Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS63989.roa
File: AS63989.roa (raw, json)
Hash identifier: Sgh+TMJiDX1IlHAAHFuDvavxa+1pfgFjmM/EcRWF2cE=
Subject key identifier: 26:7A:E3:A9:1C:5F:39:A1:28:DC:6E:B7:51:88:E2:99:7A:65:AC:B8
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 781E7559A081E3C8409E3339414CEA66691535FF
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS63989.roa
Signing time: Wed 09 Apr 2025 05:22:53 +0000
ROA not before: Wed 09 Apr 2025 05:17:53 +0000
ROA not after: Wed 08 Apr 2026 05:22:53 +0000
asID: 63989
IP address blocks: 82.26.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:1e:75:59:a0:81:e3:c8:40:9e:33:39:41:4c:ea:66:69:15:35:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 9 05:17:53 2025 GMT
Not After : Apr 8 05:22:53 2026 GMT
Subject: CN=267AE3A91C5F39A128DC6EB75188E2997A65ACB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d7:69:bb:d8:7b:f5:2d:a3:6d:f6:17:4d:de:
da:6a:5a:28:26:7c:a0:3a:c8:8a:2d:28:95:0f:b0:
5d:6c:90:4a:fa:c9:ff:08:6d:97:ec:36:cd:23:8e:
d2:9d:78:e5:d7:9c:a6:39:77:9c:fd:dd:4e:97:d7:
a2:ea:f8:87:62:c1:ff:cc:b9:0c:ff:c3:32:9b:9f:
df:59:32:ea:9a:cd:3c:cd:95:95:e7:36:c8:f0:5c:
e0:73:d0:b4:7c:79:9d:f6:0c:15:11:f7:11:61:28:
a5:6f:17:32:cd:b3:aa:69:bc:e8:67:8b:20:0a:46:
9e:f6:3d:b5:33:11:2c:92:61:e9:4f:c5:ea:6e:2a:
b4:c4:92:46:ce:6d:68:73:7f:f1:74:18:bc:c5:7d:
5f:10:fe:4b:3d:fb:8e:db:c1:b7:ca:eb:97:c3:07:
98:8c:0b:18:53:8e:87:ef:42:5b:49:5c:38:1f:0a:
82:9f:53:89:ed:b1:22:57:d0:fa:6f:fa:30:fd:37:
c1:50:52:1b:d5:0d:3e:ec:b2:29:b8:3d:71:79:d7:
d4:b4:40:bb:1c:86:e8:40:e3:48:21:f4:88:d1:8c:
7e:08:7e:c4:14:4e:8b:ed:f1:a5:ba:d2:e4:46:56:
ed:74:30:6b:0f:83:ee:50:cb:95:9f:0d:f2:dd:8a:
1a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7A:E3:A9:1C:5F:39:A1:28:DC:6E:B7:51:88:E2:99:7A:65:AC:B8
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS63989.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.104.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c2:e1:2f:56:87:96:f2:96:1d:ef:1a:71:08:a6:12:4e:50:
7d:1b:d9:43:4d:14:d9:a5:b2:dd:3d:ce:08:29:04:6f:2c:24:
9f:0b:35:87:b2:18:61:a6:33:d8:58:f5:87:0c:10:d2:0e:b8:
aa:78:12:1c:28:d8:dd:12:fc:a6:d1:40:97:07:e2:2a:9b:a3:
1d:71:83:12:ee:f3:45:80:50:d1:32:57:03:f7:79:bb:a1:b6:
bb:ee:00:fc:30:dc:bc:18:4c:a0:8a:cb:8a:99:1c:db:ca:28:
4a:66:65:47:17:78:03:b3:58:c1:14:05:45:fb:8c:e1:cf:aa:
a6:9b:f1:b2:71:f7:c2:19:aa:5b:fa:b3:49:aa:e6:7d:1f:3a:
8c:03:b7:c4:fb:38:07:33:40:ba:51:93:1b:04:a4:95:89:b0:
5c:96:9f:77:e2:78:93:c4:78:02:1d:7c:e0:a0:f0:4e:43:e1:
61:20:b3:bb:5f:17:d6:d1:ea:a7:fd:c0:9e:b4:0a:98:42:4b:
a9:0d:ba:26:84:bc:ba:ef:5c:c9:8b:09:07:d4:a6:8a:bc:60:
6e:f2:69:3a:95:cd:05:0f:b6:a2:49:34:f1:44:4e:80:d0:7c:
68:5b:40:ec:d4:57:9e:0f:72:3b:f4:58:24:e8:f2:61:28:7c:
db:8f:0f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:27 2025 by rpki-client on console.sobornost.net