Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/1-xG84ADs8WGDRZ0QBI45PgYo0BQ.roa
File: 1-xG84ADs8WGDRZ0QBI45PgYo0BQ.roa (raw, json)
Hash identifier: mJzu2JKfhdGK7dwlHkbHX6uP8mfFLXehVVhSBP0jTi4=
Subject key identifier: FB:11:BC:E0:00:EC:F1:61:83:45:9D:10:04:8E:39:3E:06:28:D0:14
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0190B5AE38217197B56A32E174673ACD963A
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/1-xG84ADs8WGDRZ0QBI45PgYo0BQ.roa
Signing time: Mon 15 Jul 2024 09:16:51 +0000
ROA not before: Mon 15 Jul 2024 09:16:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 89.249.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b5:ae:38:21:71:97:b5:6a:32:e1:74:67:3a:cd:96:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jul 15 09:16:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb11bce000ecf16183459d10048e393e0628d014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4a:25:27:7a:ff:1d:69:d0:a0:2b:7a:cb:3a:
f1:ee:cd:86:1e:10:a8:aa:b3:f3:ad:11:ab:f2:b4:
74:bf:0c:19:0b:32:4a:ee:0e:e5:d9:90:96:60:4f:
b4:6d:e4:ca:3f:a5:6a:dd:cf:de:64:3a:b6:fb:e7:
3c:b1:16:e3:a4:74:89:f8:d1:fc:e8:4b:cd:dd:09:
d3:0c:b3:7f:d5:41:e9:fb:5c:2c:77:b1:4e:92:0f:
77:6e:0d:b8:5b:51:10:84:c5:b2:2d:af:ed:7f:fe:
db:e3:f0:9c:df:a9:22:d5:47:04:20:3e:85:5b:e1:
ba:00:4e:48:af:fd:32:98:0e:86:7a:0a:d2:35:fd:
25:25:e8:32:ed:49:fb:9d:2c:64:4c:45:b0:b4:eb:
96:f8:a7:a4:cf:fe:c7:1e:36:f4:bd:a0:48:cc:79:
66:57:4f:88:b2:0e:a5:df:95:bb:b4:4c:0e:65:32:
4f:41:46:de:c4:38:36:98:00:69:af:c3:57:e5:dd:
7b:02:74:fc:1f:5b:fb:54:1c:38:2c:30:1b:8a:75:
2d:93:28:21:e1:a2:b0:0b:01:2b:3a:1f:9a:c6:92:
05:c6:69:d7:f3:ae:b8:e6:aa:28:e0:8a:5e:fa:eb:
97:c7:68:19:2d:3f:53:c2:68:5c:40:8f:72:12:3b:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:11:BC:E0:00:EC:F1:61:83:45:9D:10:04:8E:39:3E:06:28:D0:14
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/1-xG84ADs8WGDRZ0QBI45PgYo0BQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.201.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:1d:7c:ae:e0:62:95:50:f4:18:83:9d:3d:12:91:35:2c:fb:
bf:04:50:ed:50:22:5f:93:73:21:ab:1f:a1:a4:5c:4d:0a:d8:
f9:80:dc:93:cd:03:04:98:6e:0f:0c:14:3f:2b:4d:c3:ca:15:
39:e5:1c:a5:1a:dc:e9:51:f1:dc:e8:e5:98:5a:c0:63:0b:39:
4f:6e:70:c3:3e:b5:d9:7e:dd:eb:16:17:42:5d:96:53:80:74:
c9:d9:86:f1:65:f8:b9:d3:37:26:9c:7c:4a:5a:9c:c1:c7:c7:
a7:11:b4:0c:8e:85:c8:f5:9a:f7:ab:2f:b8:d4:2b:e3:fa:68:
fd:bd:21:72:8e:0f:e9:02:73:82:36:97:53:7d:1d:e5:33:5b:
c1:a9:c4:88:83:91:ce:06:42:38:5f:4d:1b:c3:9c:24:3a:bb:
c8:4f:e9:b6:69:03:46:f5:61:b4:17:cf:60:e1:ae:1b:47:24:
90:f2:0b:70:0f:0f:16:ea:d8:f9:fc:7f:85:20:d4:3d:76:06:
bf:9a:b2:07:11:ac:b4:ed:67:51:fa:3f:30:7a:4e:93:59:ad:
cf:2c:0c:6e:94:74:c1:4a:19:4f:02:85:ba:3b:2d:c3:a8:3f:
ba:06:30:32:85:70:01:b8:e1:d2:b3:88:02:37:f6:da:c0:e9:
8e:13:bf:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:29 2025 by rpki-client