Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/fEhR-lCUkZVEdMm1RQIIE8pgNCo.roa
File: fEhR-lCUkZVEdMm1RQIIE8pgNCo.roa (raw, json)
Hash identifier: o0vAsrKSY0T4tLyGeQ8NwF7vCi/bDXk5djLv/i3XQL0=
Subject key identifier: 7C:48:51:FA:50:94:91:95:44:74:C9:B5:45:02:08:13:CA:60:34:2A
Certificate issuer: /CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Certificate serial: 019423D73AFA3BD8017671F2979CDBBE4075
Authority key identifier: 78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/fEhR-lCUkZVEdMm1RQIIE8pgNCo.roa
Signing time: Wed 01 Jan 2025 21:48:15 +0000
ROA not before: Wed 01 Jan 2025 21:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25355
IP address blocks: 82.144.64.0/19 maxlen: 29
82.144.64.0/24 maxlen: 24
82.144.65.0/24 maxlen: 24
82.144.66.0/24 maxlen: 24
82.144.67.0/24 maxlen: 24
82.144.68.0/24 maxlen: 24
82.144.69.0/24 maxlen: 24
82.144.70.0/24 maxlen: 24
82.144.71.0/24 maxlen: 24
82.144.72.0/24 maxlen: 24
82.144.73.0/24 maxlen: 24
82.144.74.0/24 maxlen: 24
82.144.75.0/24 maxlen: 24
82.144.76.0/24 maxlen: 24
82.144.77.0/24 maxlen: 24
82.144.78.0/24 maxlen: 24
82.144.79.0/24 maxlen: 24
82.144.80.0/24 maxlen: 24
82.144.81.0/24 maxlen: 24
82.144.82.0/24 maxlen: 24
82.144.83.0/24 maxlen: 24
82.144.84.0/24 maxlen: 24
82.144.85.0/24 maxlen: 24
82.144.86.0/24 maxlen: 24
82.144.87.0/24 maxlen: 24
82.144.88.0/24 maxlen: 24
82.144.89.0/24 maxlen: 24
82.144.90.0/24 maxlen: 24
82.144.91.0/24 maxlen: 24
82.144.92.0/24 maxlen: 24
82.144.93.0/24 maxlen: 24
82.144.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:3a:fa:3b:d8:01:76:71:f2:97:9c:db:be:40:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Validity
Not Before: Jan 1 21:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c4851fa509491954474c9b545020813ca60342a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:41:53:49:6b:61:09:0a:3e:f6:20:d3:f0:e1:
51:de:bc:5b:3c:1a:41:87:73:b1:f9:5d:06:f7:d3:
45:9c:38:59:43:43:56:e4:c9:5f:77:bb:9c:30:f6:
e9:96:ab:16:21:9c:d5:fa:19:af:79:5d:19:f6:1b:
e3:82:84:62:b5:53:cb:32:95:ca:9c:af:64:91:da:
0a:de:89:1a:c8:09:84:65:e0:a7:9d:21:c2:43:e3:
f2:fd:5e:73:22:ba:fb:d6:b5:c3:de:4e:da:c7:fb:
da:ef:96:0e:51:fe:0b:db:01:09:ce:c4:24:f0:0b:
96:62:44:97:c9:1f:27:26:47:4c:ba:d4:93:06:f9:
9b:bb:06:4c:55:96:68:d2:f6:76:ec:d0:32:50:3d:
aa:cc:08:05:d4:0b:c9:f8:31:c3:50:d8:7a:25:f1:
93:4b:c1:8c:5d:05:b2:5a:f6:a6:15:ed:5b:13:9f:
19:38:e6:15:22:df:49:6f:44:2b:85:91:49:ca:84:
f9:d0:d9:f8:19:92:92:e2:c1:ed:c0:71:96:03:98:
bf:ed:28:d2:a4:64:ac:f4:3c:c1:59:5b:02:e3:2b:
02:e3:39:e9:57:5d:e8:36:fe:1c:24:0e:fd:ab:4a:
49:15:9c:cb:6a:3c:6c:22:5b:0d:38:d8:14:7c:29:
a0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:48:51:FA:50:94:91:95:44:74:C9:B5:45:02:08:13:CA:60:34:2A
X509v3 Authority Key Identifier:
keyid:78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/fEhR-lCUkZVEdMm1RQIIE8pgNCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/eLHb4vrypuffpXTOVRkJYwFfHFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.64.0/19
Signature Algorithm: sha256WithRSAEncryption
34:12:ed:70:dd:dd:e3:60:d1:26:d4:24:8b:06:84:14:6e:04:
c9:f6:b9:fc:98:e6:24:7f:fc:24:e0:5a:27:68:8c:5c:d3:d8:
ce:47:5f:cc:c4:b1:8b:4f:e5:2a:25:48:9f:2d:68:50:71:9b:
a8:d0:dc:4c:39:43:71:10:08:86:10:bf:16:2c:67:40:a2:2f:
4f:59:2c:bf:bb:36:b8:14:b1:99:33:e6:7a:74:b8:dc:d1:0f:
ee:57:46:1a:14:ff:28:e7:7a:df:57:1c:0e:ae:89:40:18:e0:
e5:17:db:0b:d7:b2:d6:3b:67:93:bd:39:0e:73:38:7f:cc:aa:
f6:35:1f:5b:12:1a:eb:b1:5c:89:39:94:1c:87:9d:f4:cf:0d:
fb:12:d5:e3:37:5e:ea:58:1f:3b:77:d9:f9:33:54:0e:b5:0e:
c6:73:a4:b9:70:ea:8e:58:70:37:d0:c9:d6:e2:7e:e2:64:d7:
e4:aa:db:ab:13:3a:a5:a4:c5:eb:94:fd:88:d2:86:e6:d3:30:
91:17:1e:ed:90:10:40:67:17:ef:2f:2c:90:54:1a:ad:1d:76:
13:ab:39:4b:f3:3d:f2:55:f1:47:a2:3e:18:9b:1b:c4:80:16:
d0:e8:25:9a:87:8c:5c:91:0a:bf:cc:38:c3:be:3f:74:79:af:
8a:c9:8e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net