Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/6I5lT77tINLa2tAFzIKdxBUfZOY.roa
File: 6I5lT77tINLa2tAFzIKdxBUfZOY.roa (raw, json)
Hash identifier: XJgZ7FSKAHc+Qdclhb6uD5MNen9bjsZ0E6qGnEqSr1g=
Subject key identifier: E8:8E:65:4F:BE:ED:20:D2:DA:DA:D0:05:CC:82:9D:C4:15:1F:64:E6
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 0195F1D56A89A172FF941B507D8904B75ED1
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/6I5lT77tINLa2tAFzIKdxBUfZOY.roa
Signing time: Tue 01 Apr 2025 14:50:50 +0000
ROA not before: Tue 01 Apr 2025 14:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5650
IP address blocks: 64.43.104.0/22 maxlen: 22
64.43.112.0/22 maxlen: 22
64.43.124.0/22 maxlen: 22
77.36.120.0/22 maxlen: 22
91.245.184.0/22 maxlen: 22
176.102.120.0/21 maxlen: 21
176.102.120.0/22 maxlen: 22
176.102.124.0/22 maxlen: 22
176.103.240.0/21 maxlen: 21
176.103.240.0/22 maxlen: 22
176.103.244.0/22 maxlen: 22
176.116.232.0/22 maxlen: 22
178.212.184.0/21 maxlen: 21
178.212.184.0/22 maxlen: 22
178.212.188.0/22 maxlen: 22
185.55.4.0/22 maxlen: 22
185.55.4.0/23 maxlen: 23
185.55.6.0/23 maxlen: 23
185.55.140.0/22 maxlen: 22
185.55.140.0/23 maxlen: 23
185.55.142.0/23 maxlen: 23
193.36.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f1:d5:6a:89:a1:72:ff:94:1b:50:7d:89:04:b7:5e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Apr 1 14:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e88e654fbeed20d2dadad005cc829dc4151f64e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:44:a4:bf:49:11:66:77:5c:e6:7a:10:04:0a:
eb:40:ef:0c:0b:6b:79:c4:48:6d:c3:d0:b9:96:59:
10:e5:2d:9b:d9:fb:38:df:f0:6a:c9:b1:11:0f:71:
90:06:be:03:af:bb:0f:e4:5a:3e:26:67:1e:3a:8f:
01:67:1f:98:95:02:bd:25:4c:78:9e:5d:14:2b:cd:
ef:cb:54:8f:e3:66:75:ef:6b:ce:fe:bc:d6:19:ec:
de:99:2b:ef:85:de:7d:82:ab:b8:f9:ec:4f:a5:e1:
5b:40:92:51:e7:c1:fa:43:f3:77:e6:fa:9d:c3:17:
1f:68:93:38:8d:82:bd:64:92:90:33:41:91:cd:b7:
d1:bf:14:18:a8:ec:eb:55:0d:24:87:dd:ec:51:16:
eb:df:30:b2:77:03:3e:30:38:18:9d:6c:5c:10:3b:
d1:b4:21:a0:b6:bd:39:37:94:76:1a:0b:de:90:b7:
a0:65:3e:a4:77:fd:77:4e:a4:30:cf:a8:18:b1:68:
2f:97:2b:14:9e:87:7c:a5:ca:d9:bd:5a:eb:e1:e6:
62:7f:e4:5e:c4:8a:2b:41:0f:89:c9:56:7b:ab:64:
55:40:ea:58:7f:62:71:7d:0c:c9:61:93:3b:f3:1e:
9a:b2:83:f4:a7:b5:f1:c6:1c:e3:89:e7:e2:61:66:
e0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:8E:65:4F:BE:ED:20:D2:DA:DA:D0:05:CC:82:9D:C4:15:1F:64:E6
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/6I5lT77tINLa2tAFzIKdxBUfZOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.104.0/22
64.43.112.0/22
64.43.124.0/22
77.36.120.0/22
91.245.184.0/22
176.102.120.0/21
176.103.240.0/21
176.116.232.0/22
178.212.184.0/21
185.55.4.0/22
185.55.140.0/22
193.36.204.0/22
Signature Algorithm: sha256WithRSAEncryption
63:6f:9a:54:ef:8e:65:0e:7a:d3:cd:36:48:e4:83:b1:d5:bb:
3b:7a:78:8f:81:a7:77:c0:56:59:17:4b:87:df:81:6f:b8:6f:
14:9c:c1:fa:3e:de:93:60:19:8d:b7:ab:07:7f:2b:c8:89:f0:
d5:40:5d:97:9f:67:03:33:66:68:23:8e:1f:d0:56:85:ab:8c:
25:d8:49:49:b1:7b:69:39:f0:e4:91:5c:6c:7b:d5:16:80:37:
64:89:45:af:77:15:56:a9:5f:f3:d4:92:a2:cd:fb:f4:df:52:
95:53:5d:fe:b7:6d:de:fb:46:a2:e3:a5:4a:72:b3:e8:dc:76:
23:cd:43:70:e2:25:7c:0f:fa:d1:37:3c:68:5b:ef:45:f5:bf:
7a:fb:e7:c1:a7:77:44:06:8c:84:65:25:1c:fe:bb:dd:07:72:
85:1a:45:c2:c7:cc:86:02:ca:b2:7b:7a:71:57:1b:50:d0:df:
a0:22:8a:81:a2:2c:cc:5a:fe:4e:33:50:58:ef:b1:1e:0c:18:
94:91:51:77:17:27:b7:86:cb:2e:b5:a2:10:31:92:fc:35:d9:
35:41:af:c7:8c:7a:a2:58:e2:55:68:ae:d8:cf:c1:dc:e0:6f:
4e:f1:d2:92:3b:27:2e:48:37:69:7e:e7:7f:6b:89:c1:8b:8b:
af:c0:1c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net