Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e44d58-15d5-48c7-be21-f816d3be4012/1/FruHS8sKA0UVPBPUKiJYlzj46rI.roa
File: FruHS8sKA0UVPBPUKiJYlzj46rI.roa (raw, json)
Hash identifier: If8vnhAP47c8P1zX/kOfX6rctIeesg8CbkDyipSuox4=
Subject key identifier: 16:BB:87:4B:CB:0A:03:45:15:3C:13:D4:2A:22:58:97:38:F8:EA:B2
Certificate issuer: /CN=f06de29e9356df44707c8396d918e6b289129c4a
Certificate serial: 01959EDE4988D151C7CDB0067DE61C8DAB85
Authority key identifier: F0:6D:E2:9E:93:56:DF:44:70:7C:83:96:D9:18:E6:B2:89:12:9C:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8G3inpNW30RwfIOW2RjmsokSnEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e44d58-15d5-48c7-be21-f816d3be4012/1/FruHS8sKA0UVPBPUKiJYlzj46rI.roa
Signing time: Sun 16 Mar 2025 12:12:02 +0000
ROA not before: Sun 16 Mar 2025 12:12:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34970
IP address blocks: 95.130.152.0/21 maxlen: 21
185.55.144.0/22 maxlen: 22
194.50.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:9e:de:49:88:d1:51:c7:cd:b0:06:7d:e6:1c:8d:ab:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f06de29e9356df44707c8396d918e6b289129c4a
Validity
Not Before: Mar 16 12:12:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16bb874bcb0a0345153c13d42a22589738f8eab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:42:e2:cf:04:ff:70:be:77:53:f5:43:ed:91:
1f:b7:9d:14:84:8d:a5:ab:59:05:d8:c3:9d:a2:04:
22:77:fa:44:13:9e:d5:01:04:b3:72:d9:13:22:d0:
c9:5f:63:90:2b:4f:6a:cc:c4:06:8d:49:07:1b:67:
23:04:ea:59:39:b1:0a:6c:a3:70:1c:f0:0a:a7:f4:
80:48:0e:02:2a:d3:03:e9:0a:2a:81:17:60:5e:2d:
e5:7c:70:97:45:09:86:97:5d:d5:3c:b6:70:45:f3:
91:48:5c:d7:b4:e6:f3:24:c6:fe:92:96:55:de:48:
30:dc:df:32:2f:7c:7c:8d:7c:f8:01:5b:e4:5a:6a:
69:cd:e8:eb:1b:ff:83:78:ce:f9:67:35:e1:75:4f:
45:92:e2:77:2b:80:7c:9a:5a:45:2e:60:a8:80:6e:
31:fd:6d:17:c6:b3:5f:10:be:a9:a0:52:5e:3b:34:
6d:5b:39:e2:3d:7a:ca:9c:a8:ce:d8:57:93:7f:32:
47:48:58:0a:cf:f0:3e:01:c7:27:41:78:55:cc:b2:
67:e8:7a:9f:14:9c:55:c9:e2:f4:57:b7:82:06:f6:
a4:13:07:74:e0:be:41:22:e3:fc:9d:1a:2e:c8:86:
41:09:35:58:58:ee:3e:fd:3f:c2:96:26:26:51:8a:
bc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BB:87:4B:CB:0A:03:45:15:3C:13:D4:2A:22:58:97:38:F8:EA:B2
X509v3 Authority Key Identifier:
keyid:F0:6D:E2:9E:93:56:DF:44:70:7C:83:96:D9:18:E6:B2:89:12:9C:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8G3inpNW30RwfIOW2RjmsokSnEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e44d58-15d5-48c7-be21-f816d3be4012/1/FruHS8sKA0UVPBPUKiJYlzj46rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e44d58-15d5-48c7-be21-f816d3be4012/1/8G3inpNW30RwfIOW2RjmsokSnEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.152.0/21
185.55.144.0/22
194.50.78.0/24
Signature Algorithm: sha256WithRSAEncryption
67:78:62:42:15:52:24:48:cf:bc:83:29:83:3d:9a:ae:b8:c1:
fe:60:c2:1b:f3:74:35:73:b2:a9:bf:2b:7e:bc:90:79:13:b1:
d3:d7:36:ef:b8:37:b5:83:71:5b:b4:8e:2c:f3:e5:0c:03:1a:
15:23:8a:2a:13:d1:35:55:62:5a:26:7a:fd:85:0e:70:27:ed:
57:f8:56:39:48:a7:0f:55:53:5f:3c:62:30:61:bd:a1:f4:e8:
27:b8:2f:78:11:26:ee:d2:f4:8d:df:de:76:75:ea:26:0c:fd:
05:7f:19:74:38:5d:f3:3a:88:de:6b:a3:3c:a8:58:16:91:d3:
ef:e4:57:28:07:14:6f:21:33:f3:e6:85:02:06:52:5a:57:af:
36:ae:64:2b:8c:9a:a6:2e:02:1b:23:8f:1a:7d:b2:92:95:49:
04:d6:73:33:15:36:19:84:fa:6a:6f:9d:42:5c:59:ed:70:aa:
24:de:b2:46:53:a7:d4:64:ad:e3:cc:89:02:21:3b:f2:d3:57:
fb:c5:a4:07:d4:fe:92:bb:ee:41:3a:d6:cb:bd:8b:f4:5a:5a:
4c:9c:3a:86:b0:d3:63:8c:f7:22:1f:0b:a6:4a:f2:b1:dd:8d:
61:6e:01:ed:68:76:2a:6e:64:ad:76:81:59:2b:c2:8f:d0:3a:
46:e5:be:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:58 2025 by rpki-client on console.sobornost.net