Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/uoGc2nJpk2UpZyfHZzcx7uBg-dw.roa
File: uoGc2nJpk2UpZyfHZzcx7uBg-dw.roa (raw, json)
Hash identifier: YbLz65VSnoZrUAyODriZg6tIX0t6U/Eu072okI1A/7E=
Subject key identifier: BA:81:9C:DA:72:69:93:65:29:67:27:C7:67:37:31:EE:E0:60:F9:DC
Certificate issuer: /CN=e8f239a70043734172d26378bf2106ae72552187
Certificate serial: 01951908F8F6D7E02E67B3262D7E3CAC2CBD
Authority key identifier: E8:F2:39:A7:00:43:73:41:72:D2:63:78:BF:21:06:AE:72:55:21:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6PI5pwBDc0Fy0mN4vyEGrnJVIYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/uoGc2nJpk2UpZyfHZzcx7uBg-dw.roa
Signing time: Tue 18 Feb 2025 12:29:33 +0000
ROA not before: Tue 18 Feb 2025 12:29:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31042
IP address blocks: 37.0.64.0/21 maxlen: 24
79.140.144.0/20 maxlen: 24
185.12.40.0/22 maxlen: 24
185.80.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:19:08:f8:f6:d7:e0:2e:67:b3:26:2d:7e:3c:ac:2c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8f239a70043734172d26378bf2106ae72552187
Validity
Not Before: Feb 18 12:29:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba819cda72699365296727c7673731eee060f9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b1:78:c7:e9:48:eb:99:ac:e1:b0:41:a9:d1:
a2:e5:71:8a:65:d3:06:96:79:9c:60:cf:ba:1e:62:
92:a5:e6:4b:a4:9f:14:93:72:65:ea:2d:a5:c0:83:
aa:2d:2b:36:c8:96:1f:d1:c1:58:3c:1f:24:89:49:
19:1b:c0:98:00:9b:93:36:ca:1c:c7:c1:b1:78:ca:
1f:d6:f7:e5:ce:33:96:d8:46:fa:f4:77:9d:4a:1e:
38:5e:53:17:5f:c6:c5:d4:39:67:57:3a:df:78:f1:
99:65:6d:1b:5d:87:c1:b7:c7:fe:c7:47:b1:76:a8:
38:00:97:7f:83:ca:3a:83:45:94:06:dd:93:f6:b0:
a6:c6:36:39:35:9a:f2:e9:e1:95:51:db:13:ae:f6:
ca:4a:d6:51:7d:f2:f5:29:02:2e:41:31:7a:de:24:
17:d3:c1:79:89:61:ef:fe:4b:f1:db:71:c9:58:60:
fb:06:de:7e:f6:09:8f:39:54:88:b9:e1:ed:3f:73:
2c:83:d3:2b:20:8f:3a:a9:40:f2:12:40:20:96:0f:
ee:3d:26:8e:d1:7a:02:e1:51:53:c4:1c:c3:53:2b:
ec:3a:d7:88:c5:a6:df:b0:cd:19:91:e6:6e:eb:25:
78:6b:6c:5a:e4:d0:a3:76:ff:a6:06:8a:c1:52:b2:
c0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:81:9C:DA:72:69:93:65:29:67:27:C7:67:37:31:EE:E0:60:F9:DC
X509v3 Authority Key Identifier:
keyid:E8:F2:39:A7:00:43:73:41:72:D2:63:78:BF:21:06:AE:72:55:21:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6PI5pwBDc0Fy0mN4vyEGrnJVIYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/uoGc2nJpk2UpZyfHZzcx7uBg-dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/4e902a-299f-4da7-9a6d-669bd113a178/1/6PI5pwBDc0Fy0mN4vyEGrnJVIYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.64.0/21
79.140.144.0/20
185.12.40.0/22
185.80.96.0/22
Signature Algorithm: sha256WithRSAEncryption
07:f5:df:08:b1:ff:53:66:73:42:57:1b:86:b1:bc:b3:31:92:
d4:5a:77:4a:20:f4:f8:2c:31:ff:31:e0:77:f9:ad:06:d1:40:
c5:fa:99:99:00:42:be:10:46:7f:d6:90:49:25:71:f3:c6:d3:
12:14:9b:27:1e:68:b6:13:32:24:e2:d2:10:03:ee:08:d5:07:
91:87:22:7d:fd:c5:01:82:65:82:5a:e1:e1:00:41:60:9e:ab:
d6:64:ba:f5:1a:78:c0:dd:20:24:98:67:27:b3:b9:57:6d:d7:
ab:89:d4:9d:0a:32:8c:8d:aa:71:f1:ee:ba:65:3f:ca:6a:87:
d8:fc:57:e6:a3:99:cb:56:cb:2a:8b:8e:5d:ba:b9:6e:fc:6e:
14:11:82:ca:2f:59:42:52:4d:0b:59:69:75:a6:2f:cc:9c:ca:
2e:dc:7c:ef:79:f9:6b:10:4b:25:cc:38:c1:a4:4b:82:b5:30:
5d:7f:d4:33:b7:4d:71:43:e0:80:f0:f4:0c:f2:23:4d:0e:2c:
47:ca:6b:9e:c6:fe:50:37:83:08:2a:ee:4a:4a:86:36:49:cc:
5d:8c:89:cf:48:c6:2a:b5:7f:f1:cd:59:14:d5:64:5a:39:a6:
8f:e5:3b:a5:40:c6:61:fc:12:6c:6c:54:59:93:67:4a:95:5e:
1e:f6:ea:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:03 2025 by rpki-client on console.sobornost.net