Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/dulLD0ENjA9tfgPr9DrSQJxWn5k.roa
File: dulLD0ENjA9tfgPr9DrSQJxWn5k.roa (raw, json)
Hash identifier: ecAhh1+SnR4Xv8G0G+2S5KTuId8TsIACx8G94ng9hIA=
Subject key identifier: 76:E9:4B:0F:41:0D:8C:0F:6D:7E:03:EB:F4:3A:D2:40:9C:56:9F:99
Certificate issuer: /CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Certificate serial: 0194266A19395870E24F6017FC0110722521
Authority key identifier: 44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/dulLD0ENjA9tfgPr9DrSQJxWn5k.roa
Signing time: Thu 02 Jan 2025 09:47:55 +0000
ROA not before: Thu 02 Jan 2025 09:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202693
IP address blocks: 80.75.220.0/24 maxlen: 24
2a06:c640::/32 maxlen: 32
2a06:c641::/32 maxlen: 32
2a06:c642::/32 maxlen: 32
2a06:c643::/32 maxlen: 32
2a06:c644::/32 maxlen: 32
2a06:c645::/32 maxlen: 32
2a06:c646::/32 maxlen: 32
2a06:c647::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:19:39:58:70:e2:4f:60:17:fc:01:10:72:25:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Validity
Not Before: Jan 2 09:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76e94b0f410d8c0f6d7e03ebf43ad2409c569f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4a:a7:00:7c:71:23:67:b5:60:ba:b3:60:86:
2a:75:1b:5a:d5:fa:19:64:3e:04:b5:bf:a7:0a:ee:
f8:8d:99:a1:76:01:d4:ca:d4:31:e8:fa:2a:db:45:
4c:a8:c5:40:5c:7a:ed:b4:47:e2:da:fd:d3:0a:f6:
78:ae:2f:a4:35:ba:38:ea:90:68:c5:9b:95:99:e1:
93:17:7f:e3:69:07:de:e8:22:1d:26:42:4f:3c:cc:
29:20:07:8a:ca:b2:04:b2:1b:a8:a8:7e:f5:28:03:
d1:07:32:63:29:2c:9a:11:44:ff:73:5d:e2:27:c7:
eb:6d:06:7b:fa:3a:17:17:c3:4c:fb:64:27:72:8b:
85:bc:d5:42:a5:38:6b:6d:84:33:00:7c:49:c9:a7:
06:01:88:4c:63:f4:ff:e2:72:96:25:8f:5e:25:9d:
81:17:e8:26:f0:7f:a0:09:71:47:3d:c4:2b:1e:52:
e6:a8:58:cf:5d:5c:60:f2:06:fb:b4:15:fd:30:af:
c8:0a:bf:5a:3e:e1:ad:4d:90:12:86:81:27:59:a3:
67:25:59:39:92:f6:b6:62:d5:01:a9:19:0f:a6:5d:
ae:4e:56:77:19:e9:36:aa:57:2e:b0:a1:c5:39:0e:
07:a7:00:a7:03:1a:a5:48:3b:67:3a:e8:cd:73:6a:
f4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E9:4B:0F:41:0D:8C:0F:6D:7E:03:EB:F4:3A:D2:40:9C:56:9F:99
X509v3 Authority Key Identifier:
keyid:44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/dulLD0ENjA9tfgPr9DrSQJxWn5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.220.0/24
IPv6:
2a06:c640::/29
Signature Algorithm: sha256WithRSAEncryption
5b:cd:04:b8:00:80:8e:27:37:65:cc:a1:3d:2c:1d:e6:e8:0d:
7b:55:4a:e5:2b:c4:86:81:47:f7:70:63:04:56:1a:e7:64:e4:
63:ff:ab:cb:c9:51:1b:86:3d:3c:0c:3e:79:56:99:e4:34:55:
e8:96:5f:49:27:66:f6:21:e2:d4:c8:50:90:81:b0:ea:64:be:
b0:12:31:47:20:38:9e:18:f2:b9:5c:3f:be:8c:bc:31:c7:8a:
6c:41:52:a1:3b:23:f1:d4:69:62:5d:3a:4c:25:57:6d:bd:a4:
f1:0a:03:a0:53:8f:fa:b3:11:38:4f:5f:bb:1b:cd:5c:3b:e1:
db:0f:36:94:8d:46:9a:54:e3:06:2c:c2:1b:b6:8d:e1:30:4f:
99:1f:bf:96:c7:cb:d0:4f:ea:0a:46:88:10:df:92:7f:dc:70:
0c:f4:bb:1d:56:7e:34:27:4d:5b:58:06:79:24:e7:71:d0:46:
80:2a:55:09:9a:84:3c:75:a4:ba:23:48:83:c6:a3:e1:4b:1a:
47:72:e5:64:28:aa:c3:8b:72:e4:e4:8b:74:87:1f:28:9d:82:
b4:be:80:6d:34:48:c4:40:5b:89:c6:1b:b0:87:95:c8:1c:27:
26:14:75:06:67:80:57:e6:9e:35:c2:3c:a9:5e:5b:dd:0d:22:
dd:5b:fd:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net