Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b6768f-d395-4681-a3f3-3cf306807a7e/1/bUexMEG5KZ30YS3AFv2LLIm5VUk.roa
File: bUexMEG5KZ30YS3AFv2LLIm5VUk.roa (raw, json)
Hash identifier: 73jcglvdcT9moQ9QgtlZoUeROl6dwy33TWezKXRJ6GM=
Subject key identifier: 6D:47:B1:30:41:B9:29:9D:F4:61:2D:C0:16:FD:8B:2C:89:B9:55:49
Certificate issuer: /CN=9e4cf51247ab57f526f3807259a78d2b02590603
Certificate serial: 0194228D8F252839560DFCA0D1F9382D1606
Authority key identifier: 9E:4C:F5:12:47:AB:57:F5:26:F3:80:72:59:A7:8D:2B:02:59:06:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkz1EkerV_Um84ByWaeNKwJZBgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b6768f-d395-4681-a3f3-3cf306807a7e/1/bUexMEG5KZ30YS3AFv2LLIm5VUk.roa
Signing time: Wed 01 Jan 2025 15:48:10 +0000
ROA not before: Wed 01 Jan 2025 15:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29997
IP address blocks: 194.62.180.0/24 maxlen: 24
194.62.181.0/24 maxlen: 24
194.62.182.0/24 maxlen: 24
194.62.183.0/24 maxlen: 24
2a07:dc00:180::/44 maxlen: 44
2a07:dc00:1810::/44 maxlen: 44
2a07:dc00:1820::/44 maxlen: 44
2a07:dc00:1830::/44 maxlen: 44
2a07:dc00:2550::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:8f:25:28:39:56:0d:fc:a0:d1:f9:38:2d:16:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e4cf51247ab57f526f3807259a78d2b02590603
Validity
Not Before: Jan 1 15:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6d47b13041b9299df4612dc016fd8b2c89b95549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:13:a2:4a:3e:a5:1f:a7:2b:23:dc:af:c4:f2:
63:09:f7:56:0b:2a:dd:54:2f:da:3e:0b:a4:09:b3:
c1:0d:f9:cc:89:15:3c:e2:0a:07:8f:3a:9c:3f:f3:
74:7e:47:2b:5b:b6:2b:9f:5f:44:73:39:92:61:50:
95:50:51:38:92:43:31:9e:95:29:0e:fa:e5:9f:33:
bd:5a:d1:12:a0:5e:17:64:6b:e7:f8:43:f1:86:6c:
80:48:9e:73:22:94:96:40:e1:92:3c:a3:63:aa:90:
af:d6:39:d5:a2:d3:43:42:9c:fb:2b:2f:49:07:80:
b3:e6:d4:d7:a0:2d:2c:31:0b:9a:fc:3f:fd:65:f6:
0f:0e:e4:61:11:72:12:8e:e9:e7:54:70:9d:4b:84:
ac:d7:dc:cd:d1:0a:d0:e6:30:f6:7a:81:b3:4a:e3:
83:78:9e:6c:7b:46:8b:e7:db:0b:17:90:3d:7e:c4:
18:7e:62:62:b5:f9:cb:6d:87:4a:5b:1b:71:ee:ba:
7d:57:08:cb:eb:43:17:2f:68:6e:c1:60:86:17:08:
fd:46:8c:1a:cb:78:8b:00:8d:e4:d3:15:03:97:5b:
91:c7:47:4c:ff:d4:12:54:be:76:bf:1d:1f:97:5a:
e0:f4:be:e8:bc:5e:b9:3e:78:22:f3:8e:a5:93:3e:
53:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:47:B1:30:41:B9:29:9D:F4:61:2D:C0:16:FD:8B:2C:89:B9:55:49
X509v3 Authority Key Identifier:
keyid:9E:4C:F5:12:47:AB:57:F5:26:F3:80:72:59:A7:8D:2B:02:59:06:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkz1EkerV_Um84ByWaeNKwJZBgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b6768f-d395-4681-a3f3-3cf306807a7e/1/bUexMEG5KZ30YS3AFv2LLIm5VUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b6768f-d395-4681-a3f3-3cf306807a7e/1/nkz1EkerV_Um84ByWaeNKwJZBgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.180.0/22
IPv6:
2a07:dc00:180::/44
2a07:dc00:1810::-2a07:dc00:183f:ffff:ffff:ffff:ffff:ffff
2a07:dc00:2550::/44
Signature Algorithm: sha256WithRSAEncryption
4f:e9:5f:0b:12:57:bb:10:5c:5f:99:a6:90:b1:a3:59:37:0a:
f7:a9:13:41:f4:4d:e9:d5:ee:24:44:4c:7e:80:4c:3f:cb:46:
6a:01:aa:5a:8f:de:c1:41:b9:d1:da:6b:ae:a4:56:07:e8:fc:
f8:07:81:83:5a:ed:8b:e1:cc:19:ad:52:df:38:42:13:6b:fc:
1b:26:2e:ef:ae:02:b8:df:47:af:df:c0:ed:60:41:e2:a9:ff:
36:66:e3:ce:9e:60:91:66:34:04:f4:40:70:73:7a:77:b8:68:
e2:1e:8a:04:2e:03:87:72:5e:81:ea:a6:9e:04:01:0e:f8:b1:
4e:f0:15:d0:71:99:6c:04:ba:16:a4:74:0f:ea:db:d6:50:e4:
d7:a4:74:20:99:db:af:ad:40:91:51:2f:ad:65:a0:4e:51:75:
d7:90:34:55:02:e2:63:af:f9:d6:93:4c:aa:22:88:14:83:50:
62:2b:39:21:bb:9f:16:54:74:f7:65:27:50:96:c8:db:0e:ac:
02:3e:c7:07:cb:cc:ed:be:82:75:35:07:c2:c4:bc:9e:16:54:
f1:e0:2f:0c:83:e3:0e:00:4b:11:38:40:f5:89:ed:32:56:27:
f0:06:cb:b0:fc:78:7e:ee:0b:81:f8:4f:32:c0:3e:18:3f:43:
58:66:91:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:50 2025 by rpki-client on console.sobornost.net