Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/PnNWpVBdWoAd7atmJEGFvS64Mws.roa
File: PnNWpVBdWoAd7atmJEGFvS64Mws.roa (raw, json)
Hash identifier: tnccYlmQkpOSmjFbn8qMQEzLxuwoQXHA9SM9r5ZMjAk=
Subject key identifier: 3E:73:56:A5:50:5D:5A:80:1D:ED:AB:66:24:41:85:BD:2E:B8:33:0B
Certificate issuer: /CN=1bc1994ea63d50dbc8b43acecad2842b4dc15759
Certificate serial: 0194266B00ED09DDDC508DA308F86FBDFA0D
Authority key identifier: 1B:C1:99:4E:A6:3D:50:DB:C8:B4:3A:CE:CA:D2:84:2B:4D:C1:57:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/PnNWpVBdWoAd7atmJEGFvS64Mws.roa
Signing time: Thu 02 Jan 2025 09:48:54 +0000
ROA not before: Thu 02 Jan 2025 09:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41897
IP address blocks: 78.109.97.0/24 maxlen: 24
78.109.98.0/24 maxlen: 24
78.109.99.0/24 maxlen: 24
78.109.100.0/23 maxlen: 23
78.109.102.0/23 maxlen: 23
185.90.134.0/23 maxlen: 23
193.42.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:00:ed:09:dd:dc:50:8d:a3:08:f8:6f:bd:fa:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bc1994ea63d50dbc8b43acecad2842b4dc15759
Validity
Not Before: Jan 2 09:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e7356a5505d5a801dedab66244185bd2eb8330b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6e:82:40:1d:5e:09:58:64:89:b1:14:62:73:
9b:69:96:6c:72:34:dc:44:df:1b:9c:ba:98:cf:9e:
6c:1d:37:20:d0:83:fe:13:7c:56:c8:bd:c1:57:13:
fa:34:cc:d5:bf:f6:e1:83:4f:fa:78:71:72:96:d6:
ec:b5:39:23:d0:a5:83:63:a3:61:00:98:59:30:9f:
a4:71:fc:85:ef:36:e1:a3:da:b5:65:90:ad:1c:2f:
c1:7a:b5:d8:b2:06:aa:8f:2c:be:59:3c:d8:13:67:
29:dd:1e:a1:a3:64:20:d9:b9:77:93:aa:1c:07:c0:
1d:68:c0:f5:0d:d8:3b:81:88:60:1e:28:7b:95:5c:
85:3e:f5:00:3b:44:eb:f0:bc:24:7a:44:60:93:21:
f0:39:6a:33:50:fa:fd:f0:c4:6a:78:92:9e:de:df:
56:71:bc:4c:6d:8c:46:81:f3:e6:5c:8b:55:dd:85:
69:ce:c9:34:f8:36:68:90:d9:d4:ab:12:54:04:02:
17:c3:05:38:ff:98:2a:5d:f6:a6:9b:3d:00:d6:28:
24:46:b3:8c:36:34:e9:d3:ea:9a:85:41:d4:ca:22:
86:e1:f5:90:de:46:02:38:2e:9c:9a:55:0d:9d:07:
23:05:ee:6e:39:f7:9a:c0:ae:77:88:0f:c1:e8:42:
81:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:73:56:A5:50:5D:5A:80:1D:ED:AB:66:24:41:85:BD:2E:B8:33:0B
X509v3 Authority Key Identifier:
keyid:1B:C1:99:4E:A6:3D:50:DB:C8:B4:3A:CE:CA:D2:84:2B:4D:C1:57:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/PnNWpVBdWoAd7atmJEGFvS64Mws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/G8GZTqY9UNvItDrOytKEK03BV1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.97.0-78.109.103.255
185.90.134.0/23
193.42.20.0/24
Signature Algorithm: sha256WithRSAEncryption
89:27:0d:c2:29:4d:79:a7:4b:d6:f5:14:23:ff:76:a3:67:5c:
7d:1a:b0:be:71:1e:2b:88:8a:be:d5:d6:d9:a0:ac:4f:f6:85:
b1:e7:4d:b6:a6:c7:77:6c:16:ff:19:aa:bb:0a:ff:f3:0d:78:
16:4a:91:1d:0f:a7:75:be:39:a0:6d:23:50:b8:94:1a:b2:68:
9c:d3:dc:3b:f7:61:20:fd:e7:f2:67:42:14:d8:d6:7f:26:12:
07:4a:95:97:08:5f:03:4e:15:31:71:6d:85:13:92:fc:d3:f5:
b3:2a:8e:e3:55:c9:ab:ff:fc:10:f5:16:8a:e5:24:7a:37:c0:
6f:d6:5a:3e:46:a3:27:6d:f2:b4:4a:79:8a:3f:c1:b8:f6:fc:
f5:26:94:94:a0:16:a6:a2:c9:d9:ef:95:73:9e:ef:31:f1:21:
cf:a5:4c:49:d4:a7:f5:28:89:3c:2a:2a:78:24:cf:7f:03:06:
ad:f4:9f:75:63:85:3b:8e:0c:67:46:79:47:31:3e:b7:4e:ac:
6f:ca:4e:aa:c9:6a:b7:4c:f3:87:b0:43:6f:17:a1:77:54:29:
37:1f:01:b4:bd:94:4f:cb:09:fd:ec:5b:1b:2a:1e:f2:85:56:
da:78:0f:7c:e2:19:2f:44:75:ff:35:12:e4:45:14:f2:d4:23:
c7:49:18:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net