7iMc1Dos.roa
File: u706ESzCaab-BH-FndS7iMc1Dos.roa (raw, json)
Hash identifier: SWvew+/mCjLa2ti6o+xXEQuSDQFlw4Q8eQ8sw7EInq0=
Subject key identifier: BB:BD:3A:11:2C:C2:69:A6:FE:04:7F:85:9D:D4:BB:88:C7:35:0E:8B
Certificate issuer: /CN=e27e1dd07466278036ba5cd943d7b0e021cf8628
Certificate serial: 0195899E06594818B6152BCB9B01302066EF
Authority key identifier: E2:7E:1D:D0:74:66:27:80:36:BA:5C:D9:43:D7:B0:E0:21:CF:86:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4n4d0HRmJ4A2ulzZQ9ew4CHPhig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ae0d8b-4857-4ba7-b342-5ec336bf743b/1/u706ESzCaab-BH-FndS7iMc1Dos.roa
Signing time: Wed 12 Mar 2025 09:09:49 +0000
ROA not before: Wed 12 Mar 2025 09:09:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213522
IP address blocks: 89.150.62.0/24 maxlen: 28
2a14:ec0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:89:9e:06:59:48:18:b6:15:2b:cb:9b:01:30:20:66:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e27e1dd07466278036ba5cd943d7b0e021cf8628
Validity
Not Before: Mar 12 09:09:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bbbd3a112cc269a6fe047f859dd4bb88c7350e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f0:98:cb:25:78:ba:58:c8:1f:04:a5:52:c5:
9f:76:08:0a:c4:c5:4d:43:33:ec:24:f1:b1:94:65:
1f:65:07:eb:96:68:24:c6:23:d7:94:96:98:89:3e:
ad:06:0c:59:98:0c:f9:f5:81:05:ef:6f:f4:d7:43:
17:be:dc:68:81:9e:eb:a7:8a:c5:1e:d0:68:66:7d:
d3:f5:25:2b:b1:65:d6:2f:07:aa:d4:22:7a:5d:e8:
a1:b5:fc:f9:76:b0:82:07:69:d3:0b:17:52:a3:61:
31:dc:2e:ea:5e:9d:da:dc:7b:6d:36:9b:ba:75:43:
4a:ea:97:05:15:3f:b3:55:80:0f:66:11:1d:fb:ae:
f7:a3:84:10:0a:b7:50:51:5d:7e:b4:cc:db:23:78:
e2:5e:bd:d6:3c:85:c2:78:07:8f:43:89:f8:d3:a5:
9f:bb:98:b6:18:8c:45:7b:57:ed:92:59:d0:ab:73:
55:1e:4b:9e:ac:de:a1:2d:f5:ec:f6:07:58:84:e8:
01:15:c5:b4:db:1a:af:aa:27:84:95:9b:67:27:be:
4a:13:7c:38:59:8f:ea:5f:95:9a:6a:cd:7b:3e:15:
89:bf:67:4f:1c:6a:fa:b4:2d:1b:d1:a2:cd:5a:0e:
bf:d3:67:a4:c0:29:70:c5:45:54:32:a0:21:69:71:
5b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BD:3A:11:2C:C2:69:A6:FE:04:7F:85:9D:D4:BB:88:C7:35:0E:8B
X509v3 Authority Key Identifier:
keyid:E2:7E:1D:D0:74:66:27:80:36:BA:5C:D9:43:D7:B0:E0:21:CF:86:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4n4d0HRmJ4A2ulzZQ9ew4CHPhig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ae0d8b-4857-4ba7-b342-5ec336bf743b/1/u706ESzCaab-BH-FndS7iMc1Dos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ae0d8b-4857-4ba7-b342-5ec336bf743b/1/4n4d0HRmJ4A2ulzZQ9ew4CHPhig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.150.62.0/24
IPv6:
2a14:ec0::/29
Signature Algorithm: sha256WithRSAEncryption
a0:f1:7e:60:f2:ce:0a:92:e5:0f:65:4c:e7:8d:89:63:87:ba:
b6:0f:d6:5b:c5:65:3b:a4:55:06:da:4e:51:59:af:c9:23:d1:
24:38:66:45:6a:73:a6:ba:7a:5f:29:69:65:a4:37:f5:8c:71:
57:29:52:ab:08:5d:88:f3:4b:bc:80:e4:55:3e:0d:92:fb:81:
db:d3:b0:f4:d7:c7:93:fb:23:53:90:94:5e:e4:83:ae:a5:f0:
96:cf:0f:8b:42:cb:cd:c1:4b:47:57:98:79:91:a3:74:89:3a:
dd:fa:f9:95:5a:1d:01:c2:47:c2:e7:40:f9:8a:b2:d7:6d:48:
85:76:85:81:48:46:a2:94:43:2b:21:d3:f9:cd:be:bd:f6:e2:
f3:e8:29:97:95:69:68:cb:12:c0:75:c3:09:06:00:8c:89:27:
a3:93:25:dc:73:22:85:a4:1a:14:45:5e:32:65:32:16:9f:a3:
0d:11:27:62:bb:65:b9:82:fc:60:f7:87:d6:42:f0:58:80:a3:
e2:8e:64:14:69:fc:2d:14:d3:6a:1e:c6:eb:75:67:6f:04:d9:
1c:25:1d:d1:d1:95:65:73:74:04:fd:5e:b1:5a:30:bd:6a:df:
99:e2:2e:8d:42:95:7b:66:49:61:7a:79:25:6e:2e:89:ca:44:
c8:7d:c9:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:46 2025 by rpki-client on console.sobornost.net