Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/fVcVxVJ7p62rticmypgxz96e8JQ.roa
File: fVcVxVJ7p62rticmypgxz96e8JQ.roa (raw, json)
Hash identifier: 0G0V21w8vjbyE9Yv5tuFynWy+aBCDfEtQfkWhN6p7OY=
Subject key identifier: 7D:57:15:C5:52:7B:A7:AD:AB:B6:27:26:CA:98:31:CF:DE:9E:F0:94
Certificate issuer: /CN=762c60af4d73725845ceaf0b7b585e7757066965
Certificate serial: 019424B3AFE6781B07F3B522E5967403139B
Authority key identifier: 76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/fVcVxVJ7p62rticmypgxz96e8JQ.roa
Signing time: Thu 02 Jan 2025 01:49:03 +0000
ROA not before: Thu 02 Jan 2025 01:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39402
IP address blocks: 91.240.80.0/22 maxlen: 22
91.240.80.0/24 maxlen: 24
91.240.81.0/24 maxlen: 24
91.240.82.0/24 maxlen: 24
91.240.83.0/24 maxlen: 24
194.246.88.0/22 maxlen: 22
194.246.88.0/24 maxlen: 24
194.246.89.0/24 maxlen: 24
194.246.90.0/24 maxlen: 24
194.246.91.0/24 maxlen: 24
2a0d:e40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:af:e6:78:1b:07:f3:b5:22:e5:96:74:03:13:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762c60af4d73725845ceaf0b7b585e7757066965
Validity
Not Before: Jan 2 01:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d5715c5527ba7adabb62726ca9831cfde9ef094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fc:1c:6d:9c:85:9b:74:05:42:11:c9:90:09:
04:ab:9e:5a:77:f8:eb:a4:8c:1d:c6:83:7d:8f:80:
a3:d7:84:0f:0d:35:d1:c1:22:c8:2a:61:8e:ed:e9:
60:87:52:b9:bd:b9:73:80:a9:2c:02:34:d6:35:58:
d7:f2:d4:72:0d:db:c9:3f:89:ca:91:b6:f7:ca:8f:
d9:4a:5a:32:b7:1e:d5:2a:ec:2b:c1:9f:36:6c:a8:
67:f3:d6:c1:66:5a:a6:b3:65:ed:f7:73:a0:54:f1:
4d:43:7a:3e:f0:4d:96:2b:e7:64:11:b5:09:94:f1:
b1:9b:7e:a4:97:b6:2e:04:bc:d7:42:cf:5c:20:7c:
6c:de:c6:2a:38:54:18:d9:a3:83:f5:c5:ce:fa:ab:
8a:f3:40:66:1f:1c:f2:6f:34:94:e1:0e:00:25:58:
4c:23:12:43:2b:8c:82:4a:a5:20:f1:a9:23:0a:22:
f3:de:87:a0:cb:08:4b:2a:01:e1:58:73:7c:34:3d:
5d:5d:89:cd:7a:00:16:2e:ac:a5:35:03:e8:21:7a:
b8:77:00:62:7c:48:ba:28:64:ef:76:5b:30:7b:bd:
32:95:96:51:5d:6a:96:b6:87:57:9b:0f:f6:2d:0a:
81:a1:4b:e1:0f:e9:0e:c4:a9:bf:04:69:95:e2:99:
45:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:57:15:C5:52:7B:A7:AD:AB:B6:27:26:CA:98:31:CF:DE:9E:F0:94
X509v3 Authority Key Identifier:
keyid:76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/fVcVxVJ7p62rticmypgxz96e8JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/dixgr01zclhFzq8Le1hed1cGaWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.80.0/22
194.246.88.0/22
IPv6:
2a0d:e40::/29
Signature Algorithm: sha256WithRSAEncryption
72:32:90:18:40:0b:59:e8:59:89:71:0c:19:09:29:b1:e9:1e:
c7:56:33:3a:31:3b:9f:f8:75:ad:f9:3c:9b:65:f3:1b:e3:00:
d9:e4:ae:f1:96:ab:af:38:ea:36:9f:08:91:a4:23:2d:e3:6e:
cd:0f:a0:21:0d:97:95:34:7c:f3:62:91:0a:14:a2:43:1f:d0:
b7:f3:56:4f:1b:a7:75:17:50:71:5e:7c:fc:3b:a3:e7:3a:9e:
3b:73:1e:97:ff:1e:7a:0e:30:63:3f:1e:e5:cc:9b:45:57:00:
eb:8f:cf:d8:97:8c:90:c3:9e:83:0b:1d:0c:eb:8f:86:26:ae:
c5:90:97:d8:6a:e5:52:63:10:40:b6:68:b0:ad:4a:f1:f5:98:
fa:04:ad:26:37:84:9b:c9:6e:9e:d9:79:95:a8:54:51:be:e2:
88:d7:42:86:c9:37:92:cc:15:6c:d5:a3:db:7e:4c:21:42:ba:
54:4f:45:f3:0d:3c:e8:7a:f2:61:13:a7:1e:91:c8:f7:71:dd:
b9:59:0b:a4:60:16:1a:61:2b:c3:ed:5a:56:f6:7a:f4:45:67:
16:fc:e4:79:03:52:87:cc:03:d0:c0:65:95:e2:ac:a2:69:92:
98:65:40:5f:56:6e:28:15:56:6c:93:ba:e3:46:0f:9c:6e:19:
f4:e0:08:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net