Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/LllBFDs2gYBZI_Py2Vbfk71EYWc.roa
File: LllBFDs2gYBZI_Py2Vbfk71EYWc.roa (raw, json)
Hash identifier: jTm21xMBscMU1inWn9X97hwUinpmwWspFNpJiHwAkIk=
Subject key identifier: 2E:59:41:14:3B:36:81:80:59:23:F3:F2:D9:56:DF:93:BD:44:61:67
Certificate issuer: /CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Certificate serial: 0194221FA9B36AB7F8E31CC81D0FE589B556
Authority key identifier: C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/LllBFDs2gYBZI_Py2Vbfk71EYWc.roa
Signing time: Wed 01 Jan 2025 13:48:07 +0000
ROA not before: Wed 01 Jan 2025 13:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201188
IP address blocks: 185.16.110.0/24 maxlen: 24
185.63.16.0/24 maxlen: 24
185.63.17.0/24 maxlen: 24
185.63.18.0/24 maxlen: 24
185.63.19.0/24 maxlen: 24
185.63.92.0/24 maxlen: 24
185.63.93.0/24 maxlen: 24
185.63.94.0/24 maxlen: 24
185.63.95.0/24 maxlen: 24
2a03:ba0::/29 maxlen: 29
2a03:ba0::/32 maxlen: 32
2a03:ba0::/64 maxlen: 64
2a03:ba2::/64 maxlen: 64
2a03:ba3::/64 maxlen: 64
2a03:ba4::/64 maxlen: 64
2a03:ba5::/64 maxlen: 64
2a03:ba6::/64 maxlen: 64
2a03:ba7::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:a9:b3:6a:b7:f8:e3:1c:c8:1d:0f:e5:89:b5:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Validity
Not Before: Jan 1 13:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e5941143b3681805923f3f2d956df93bd446167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d3:e7:b4:46:8d:94:20:e4:6b:47:70:ed:de:
87:79:4c:64:19:6a:c8:78:78:23:42:75:da:00:81:
bb:05:0b:8d:e1:5d:fe:ad:0b:a6:81:69:2d:7a:3c:
3c:8a:1c:c7:b8:d1:22:27:21:4c:68:54:2a:cf:5f:
f9:8a:55:c7:91:60:34:62:b9:c8:dc:a4:0a:cd:88:
58:bf:c3:39:bd:83:27:ce:6f:ac:63:af:d4:18:a3:
0a:b8:e1:a2:e5:7d:ef:c9:48:ea:b8:1c:aa:1a:46:
74:db:af:60:32:42:e3:10:7c:66:2b:be:a0:d8:75:
be:23:e7:88:4c:c1:d1:d7:d5:91:69:c2:18:30:75:
a2:91:ae:6f:ad:2e:89:4e:41:50:02:88:c3:b2:eb:
01:9f:35:b7:c9:2b:18:4a:be:db:93:a1:17:0f:85:
2a:ce:1e:13:cb:e5:57:f8:72:3f:f3:50:bb:3a:db:
80:2d:fb:78:43:5e:d4:b4:75:01:28:bf:85:d4:47:
e8:a7:9b:a5:d4:24:c7:10:59:e0:7a:dd:33:e9:f3:
81:ac:8b:90:20:10:a6:5f:6c:a7:36:9e:22:d2:ae:
55:f9:a4:50:37:ae:dd:02:64:37:88:24:7f:4b:3d:
bb:41:cc:44:24:00:f6:93:b5:d5:45:bb:79:aa:70:
ef:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:59:41:14:3B:36:81:80:59:23:F3:F2:D9:56:DF:93:BD:44:61:67
X509v3 Authority Key Identifier:
keyid:C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/LllBFDs2gYBZI_Py2Vbfk71EYWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/xr--8nm_ne1uNlHgYo05unkpT3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.110.0/24
185.63.16.0/22
185.63.92.0/22
IPv6:
2a03:ba0::/29
Signature Algorithm: sha256WithRSAEncryption
c5:72:b7:b9:c5:27:81:49:1c:82:1a:9d:44:40:a2:c2:e0:cd:
a6:a9:95:66:90:a4:a3:7e:33:0c:9a:09:a1:0d:d9:b0:23:d2:
d5:c5:e7:62:6d:5f:95:30:84:a1:b4:25:8b:02:9b:0e:77:52:
56:79:26:c1:3f:50:2f:66:0d:7f:57:b9:cb:63:75:30:14:9a:
6e:b1:4c:9a:6d:7a:ce:32:aa:9c:98:e0:fc:f5:3d:49:69:fb:
c4:13:5c:f3:f8:42:b3:52:92:42:b5:ca:04:da:c5:15:ce:49:
ae:91:7b:0b:bc:9d:4a:8e:a5:bf:1b:65:ce:f4:52:b5:6d:55:
70:43:7d:1d:7f:ed:dd:42:7b:56:5f:4b:9e:5b:62:d4:f7:22:
e3:78:8d:a5:40:7f:df:1d:4b:6b:cd:c6:62:6f:32:88:4e:61:
58:2d:a9:a8:d3:92:28:94:aa:8f:80:9d:be:a5:ad:dc:8b:5b:
51:3f:a5:c1:07:0d:25:f1:3c:d9:e8:76:53:bc:b0:11:5e:4c:
c7:75:c7:a6:98:d6:dc:2a:11:d6:0f:a2:d5:24:4f:03:92:c9:
49:d3:99:98:5e:b3:4d:f0:cb:6d:eb:20:d7:96:94:09:ff:36:
b6:68:e6:91:88:cc:fe:4a:be:00:22:34:4b:c5:18:84:45:99:
d6:f1:75:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net