Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/fqBbVbtULHABomysYFDLPJ3ysX4.roa
File: fqBbVbtULHABomysYFDLPJ3ysX4.roa (raw, json)
Hash identifier: bDz9nKBgQ62YdO94rFUTyk/zQ5UqsUgp/EaAIRwgW74=
Subject key identifier: 7E:A0:5B:55:BB:54:2C:70:01:A2:6C:AC:60:50:CB:3C:9D:F2:B1:7E
Certificate issuer: /CN=9f5646f7d8afc0a933fb33333f37013d83a04d00
Certificate serial: 019425FDD02BC359B6CE4D901F13FCB8C6CE
Authority key identifier: 9F:56:46:F7:D8:AF:C0:A9:33:FB:33:33:3F:37:01:3D:83:A0:4D:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n1ZG99ivwKkz-zMzPzcBPYOgTQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/fqBbVbtULHABomysYFDLPJ3ysX4.roa
Signing time: Thu 02 Jan 2025 07:49:38 +0000
ROA not before: Thu 02 Jan 2025 07:49:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6855
IP address blocks: 78.98.0.0/15 maxlen: 15
84.47.0.0/17 maxlen: 17
87.197.0.0/16 maxlen: 16
91.127.0.0/16 maxlen: 16
95.102.0.0/15 maxlen: 15
95.102.128.0/17 maxlen: 17
95.103.0.0/18 maxlen: 18
95.103.64.0/18 maxlen: 18
178.40.0.0/15 maxlen: 15
178.41.128.0/17 maxlen: 17
185.19.72.0/22 maxlen: 22
194.154.224.0/19 maxlen: 19
195.91.0.0/17 maxlen: 17
195.146.128.0/19 maxlen: 19
195.146.136.0/24 maxlen: 24
212.5.192.0/19 maxlen: 19
213.81.128.0/17 maxlen: 17
213.81.197.0/24 maxlen: 24
213.160.160.0/19 maxlen: 19
2a00:12a8::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:d0:2b:c3:59:b6:ce:4d:90:1f:13:fc:b8:c6:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f5646f7d8afc0a933fb33333f37013d83a04d00
Validity
Not Before: Jan 2 07:49:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ea05b55bb542c7001a26cac6050cb3c9df2b17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:95:d1:bb:64:87:0f:f9:a1:6c:a1:f0:db:ad:
06:50:8a:3a:55:71:23:93:73:b5:5d:57:50:8c:9f:
5c:de:e2:97:19:62:68:38:4f:ee:a3:1a:0f:74:70:
8f:f8:bd:22:c1:48:0a:63:48:a2:11:38:b4:b0:5a:
ac:bb:19:8f:4f:e3:6c:6b:cc:00:f6:df:29:17:47:
12:76:d2:49:04:25:e4:dd:aa:5c:53:a3:25:5f:fb:
d6:90:b2:b2:24:e3:1d:f3:f5:e9:2d:4f:5d:17:fe:
3d:90:80:2f:20:44:79:79:a2:7a:c4:eb:03:58:a6:
76:b2:42:5a:b7:1f:85:58:f4:87:69:73:60:d4:72:
61:0c:44:3f:63:af:c4:1b:1f:bb:cd:53:4a:16:a3:
0b:97:8e:66:cf:10:ae:74:6a:6c:cf:bc:01:25:25:
ed:20:0f:22:57:53:37:0a:1a:4f:15:d4:0f:5f:08:
f2:27:ac:bf:11:ac:1f:c4:85:fb:27:6a:04:84:2e:
86:5e:1b:7e:d8:57:21:5d:2b:0d:aa:83:86:d7:9a:
a7:13:5d:03:3f:87:08:a1:c8:9d:24:c8:33:0c:2b:
a9:33:7d:1c:aa:a2:32:ed:61:9e:6f:d5:cb:de:1c:
ca:56:11:36:0d:10:27:73:36:3e:2c:5c:e0:7d:42:
ba:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A0:5B:55:BB:54:2C:70:01:A2:6C:AC:60:50:CB:3C:9D:F2:B1:7E
X509v3 Authority Key Identifier:
keyid:9F:56:46:F7:D8:AF:C0:A9:33:FB:33:33:3F:37:01:3D:83:A0:4D:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n1ZG99ivwKkz-zMzPzcBPYOgTQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/fqBbVbtULHABomysYFDLPJ3ysX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/n1ZG99ivwKkz-zMzPzcBPYOgTQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.98.0.0/15
84.47.0.0/17
87.197.0.0/16
91.127.0.0/16
95.102.0.0/15
178.40.0.0/15
185.19.72.0/22
194.154.224.0/19
195.91.0.0/17
195.146.128.0/19
212.5.192.0/19
213.81.128.0/17
213.160.160.0/19
IPv6:
2a00:12a8::/29
Signature Algorithm: sha256WithRSAEncryption
15:65:a9:15:db:7a:07:ac:fb:7b:c4:fa:16:29:6a:cd:78:c1:
b7:25:f7:65:d5:00:70:b8:fe:f6:2f:2e:07:9a:df:43:ce:94:
d3:4b:87:bc:29:1f:2a:d9:4e:98:23:33:ea:70:97:c2:78:f1:
12:15:a1:6d:0b:52:37:58:35:c5:1f:7b:49:ca:cf:48:dc:f4:
7c:75:da:f0:87:c5:00:18:32:82:7f:ba:bb:eb:f0:16:5f:f5:
b2:c6:9e:4d:db:f8:82:fe:14:51:2d:2e:d3:77:dc:1d:8d:c3:
39:d6:54:e4:2a:51:4e:5b:89:bd:5f:ba:19:29:e9:9f:1e:e2:
26:ce:bf:19:4d:9b:1a:f3:75:86:7f:aa:2b:42:74:12:a5:7f:
cf:b2:91:44:45:cf:54:b5:6e:92:fe:9e:55:50:15:b0:61:0d:
71:b6:b9:69:dc:b1:5a:4c:f6:11:dc:4c:09:13:0c:6a:b1:71:
b4:ad:e6:71:f9:06:f9:3a:b1:3d:26:86:0e:7a:ee:3b:06:47:
fe:6d:17:d5:09:92:1b:7b:6d:be:ba:0b:b6:13:35:9e:4c:41:
57:f2:d3:94:e4:7a:05:61:34:49:9a:be:66:f8:5d:f3:25:ed:
65:54:d1:5b:5e:fd:eb:c0:6e:4b:0d:a2:45:bd:b4:92:32:7a:
db:17:84:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 15:43:38 2025 by rpki-client on console.sobornost.net