Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/_0BJhch6EjGRHYbfuaR-r1Oajuk.roa
File: _0BJhch6EjGRHYbfuaR-r1Oajuk.roa (raw, json)
Hash identifier: YOqktrKQD9dcsB+igvdHym7352z9aaizCT1tY2GjnK0=
Subject key identifier: FF:40:49:85:C8:7A:12:31:91:1D:86:DF:B9:A4:7E:AF:53:9A:8E:E9
Certificate issuer: /CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Certificate serial: 01961B7D325F4768D872C7F1FFCBEAFD3291
Authority key identifier: D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/_0BJhch6EjGRHYbfuaR-r1Oajuk.roa
Signing time: Wed 09 Apr 2025 16:58:31 +0000
ROA not before: Wed 09 Apr 2025 16:58:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209046
IP address blocks: 89.232.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1b:7d:32:5f:47:68:d8:72:c7:f1:ff:cb:ea:fd:32:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Validity
Not Before: Apr 9 16:58:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ff404985c87a1231911d86dfb9a47eaf539a8ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:94:25:ba:89:4e:b5:03:9a:dd:d7:c2:f9:40:
74:5a:d0:fd:81:6c:80:12:f5:fc:34:c1:74:af:c6:
b0:2c:75:9f:0b:63:aa:d2:a0:e7:c1:30:a0:25:71:
75:a5:80:38:24:53:9d:fa:20:7e:a2:1a:f0:37:a6:
ca:69:7b:53:ad:06:e3:a1:28:f4:fc:d4:7e:32:99:
08:03:22:28:8f:1b:a9:31:f3:9d:ff:fa:6a:cb:27:
17:7a:b7:46:0b:5a:b0:89:7e:a3:53:27:6c:da:07:
ab:6a:81:95:81:4b:dc:24:d9:b1:9f:cf:0f:5d:36:
44:70:b9:52:72:33:71:df:95:fc:5c:40:c3:6f:23:
4e:ce:a4:17:7b:1a:d8:cc:0e:81:ff:46:4e:f6:2a:
db:4d:eb:2f:c4:c9:c0:ee:ad:49:4c:e9:b0:8c:e2:
7b:e1:7f:d2:4f:6e:d7:de:27:3e:3a:4d:06:3a:82:
b7:cf:5c:d0:92:e3:d2:f3:06:f8:05:25:77:c2:61:
dc:9b:0f:db:1e:5e:ea:37:5a:73:d8:16:64:d9:e8:
d6:c0:b3:53:7d:0f:15:99:fa:31:11:83:03:68:dd:
93:5f:51:2b:25:ee:44:be:f4:72:20:8b:4e:69:7e:
dc:00:5b:46:d4:da:1c:cc:7b:4f:bd:5d:62:38:3a:
01:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:40:49:85:C8:7A:12:31:91:1D:86:DF:B9:A4:7E:AF:53:9A:8E:E9
X509v3 Authority Key Identifier:
keyid:D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/_0BJhch6EjGRHYbfuaR-r1Oajuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/1mc4qNrawtDTrt25NPggBmufX-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.232.4.0/22
Signature Algorithm: sha256WithRSAEncryption
24:c4:32:a4:9d:62:24:5c:25:f9:0b:d8:8f:63:24:b9:3f:7b:
b5:00:6a:c0:2d:4d:07:56:9f:8c:4e:6e:e6:e9:eb:82:72:39:
2d:08:7e:e6:f0:bb:35:f7:2b:36:b2:87:a1:2b:1f:0a:c8:e8:
5e:1d:61:22:a9:c1:57:b6:3a:31:b2:ac:a7:3c:ea:1f:8b:3f:
5b:a4:dc:56:35:8c:b3:16:bd:5c:55:91:22:f8:df:67:93:7e:
47:0c:32:85:9d:d8:77:f9:f9:bb:42:de:ff:fc:6c:90:97:76:
16:91:5e:9b:e7:1f:2e:3d:90:51:81:2d:6e:85:c1:e0:88:b3:
62:fe:1f:a5:b6:c9:9d:b4:06:88:c5:ce:9d:2b:ed:a7:42:b2:
cf:92:8f:dc:75:e7:bb:9f:1f:7e:01:ce:50:a9:49:6a:59:eb:
51:17:d6:f0:d2:95:c8:4b:37:42:1d:c0:a0:52:fd:26:eb:22:
38:eb:b5:38:4b:da:b5:6d:bb:d6:ff:e5:35:5f:80:73:81:98:
1c:34:1b:ed:36:e8:ac:c1:69:0b:45:2b:27:1b:3f:cc:9f:dd:
11:c8:37:5d:07:6b:a5:d2:14:08:bf:18:8a:c2:69:2a:94:ca:
7a:c8:9e:90:30:a3:a1:d2:a2:4f:a2:d7:2e:dc:c7:4d:82:d9:
15:b6:d4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:05 2025 by rpki-client on console.sobornost.net