Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/6kgMCA_yg3nxvdWkonLmiL8us10.roa
File: 6kgMCA_yg3nxvdWkonLmiL8us10.roa (raw, json)
Hash identifier: Rw/PVOBSR56XgIYCXH0ZrGAd8VZfvOELoAhjhJknHmg=
Subject key identifier: EA:48:0C:08:0F:F2:83:79:F1:BD:D5:A4:A2:72:E6:88:BF:2E:B3:5D
Certificate issuer: /CN=1319f052bc9e7284888074390c9d0bc127606692
Certificate serial: 019424447DBC21FB5C78C01E7393BF95D097
Authority key identifier: 13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/6kgMCA_yg3nxvdWkonLmiL8us10.roa
Signing time: Wed 01 Jan 2025 23:47:35 +0000
ROA not before: Wed 01 Jan 2025 23:47:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1897
IP address blocks: 88.157.0.0/16 maxlen: 16
193.126.0.0/16 maxlen: 16
194.79.64.0/19 maxlen: 19
195.23.0.0/16 maxlen: 16
212.0.160.0/19 maxlen: 19
213.205.64.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:7d:bc:21:fb:5c:78:c0:1e:73:93:bf:95:d0:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1319f052bc9e7284888074390c9d0bc127606692
Validity
Not Before: Jan 1 23:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ea480c080ff28379f1bdd5a4a272e688bf2eb35d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:5f:25:dd:1a:42:25:17:2d:83:ea:0e:f0:
72:b4:a9:e7:f4:03:b9:f1:60:17:d4:72:a9:d4:cf:
eb:b6:75:02:b4:1d:f0:54:3b:86:4e:f4:2d:3e:92:
da:0f:2a:65:39:ef:85:46:c1:69:41:57:36:03:e5:
e5:d4:80:f5:6d:f6:0c:8e:a5:af:63:77:07:f5:d3:
b8:dd:93:5b:0d:50:90:7f:ae:41:64:90:8c:f9:c6:
53:9b:cb:8c:db:9a:6f:0b:c8:77:4d:af:8a:90:74:
6b:68:2b:1f:c7:9f:e4:f8:31:bb:fa:50:f0:bc:c6:
0e:9d:a1:af:74:fb:44:e2:5d:38:18:27:8d:88:d4:
4b:30:c9:d0:91:88:cd:a5:eb:bc:1e:a8:92:d3:26:
a1:fe:5b:04:9d:ce:98:5b:59:8b:e9:b0:38:76:75:
1d:99:69:23:db:0d:9d:be:f2:88:ae:97:3c:08:55:
70:c1:75:4c:70:a7:82:80:e3:dd:5d:1d:88:7e:53:
c4:46:03:dc:31:9c:85:bc:a1:9b:fb:3c:5d:0d:f0:
40:83:48:ba:df:8d:3d:83:5d:c0:7b:07:da:2f:ce:
0c:00:99:43:55:88:5d:e8:90:4a:fc:c3:92:84:e9:
37:ea:1a:cc:b5:4e:c9:e7:c5:98:3b:a0:d7:a9:1e:
af:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:48:0C:08:0F:F2:83:79:F1:BD:D5:A4:A2:72:E6:88:BF:2E:B3:5D
X509v3 Authority Key Identifier:
keyid:13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/6kgMCA_yg3nxvdWkonLmiL8us10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/ExnwUryecoSIgHQ5DJ0LwSdgZpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.157.0.0/16
193.126.0.0/16
194.79.64.0/19
195.23.0.0/16
212.0.160.0/19
213.205.64.0/19
Signature Algorithm: sha256WithRSAEncryption
52:21:59:d2:27:05:96:0c:02:5a:63:cc:b2:df:35:ca:a1:eb:
d1:62:c7:e0:c5:34:e1:38:2c:60:19:36:ec:2c:0e:b4:17:5c:
83:8a:bb:d7:c3:b6:67:8f:cf:91:69:83:ec:ab:c3:0e:df:d7:
a1:a8:c2:0e:64:a2:c0:89:5a:32:25:9e:27:77:d5:e8:d6:c7:
60:e0:1d:1a:e9:39:41:fa:52:71:75:b0:20:9b:84:65:15:65:
6d:e7:83:64:09:e9:c6:5b:95:be:9a:f5:83:1d:42:17:1f:5e:
c8:0a:27:70:1d:55:5b:2b:9a:00:27:b2:44:8c:60:24:5e:d6:
c0:88:3f:a7:e1:f9:77:79:3d:c3:87:5f:95:04:42:c8:d6:5b:
9b:63:88:17:2e:97:10:79:02:a9:1a:0a:99:8a:05:d8:86:78:
a5:2e:7a:34:2f:b8:5c:ee:61:49:51:d0:f1:3c:3e:b7:ce:22:
72:7c:d6:b1:3a:8f:13:f9:7b:7d:60:48:85:7e:5f:be:b6:1c:
3a:48:97:29:1f:7a:d4:5f:6f:fc:53:ad:85:ee:89:16:03:34:
0b:b7:3a:a1:13:3e:a3:48:b2:f6:5c:34:d0:47:91:71:8a:a2:
38:2d:b7:e2:83:21:3e:a6:dd:b3:37:2f:b5:8e:f0:4c:66:dc:
c9:85:c2:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net