Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/fGA1M57yGBtOMUI08h8wD_v-d7E.roa
File: fGA1M57yGBtOMUI08h8wD_v-d7E.roa (raw, json)
Hash identifier: CuPB00S3uLOygPninxMXcEhxd+sJxquT0fKOzzZvR50=
Subject key identifier: 7C:60:35:33:9E:F2:18:1B:4E:31:42:34:F2:1F:30:0F:FB:FE:77:B1
Certificate issuer: /CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Certificate serial: 01941F8C2FD777600E9FA9CA511C78E343DB
Authority key identifier: BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/fGA1M57yGBtOMUI08h8wD_v-d7E.roa
Signing time: Wed 01 Jan 2025 01:47:48 +0000
ROA not before: Wed 01 Jan 2025 01:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25251
IP address blocks: 81.94.32.0/22 maxlen: 22
81.94.36.0/24 maxlen: 24
81.94.37.0/24 maxlen: 24
81.94.39.0/24 maxlen: 24
81.94.42.0/24 maxlen: 24
81.94.44.0/24 maxlen: 24
81.94.45.0/24 maxlen: 24
81.94.46.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:2f:d7:77:60:0e:9f:a9:ca:51:1c:78:e3:43:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Validity
Not Before: Jan 1 01:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c6035339ef2181b4e314234f21f300ffbfe77b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bd:98:a2:0d:6c:68:6a:20:b7:bf:99:e1:c4:
16:c5:29:b0:90:0b:4e:d4:13:3a:75:dc:5a:33:2a:
fb:78:03:1d:03:f1:0d:5c:36:7b:31:2a:4e:32:ee:
22:2b:f5:eb:13:3d:a5:fa:f8:db:7e:b7:09:5c:52:
64:d0:8b:e2:cc:bc:f6:87:bc:63:1c:fc:55:6e:a1:
45:70:93:74:35:87:a3:9d:d0:89:d2:47:76:cd:84:
9b:a0:f1:f3:58:eb:c6:d8:a4:f3:70:e9:dd:1b:16:
9b:5b:d0:46:f8:e1:a2:ad:c3:c0:6e:f7:77:77:1d:
f8:cc:1e:b5:ac:e2:4f:53:4e:dc:5f:05:be:cf:58:
72:ac:41:ca:1c:85:7c:43:76:77:f1:34:dd:ff:41:
e6:40:68:64:e6:02:08:87:6a:c8:12:d0:2c:30:05:
31:b8:58:d5:23:dc:5f:25:7c:7b:c5:13:fa:05:12:
2e:7c:2d:a9:47:e3:bb:49:b8:bc:6f:7a:58:69:eb:
ee:85:16:d4:c4:ae:cf:71:fc:b7:84:b4:88:7e:78:
4e:aa:82:86:cf:cc:90:95:94:e3:96:34:f0:70:20:
6b:2d:15:64:cc:1f:9b:83:6e:55:64:1d:29:7e:ae:
fb:3d:d2:41:40:2c:92:9f:d4:81:79:f6:16:8a:a7:
72:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:60:35:33:9E:F2:18:1B:4E:31:42:34:F2:1F:30:0F:FB:FE:77:B1
X509v3 Authority Key Identifier:
keyid:BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/fGA1M57yGBtOMUI08h8wD_v-d7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/vGyMBtLTwoAfBUWPyDQT2wpd360.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.94.32.0-81.94.37.255
81.94.39.0/24
81.94.42.0/24
81.94.44.0/22
Signature Algorithm: sha256WithRSAEncryption
84:60:75:fc:08:02:5d:d8:db:1c:55:65:09:6c:3d:20:2d:4e:
74:6b:d0:f2:09:bd:a6:ff:6d:0c:71:fc:60:66:15:e9:cf:be:
c7:29:2d:4f:5d:59:3b:78:dc:98:8a:5a:65:98:50:b2:f9:ed:
a5:ba:f0:0d:5e:96:dd:1d:65:74:fd:63:40:e4:93:a9:a5:43:
7f:a1:98:8b:1d:90:68:22:ee:26:33:b0:6a:24:94:96:51:15:
0c:c9:51:30:9c:b9:4f:2b:5c:86:cd:ed:33:5b:fe:f2:0f:cc:
e2:eb:dc:d0:a5:43:1a:70:c4:fa:ec:34:88:56:82:a0:25:59:
bd:e6:3a:38:c1:63:9c:cb:9b:d5:cb:23:21:06:e4:2a:f0:9a:
b6:4b:14:05:51:dc:e9:09:59:9d:9d:fd:68:c0:46:7a:f4:8d:
99:75:d9:29:a2:56:77:10:61:2b:c4:3a:5e:19:78:1b:fe:e1:
72:6c:36:63:76:ff:5b:9a:be:89:a3:1d:d6:a7:fe:78:48:4d:
92:7e:66:dd:20:90:ac:61:9d:14:de:09:2d:b4:d2:a8:1c:a1:
d3:b9:33:c2:f0:d9:c0:17:f7:84:27:50:ce:3b:4f:d1:28:1d:
11:dd:61:b0:cf:38:4a:52:da:36:d8:6f:83:a5:a6:1b:5e:bb:
27:1b:7b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net