Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/vvNRTPRqU8Pnch_p0B0gqgkil_Q.roa
File: vvNRTPRqU8Pnch_p0B0gqgkil_Q.roa (raw, json)
Hash identifier: nLSnGecWyvHzo3G0jRopUHVVK/4X1Sw9XUMyVphgWSE=
Subject key identifier: BE:F3:51:4C:F4:6A:53:C3:E7:72:1F:E9:D0:1D:20:AA:09:22:97:F4
Certificate issuer: /CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Certificate serial: 019424B3CE233ED0BE39E98BE4189006DBD1
Authority key identifier: E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/vvNRTPRqU8Pnch_p0B0gqgkil_Q.roa
Signing time: Thu 02 Jan 2025 01:49:10 +0000
ROA not before: Thu 02 Jan 2025 01:49:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50057
IP address blocks: 185.161.112.0/24 maxlen: 24
185.161.113.0/24 maxlen: 24
185.161.114.0/24 maxlen: 24
185.161.115.0/24 maxlen: 24
193.150.66.0/24 maxlen: 24
2a07:c200::/32 maxlen: 32
2a07:c201::/32 maxlen: 32
2a07:c202::/32 maxlen: 32
2a07:c203::/32 maxlen: 32
2a07:c204::/32 maxlen: 32
2a07:c205::/32 maxlen: 32
2a07:c206::/32 maxlen: 32
2a07:c207::/32 maxlen: 32
2a0f:6400::/32 maxlen: 32
2a0f:6401::/32 maxlen: 32
2a0f:6402::/32 maxlen: 32
2a0f:6403::/32 maxlen: 32
2a0f:6404::/32 maxlen: 32
2a0f:6405::/32 maxlen: 32
2a0f:6406::/32 maxlen: 32
2a0f:6407::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ce:23:3e:d0:be:39:e9:8b:e4:18:90:06:db:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Validity
Not Before: Jan 2 01:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bef3514cf46a53c3e7721fe9d01d20aa092297f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a7:83:9b:37:a3:0d:0e:c9:21:61:3e:34:80:
08:5e:f1:56:66:7a:33:2c:92:85:f3:0a:81:ef:93:
a6:c9:f8:18:13:b3:c1:fc:80:fa:a7:cc:36:66:10:
53:98:22:c1:dd:89:f4:a6:06:81:61:58:fc:b3:7f:
66:36:2d:6a:21:04:87:1a:85:35:b6:c4:cf:a5:14:
82:fa:71:62:e1:3d:8c:6d:42:14:e9:6d:63:b8:5a:
38:82:be:71:b1:e9:fe:f3:f3:af:ea:9c:8f:63:7e:
a3:bd:b7:a7:1b:67:db:e1:ed:ca:00:a9:93:78:bb:
14:ca:09:f4:7c:91:b8:ce:f7:18:15:fe:15:c1:e5:
02:e8:81:87:de:ce:59:21:56:4b:7e:bc:5d:3d:81:
88:7f:41:cc:c1:96:5f:73:b2:42:dc:88:0b:a9:2b:
6c:f5:1c:f3:5b:cc:51:f1:85:b7:cd:f0:e9:cb:c1:
bc:12:50:36:ae:64:e1:96:fe:28:9f:d2:b9:3a:27:
8b:c2:d6:29:2c:02:8e:22:80:b8:e5:3d:f0:01:64:
f1:b5:01:85:4a:f5:31:9a:95:16:1b:56:ae:24:a6:
9d:5c:d3:76:19:19:5d:6f:d0:56:e6:ad:bc:c6:5c:
65:f3:22:70:e0:80:fc:cd:5f:a5:cc:6a:d4:bf:ec:
31:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F3:51:4C:F4:6A:53:C3:E7:72:1F:E9:D0:1D:20:AA:09:22:97:F4
X509v3 Authority Key Identifier:
keyid:E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/vvNRTPRqU8Pnch_p0B0gqgkil_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.112.0/22
193.150.66.0/24
IPv6:
2a07:c200::/29
2a0f:6400::/29
Signature Algorithm: sha256WithRSAEncryption
5f:4d:ad:6f:b2:93:4b:a1:45:fa:b7:e7:30:63:49:dd:1a:90:
6d:2e:ff:0e:b4:d4:0f:0f:9d:1c:ed:3f:ad:19:b4:cf:7e:d1:
b0:54:da:56:2d:d8:ed:c9:98:b6:3c:13:d4:fb:01:07:e9:32:
28:64:66:21:50:5c:59:ef:5f:42:6c:5c:bb:91:94:af:89:e6:
55:ac:e4:ec:9e:fb:78:b7:b9:b8:8f:24:a7:e8:66:d6:77:1d:
8f:61:d7:ef:14:21:16:5c:61:5c:4b:77:de:be:79:a6:96:f3:
2e:c3:88:8b:bf:56:96:6c:db:78:71:ed:1c:f2:1c:a5:8b:a8:
e2:e8:d4:b7:c2:2c:16:74:1f:53:22:9c:e0:01:50:01:7c:40:
7c:ad:5d:62:4a:46:93:3b:21:5d:19:57:0d:38:32:00:6e:a9:
8a:02:25:fd:07:cd:08:a2:be:46:6e:79:8f:97:72:4d:21:ca:
76:13:ea:84:c1:63:51:b0:e9:52:1c:14:83:4e:1c:c7:df:42:
dd:4b:cf:3b:c5:a6:5a:3e:de:2a:37:7c:b1:c2:92:4e:1a:05:
47:e8:51:2d:56:99:4e:01:ad:b3:c8:b4:0e:aa:aa:fb:d2:b2:
de:10:95:cf:07:72:1d:70:eb:09:e3:8c:28:71:09:18:0b:2b:
1b:87:e4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net