Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/y4cp1ASnLcJH5udbXopF_XnizNI.roa
File: y4cp1ASnLcJH5udbXopF_XnizNI.roa (raw, json)
Hash identifier: I5zVB/KKec09IiryLKT37MmAj8PMpIGzEiAX8Dl7p4M=
Subject key identifier: CB:87:29:D4:04:A7:2D:C2:47:E6:E7:5B:5E:8A:45:FD:79:E2:CC:D2
Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Certificate serial: 01953899DE6C6307DCAE764041B324B30B93
Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/y4cp1ASnLcJH5udbXopF_XnizNI.roa
Signing time: Mon 24 Feb 2025 15:36:02 +0000
ROA not before: Mon 24 Feb 2025 15:36:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29551
IP address blocks: 88.214.25.0/24 maxlen: 24
91.228.101.0/24 maxlen: 24
193.24.208.0/22 maxlen: 22
193.24.208.0/23 maxlen: 23
193.24.210.0/23 maxlen: 23
194.24.160.0/23 maxlen: 23
2001:67c:2c58::/48 maxlen: 48
2a00:1910::/32 maxlen: 32
2a00:1911::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:38:99:de:6c:63:07:dc:ae:76:40:41:b3:24:b3:0b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Validity
Not Before: Feb 24 15:36:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb8729d404a72dc247e6e75b5e8a45fd79e2ccd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4d:f4:f6:6b:5e:35:da:ae:c5:6f:43:f7:60:
3a:ce:ba:df:39:58:1b:33:05:27:e0:61:59:5e:22:
8d:2d:77:c9:50:9e:df:fc:a8:1d:8e:59:19:61:bc:
da:8a:1b:36:f4:21:8e:10:ca:fc:00:ce:c5:20:35:
b1:77:85:45:04:b2:38:15:e2:89:fd:62:78:74:3b:
7c:4b:0f:d6:67:e3:aa:8f:1e:fe:02:d0:85:89:b1:
6a:06:fa:17:9f:da:12:10:13:a2:89:75:b6:86:1d:
f1:8c:93:70:8d:1d:40:8f:02:f1:82:28:32:98:69:
b9:e0:f8:10:d6:bd:28:63:dd:08:e7:a5:92:64:c5:
e5:ed:65:b1:18:46:60:63:b5:e6:e1:1a:48:59:e7:
ce:9e:69:e7:c5:95:2a:11:8c:02:6f:c7:69:20:62:
7c:6c:80:ea:1f:8e:3f:1c:46:e0:5e:3b:a2:87:47:
3b:e7:20:da:90:72:cf:37:d3:ba:c0:4a:cf:1a:e4:
21:e8:76:76:7c:7f:56:20:64:cc:a4:e5:37:41:e2:
71:93:d6:07:b5:12:b4:3d:83:7d:0b:d5:af:a1:c2:
44:b2:34:0c:a8:4c:a0:c7:d9:46:39:99:41:0b:27:
e9:12:9d:a7:67:c8:ae:ad:1f:3d:b4:62:b6:73:e5:
4f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:87:29:D4:04:A7:2D:C2:47:E6:E7:5B:5E:8A:45:FD:79:E2:CC:D2
X509v3 Authority Key Identifier:
keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/y4cp1ASnLcJH5udbXopF_XnizNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.25.0/24
91.228.101.0/24
193.24.208.0/22
194.24.160.0/23
IPv6:
2001:67c:2c58::/48
2a00:1910::/31
Signature Algorithm: sha256WithRSAEncryption
01:ad:e9:eb:02:59:a7:4b:97:2e:55:4a:f2:ba:39:a7:98:13:
6c:63:c6:92:c9:b9:c5:04:04:dd:af:79:e0:74:16:87:4b:a7:
7b:dc:53:71:35:89:b3:73:94:5e:0e:8c:33:f6:72:04:ea:f5:
69:4e:02:cc:c9:26:67:01:db:7b:a1:2d:e6:81:78:3e:ff:b1:
60:e8:79:4b:44:15:a3:56:5e:e5:de:47:09:b1:31:d2:a3:54:
ec:b1:f9:60:12:a8:ec:5b:8d:b8:26:41:d4:50:9f:b1:59:5a:
08:8f:2e:69:3b:f2:24:d5:43:2a:55:ff:0b:36:c0:46:66:44:
db:16:0a:22:93:b6:83:10:18:f3:85:41:b8:b8:b8:d0:59:28:
b3:58:6f:ac:6c:73:c7:f7:f3:57:47:cf:8f:22:3a:0e:93:92:
ea:69:05:59:9c:7f:04:1c:93:68:c4:50:bb:b7:41:85:cb:83:
a8:79:2f:96:60:ad:05:c1:6f:4d:26:31:7c:96:9e:cf:d8:2a:
7c:aa:c4:4f:07:3e:fe:f2:89:5d:05:40:93:4d:11:80:df:14:
57:b0:f9:79:df:30:18:a1:ec:89:a0:45:53:68:47:d9:ef:c2:
08:de:7f:45:e0:34:55:40:56:fc:84:2e:9b:b0:80:90:b1:44:
a9:d6:39:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:48:21 2025 by rpki-client on console.sobornost.net