Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/Sc7JHWb_tMP6uJxPYkNpThbjNDU.roa
File: Sc7JHWb_tMP6uJxPYkNpThbjNDU.roa (raw, json)
Hash identifier: ygms5V7hejKGNPYpu5Z6uiS0KL6mUEHDvYNptumpnIE=
Subject key identifier: 49:CE:C9:1D:66:FF:B4:C3:FA:B8:9C:4F:62:43:69:4E:16:E3:34:35
Certificate issuer: /CN=ab27ed1cea4321c49c3ca10f3affafdbdad532c2
Certificate serial: 019624336CD171ADDADE9073CFDCBB457A81
Authority key identifier: AB:27:ED:1C:EA:43:21:C4:9C:3C:A1:0F:3A:FF:AF:DB:DA:D5:32:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyftHOpDIcScPKEPOv-v29rVMsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/Sc7JHWb_tMP6uJxPYkNpThbjNDU.roa
Signing time: Fri 11 Apr 2025 09:34:31 +0000
ROA not before: Fri 11 Apr 2025 09:34:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202870
IP address blocks: 5.152.128.0/22 maxlen: 24
45.133.154.0/23 maxlen: 24
104.167.28.0/22 maxlen: 24
185.152.44.0/22 maxlen: 24
2a07:7e80::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:33:6c:d1:71:ad:da:de:90:73:cf:dc:bb:45:7a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab27ed1cea4321c49c3ca10f3affafdbdad532c2
Validity
Not Before: Apr 11 09:34:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49cec91d66ffb4c3fab89c4f6243694e16e33435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c3:68:6a:79:e4:33:76:40:98:7b:a3:fb:a6:
d1:0c:a7:cb:7a:2f:98:55:2d:70:13:d1:3a:04:af:
d9:7f:d0:39:ba:5c:ab:85:40:93:1a:2b:ff:cd:5f:
7b:e9:65:c9:f6:a3:a6:30:64:a2:78:d8:ad:d7:39:
3e:74:40:c2:24:a2:ab:63:ee:83:7d:0d:5e:b5:22:
53:d3:ca:49:c2:52:f6:03:fb:e9:b6:dc:88:ed:0d:
fd:2c:71:30:66:00:89:dd:5b:b1:58:aa:da:97:a8:
49:df:ff:26:14:e6:f6:fd:f6:45:6b:4f:64:de:13:
11:39:da:c3:89:2d:14:e1:e0:50:38:a3:ed:30:bb:
a5:ad:79:f6:fa:f0:a1:16:43:49:ea:f2:1c:48:33:
4f:32:1f:4d:d4:04:d5:8d:27:44:07:a3:af:ee:61:
6a:86:06:d3:2e:64:7c:79:8c:74:53:7b:e7:ff:cc:
df:64:49:76:31:08:ec:47:97:bd:1b:15:f4:5f:2e:
7b:10:08:66:f6:a2:7a:9d:44:b7:29:50:98:c9:3b:
f0:8e:cd:29:71:91:f4:67:07:0e:40:92:d7:6c:c1:
64:ba:53:e3:63:b0:ea:89:14:34:ec:01:94:79:4e:
df:88:08:c7:ea:d1:ca:9b:e9:ba:ae:65:1f:85:c3:
57:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CE:C9:1D:66:FF:B4:C3:FA:B8:9C:4F:62:43:69:4E:16:E3:34:35
X509v3 Authority Key Identifier:
keyid:AB:27:ED:1C:EA:43:21:C4:9C:3C:A1:0F:3A:FF:AF:DB:DA:D5:32:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyftHOpDIcScPKEPOv-v29rVMsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/Sc7JHWb_tMP6uJxPYkNpThbjNDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/qyftHOpDIcScPKEPOv-v29rVMsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.128.0/22
45.133.154.0/23
104.167.28.0/22
185.152.44.0/22
IPv6:
2a07:7e80::/29
Signature Algorithm: sha256WithRSAEncryption
18:b1:86:cb:6c:51:23:ff:c6:ee:ca:33:00:95:0c:3c:55:75:
ba:95:9c:a2:e9:01:61:78:80:82:ce:40:f9:7a:5a:fa:71:69:
dd:40:aa:1a:cd:4f:3b:4d:1a:28:05:74:42:fd:5a:ae:77:07:
2b:0c:09:c0:04:d8:fe:6a:47:0f:79:c6:83:f4:f6:49:a4:ae:
47:4a:ae:16:c6:1c:68:78:ce:18:f9:1c:f3:31:5f:f8:7d:73:
7b:e1:0c:ef:b0:2a:00:fc:60:ec:70:54:a9:04:cd:11:e1:04:
7b:a6:b5:bc:05:b7:05:70:80:48:8a:ab:24:dc:6a:ba:fe:ea:
55:a8:c6:10:b4:82:0c:44:48:cf:b7:6c:44:bf:dc:bc:f1:b5:
5f:e3:9e:d1:1c:e4:16:43:9b:ec:d5:4d:b4:76:5e:dd:c1:98:
fe:8b:6a:0d:6a:40:2d:9b:b5:c2:a8:7e:1f:2c:cd:1e:3e:5b:
0a:7f:5a:77:28:5b:28:68:58:ca:9e:29:42:c1:54:83:49:09:
91:61:39:2d:93:69:9e:5b:0f:67:32:23:f5:8a:a9:b7:46:76:
e3:1d:dd:1b:85:4e:93:b3:31:6a:6a:e7:ec:fe:f8:a2:98:f2:
c2:27:a1:7f:82:a2:22:0b:bf:a6:6a:02:1c:ec:1e:9f:91:d0:
e4:5f:50:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net