Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/1-GD2nsdz766uiKd1MTwnY1cAKLQ.roa
File: 1-GD2nsdz766uiKd1MTwnY1cAKLQ.roa (raw, json)
Hash identifier: NdaepvhGF4pwe1Tt+1kTP6lm7HfWQTHyJYxXLIGTqdM=
Subject key identifier: F8:60:F6:9E:C7:73:EF:AE:AE:88:A7:75:31:3C:27:63:57:00:28:B4
Certificate issuer: /CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Certificate serial: 0194274695FE07A471F9AA07BC718A865419
Authority key identifier: 24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/1-GD2nsdz766uiKd1MTwnY1cAKLQ.roa
Signing time: Thu 02 Jan 2025 13:48:44 +0000
ROA not before: Thu 02 Jan 2025 13:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43578
IP address blocks: 77.246.176.0/24 maxlen: 24
77.246.177.0/24 maxlen: 24
77.246.178.0/24 maxlen: 24
77.246.179.0/24 maxlen: 24
77.246.180.0/24 maxlen: 24
77.246.181.0/24 maxlen: 24
77.246.182.0/24 maxlen: 24
77.246.182.128/29 maxlen: 29
77.246.183.0/24 maxlen: 24
77.246.184.0/24 maxlen: 24
77.246.185.0/24 maxlen: 24
77.246.186.0/24 maxlen: 24
77.246.186.96/27 maxlen: 27
77.246.187.0/24 maxlen: 24
77.246.188.0/24 maxlen: 24
77.246.190.0/24 maxlen: 24
77.246.190.160/27 maxlen: 27
77.246.191.0/24 maxlen: 24
185.74.80.0/24 maxlen: 24
185.74.81.0/24 maxlen: 24
2a05:4700:b::/48 maxlen: 48
2a05:4700:50::/48 maxlen: 48
2a05:4700:53::/48 maxlen: 48
2a05:4700:100::/48 maxlen: 48
2a05:4700:101::/48 maxlen: 48
2a05:4700:200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:95:fe:07:a4:71:f9:aa:07:bc:71:8a:86:54:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Validity
Not Before: Jan 2 13:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f860f69ec773efaeae88a775313c2763570028b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:01:03:ff:ed:62:db:71:62:a9:27:a6:27:39:
b8:9a:69:0b:80:89:18:20:c6:0c:06:96:b2:49:ce:
12:e3:1e:ba:10:43:11:05:37:c8:b1:42:7f:4f:73:
6a:29:b3:25:ae:5a:41:a7:98:58:dc:12:c7:ed:d3:
db:cd:77:83:4a:bd:e1:6d:a4:05:15:de:54:86:52:
b2:1d:d0:23:30:0f:af:28:4d:ef:7e:93:d6:1c:aa:
38:87:61:dd:d7:3b:4f:5f:f7:89:03:8b:40:6d:b0:
49:dc:a9:fd:d7:e7:f3:f8:f9:ec:23:c8:bf:0c:bf:
32:da:a5:3d:40:3e:5a:8d:bc:22:39:a1:50:b6:0c:
65:7a:cd:0c:ad:1c:2a:f9:8a:68:f5:b2:33:74:34:
ed:cb:e4:56:da:c0:00:f4:90:27:7f:a8:0a:fd:75:
58:a6:0d:c3:1c:d2:b7:d6:1e:d5:5f:37:93:b7:23:
49:c8:41:40:37:01:64:fb:f3:6b:f9:5c:0f:b2:06:
02:5a:5d:38:e0:f9:10:a3:9b:2d:8c:e9:28:04:dd:
cf:39:e6:87:d3:9b:dd:b0:4b:de:cf:21:c9:6e:5d:
05:5e:d8:03:dc:31:36:48:fc:88:45:fc:4f:de:0c:
50:67:a1:9a:cd:ea:f6:b7:69:7e:ab:d7:37:0a:5e:
2d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:60:F6:9E:C7:73:EF:AE:AE:88:A7:75:31:3C:27:63:57:00:28:B4
X509v3 Authority Key Identifier:
keyid:24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/1-GD2nsdz766uiKd1MTwnY1cAKLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/JACyBgYxSFins_Kpdejp2RnsdTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.176.0-77.246.188.255
77.246.190.0/23
185.74.80.0/23
IPv6:
2a05:4700:b::/48
2a05:4700:50::/48
2a05:4700:53::/48
2a05:4700:100::/47
2a05:4700:200::/48
Signature Algorithm: sha256WithRSAEncryption
1d:90:b3:2a:69:17:42:9a:35:d4:36:1e:76:50:15:76:a2:9b:
71:8b:02:5d:e2:7d:e1:0b:09:a5:10:51:6b:a2:93:d2:a9:e1:
62:0b:56:5b:e5:48:2d:8b:4b:47:91:0d:f5:e5:2a:31:44:44:
5f:f5:5f:29:8b:b4:df:a1:85:fb:f9:ae:a8:9f:a4:9d:01:9a:
56:e1:fc:15:b2:c9:a3:a3:e9:59:f9:54:2e:fd:99:b6:0a:c5:
64:47:e9:e0:0e:08:c4:dd:e8:c2:6c:ca:ed:cc:68:ff:96:ec:
e3:d0:1e:8e:ad:13:1f:81:2a:2c:17:90:ca:f8:5e:77:d6:5f:
16:42:de:eb:a8:cf:1a:37:25:71:3e:e4:23:1f:10:52:53:fe:
d4:25:e4:8e:05:3f:09:11:de:6a:c7:2c:1b:9a:29:3d:ed:52:
e5:c0:ff:29:a5:8b:46:86:c0:42:49:a4:d7:93:92:b0:70:45:
ab:d7:fc:84:18:2a:46:79:35:80:29:d5:da:b1:74:bb:3d:e1:
b6:24:89:be:9a:d4:0b:57:bb:2a:1b:fb:9b:f8:74:c9:56:ec:
1a:33:bf:50:f9:6d:d8:d5:36:85:16:a5:03:b8:36:c0:68:c1:
07:5e:27:e8:2f:b9:53:f2:78:26:ab:c9:72:f9:f7:28:01:e8:
87:35:31:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net