Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa
File: bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa (raw, json)
Hash identifier: /9wCX+4PJTuFTnMcFlhOot3PdJrbFSkbu3ySPd314JY=
Subject key identifier: 6E:CD:47:60:4E:47:A6:67:D1:0D:ED:48:59:15:A5:03:0E:3F:61:B4
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 01961DFE10E97D1F2962412CC5CFCCA84D52
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa
Signing time: Thu 10 Apr 2025 04:38:31 +0000
ROA not before: Thu 10 Apr 2025 04:38:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48095
IP address blocks: 77.83.164.0/23 maxlen: 23
77.83.166.0/23 maxlen: 23
80.65.220.0/22 maxlen: 22
185.228.216.0/22 maxlen: 22
194.15.104.0/23 maxlen: 23
194.15.106.0/23 maxlen: 23
195.242.208.0/22 maxlen: 22
212.115.60.0/23 maxlen: 23
212.115.62.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1d:fe:10:e9:7d:1f:29:62:41:2c:c5:cf:cc:a8:4d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Apr 10 04:38:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ecd47604e47a667d10ded485915a5030e3f61b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:29:a8:66:17:86:6c:64:01:98:6f:f7:57:08:
fd:1f:62:7b:73:50:5d:64:62:b5:06:11:ec:38:56:
90:fa:8d:c6:66:b7:3c:de:dd:04:8d:fe:9c:c1:d9:
57:6e:c7:9e:d5:4f:2c:5b:89:98:6a:63:47:15:db:
55:24:97:60:46:f6:26:26:ab:ba:1d:5c:aa:54:8d:
7b:0c:9b:8a:20:b9:28:d4:22:53:c0:50:06:15:0b:
ba:19:1d:5d:b9:ca:ca:e0:02:52:98:2c:aa:7d:12:
02:84:84:5e:b9:01:22:85:da:88:d0:10:69:a9:d8:
4c:6c:66:83:43:f5:16:01:2f:11:f3:2c:8c:0f:1c:
e8:9f:3d:91:2c:8d:c6:cd:39:6c:64:ee:70:ad:30:
bb:84:4d:4e:c4:e3:65:74:c4:70:9c:8f:1a:79:b0:
a9:f9:cf:c5:f4:aa:6b:74:c8:0b:3e:1f:12:fb:da:
54:33:fe:d9:01:25:91:fe:30:c5:af:53:2d:60:ba:
30:06:3f:be:ea:92:5c:4a:ce:f4:aa:4e:3c:b1:e6:
14:b7:b0:a1:ea:01:8a:86:68:8c:ca:33:c2:b8:6d:
b5:f3:3c:29:8a:6c:8e:ce:b7:30:af:61:3e:73:b5:
62:e4:59:c7:eb:94:6e:83:f4:c9:f4:28:f6:d7:fe:
62:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:CD:47:60:4E:47:A6:67:D1:0D:ED:48:59:15:A5:03:0E:3F:61:B4
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.164.0/22
80.65.220.0/22
185.228.216.0/22
194.15.104.0/22
195.242.208.0/22
212.115.60.0/22
Signature Algorithm: sha256WithRSAEncryption
21:29:95:9f:2e:63:a7:fc:50:e0:a8:aa:3c:71:e7:a1:2c:46:
c0:2c:30:67:e8:4f:03:66:c3:84:61:e0:1d:73:98:10:27:07:
f0:45:bd:c6:02:08:a3:84:10:d1:08:c2:22:b9:fd:c1:d4:21:
2a:91:d7:b3:12:7d:95:1d:a7:60:77:21:99:b2:4c:cd:37:33:
24:77:d7:f8:be:49:46:2a:7b:d9:b8:58:6f:71:97:2e:6b:4f:
a7:97:c3:b1:f0:23:5c:fc:1a:c2:83:59:6b:75:5f:cf:9a:3e:
06:c5:f7:44:51:ee:cd:f4:d5:d1:99:e9:04:6e:ea:96:f2:49:
28:7c:a0:99:38:08:11:0d:b9:6e:94:b8:1a:4f:da:72:a5:56:
1e:b8:31:23:8b:14:c0:7f:1e:91:dd:40:f2:7a:a2:a9:18:14:
a4:de:83:2f:70:f8:c3:5a:39:1a:12:d8:61:34:5c:56:87:25:
bb:9c:d5:6c:18:9a:42:27:59:6b:ac:43:dc:f5:ad:05:85:5f:
16:80:39:fc:6f:00:5b:f2:db:af:44:3e:8a:c5:83:22:ea:85:
f6:1f:6e:ce:a2:b2:6c:de:96:11:e0:1e:f1:18:ad:c8:c3:0f:
1d:3e:96:cb:3f:d1:79:5d:2f:42:c6:8f:80:8e:27:5b:5f:71:
6b:73:0b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:40 2025 by rpki-client on console.sobornost.net