Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/JY70469X8sbUfsNnk7SUuu0w3Kc.roa
File: JY70469X8sbUfsNnk7SUuu0w3Kc.roa (raw, json)
Hash identifier: Hfl/rx8Ob8X8Add7OXxmiGI9Zx3Lz3uXO4BW73Yc3+A=
Subject key identifier: 25:8E:F4:E3:AF:57:F2:C6:D4:7E:C3:67:93:B4:94:BA:ED:30:DC:A7
Certificate issuer: /CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Certificate serial: 019600C84FC3816F28AE0E6FFAA84CB927F7
Authority key identifier: B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/JY70469X8sbUfsNnk7SUuu0w3Kc.roa
Signing time: Fri 04 Apr 2025 12:30:49 +0000
ROA not before: Fri 04 Apr 2025 12:30:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52157
IP address blocks: 5.100.188.0/22 maxlen: 22
93.89.112.0/20 maxlen: 20
185.193.92.0/22 maxlen: 22
185.209.224.0/22 maxlen: 22
185.237.36.0/22 maxlen: 22
2a02:25e8::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:c8:4f:c3:81:6f:28:ae:0e:6f:fa:a8:4c:b9:27:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Validity
Not Before: Apr 4 12:30:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=258ef4e3af57f2c6d47ec36793b494baed30dca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7d:1c:e9:a7:34:21:f6:45:d1:48:61:03:59:
08:86:59:3d:17:e0:dc:50:e9:6a:3d:cd:d4:50:ea:
b6:6c:0c:b2:27:ad:fd:0e:45:99:60:12:6f:d9:ce:
13:d8:67:14:c9:a3:f1:b5:8d:c9:f8:fe:44:47:20:
a7:c1:68:fc:1d:7a:dd:67:bb:92:2d:48:3c:fe:28:
57:fc:54:e7:58:50:2f:80:8e:9d:99:b5:ed:1d:f7:
53:77:51:4f:eb:5a:76:4c:fe:26:de:2a:ef:39:37:
77:03:3e:60:ee:f7:46:f1:9d:c1:9e:02:67:98:f1:
f4:b0:04:e9:29:70:a3:9a:44:27:d3:9f:0e:b4:1c:
fa:62:30:7a:b8:47:58:5f:ff:28:1a:00:e8:d8:3a:
94:4b:a7:46:cc:49:0e:ba:40:e4:39:75:47:8f:4b:
6e:9b:e0:6b:35:64:3e:49:8a:64:87:fd:35:f5:4e:
99:d4:db:ee:39:74:b2:a7:9b:be:ce:b6:01:a7:56:
bc:88:52:60:03:35:95:4d:4f:58:a8:77:c7:b5:2f:
80:da:3e:4b:18:a9:a5:e5:fc:cf:d4:f8:6a:29:80:
26:4f:1f:83:87:06:da:cf:c7:9b:86:00:32:67:46:
6b:55:30:7b:e4:1a:42:f1:cf:4d:7d:16:4c:73:df:
d0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8E:F4:E3:AF:57:F2:C6:D4:7E:C3:67:93:B4:94:BA:ED:30:DC:A7
X509v3 Authority Key Identifier:
keyid:B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/JY70469X8sbUfsNnk7SUuu0w3Kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.188.0/22
93.89.112.0/20
185.193.92.0/22
185.209.224.0/22
185.237.36.0/22
IPv6:
2a02:25e8::/29
Signature Algorithm: sha256WithRSAEncryption
41:35:36:60:b0:b4:52:cd:64:82:6e:d6:a8:4d:ca:5a:11:84:
bb:04:be:2c:65:94:d3:0f:cb:69:db:69:c0:3f:74:1c:20:f4:
32:42:68:1e:65:8a:1a:53:50:c9:b1:5d:20:b8:20:fb:ba:ce:
f4:6f:f3:3d:ba:d5:8c:ff:63:47:0c:6e:fa:07:0d:f3:27:3e:
ca:33:43:d8:d2:ae:f8:64:66:03:4c:59:ab:cd:1e:49:d8:7a:
dc:2d:d3:02:4c:56:66:f0:f7:c9:b0:44:df:ba:34:15:b6:bc:
15:45:93:fc:8b:e8:47:94:a6:9a:eb:59:8e:34:54:ac:08:64:
df:1d:26:fd:ae:ad:8b:b5:68:93:2b:6e:57:e7:b1:7c:72:09:
d2:0e:44:ee:fe:7e:2c:01:3f:3a:68:db:5c:48:12:f0:26:ea:
48:eb:55:3d:8d:3c:bf:c7:f4:e9:10:97:b8:3c:dd:2a:ce:ec:
fd:2a:55:c2:f6:3f:c9:51:31:45:30:ee:e7:63:d1:56:ba:3e:
32:05:83:ed:d8:90:31:00:94:a9:3a:d1:4c:13:42:70:98:34:
cf:fd:4f:3d:59:99:d5:df:f4:c7:c0:15:50:52:82:f2:a5:3c:
d0:98:5d:e1:31:13:13:50:b6:7a:0f:3d:35:83:d8:42:91:d2:
69:df:ae:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net