Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/q95LSd8GymIeo50Qm8hbVA1RWoY.roa
File: q95LSd8GymIeo50Qm8hbVA1RWoY.roa (raw, json)
Hash identifier: 7jNaAGPtx4Ao10+H4Yq9jrjgoF40dHvaQCVKd1ONv9Q=
Subject key identifier: AB:DE:4B:49:DF:06:CA:62:1E:A3:9D:10:9B:C8:5B:54:0D:51:5A:86
Certificate issuer: /CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Certificate serial: 01953C2267A572C82689478A2A4FDB8B1FEE
Authority key identifier: 6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/q95LSd8GymIeo50Qm8hbVA1RWoY.roa
Signing time: Tue 25 Feb 2025 08:04:02 +0000
ROA not before: Tue 25 Feb 2025 08:04:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64476
IP address blocks: 46.247.136.0/23 maxlen: 23
46.247.138.0/23 maxlen: 23
46.247.140.0/24 maxlen: 24
46.247.141.0/24 maxlen: 24
85.190.64.0/24 maxlen: 24
85.190.65.0/24 maxlen: 24
85.190.67.0/24 maxlen: 24
85.190.68.0/24 maxlen: 24
85.190.71.0/24 maxlen: 24
85.190.72.0/24 maxlen: 24
85.190.74.0/24 maxlen: 24
85.190.84.0/24 maxlen: 24
85.190.85.0/24 maxlen: 24
85.190.88.0/22 maxlen: 22
87.121.208.0/21 maxlen: 21
185.161.168.0/22 maxlen: 22
185.231.8.0/22 maxlen: 22
185.253.168.0/24 maxlen: 24
185.253.169.0/24 maxlen: 24
185.253.170.0/24 maxlen: 24
185.253.171.0/24 maxlen: 24
2a0a:e805:210::/44 maxlen: 44
2a0a:e805:500::/40 maxlen: 40
2a0a:e805:610::/44 maxlen: 44
2a0a:e805:710::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3c:22:67:a5:72:c8:26:89:47:8a:2a:4f:db:8b:1f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Validity
Not Before: Feb 25 08:04:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=abde4b49df06ca621ea39d109bc85b540d515a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cb:a0:77:8b:82:1a:b2:b4:c5:9b:89:06:46:
2b:a7:2c:8e:d0:c8:c6:46:65:63:0f:96:96:9b:fe:
97:2c:b3:b4:f1:a3:17:ac:c5:a0:d5:19:3b:86:f7:
d3:2b:25:15:6f:c5:06:46:75:82:ac:1b:6f:5b:38:
26:4a:84:8e:5b:3b:c0:6d:c5:df:46:59:49:ba:bc:
33:3c:7e:48:8e:6f:f3:0f:97:be:7f:0d:73:82:f7:
90:c0:3b:5f:38:3a:7a:e7:b8:e3:53:63:02:9a:0d:
e5:da:38:7d:de:58:20:11:07:71:74:55:b8:64:dd:
a8:3a:56:e0:44:3b:b8:90:63:f7:82:d6:68:1f:ad:
ce:a5:e5:58:99:f2:a8:1c:39:ac:ff:d6:ab:d4:57:
48:1a:a2:d5:87:22:a6:c9:b3:04:3c:1b:c1:a9:64:
12:e7:b5:f9:04:19:2e:3a:e4:6e:8e:41:59:59:ba:
11:ec:f1:35:3b:73:ff:ed:60:c7:23:5e:02:d8:56:
07:35:0a:6c:f5:f1:51:1f:2b:24:13:68:f4:60:b6:
36:1d:5f:85:fd:b7:9f:85:fb:ba:e6:f5:37:56:3d:
e8:c8:23:f8:c9:bd:c4:da:10:17:c6:88:f1:ab:88:
bb:2f:06:b9:ab:97:ce:87:95:10:ae:1a:3d:40:fc:
c4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DE:4B:49:DF:06:CA:62:1E:A3:9D:10:9B:C8:5B:54:0D:51:5A:86
X509v3 Authority Key Identifier:
keyid:6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/q95LSd8GymIeo50Qm8hbVA1RWoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/bxDY4VZOQDEsnd8huiqgO6VZ6tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.136.0-46.247.141.255
85.190.64.0/23
85.190.67.0-85.190.68.255
85.190.71.0-85.190.72.255
85.190.74.0/24
85.190.84.0/23
85.190.88.0/22
87.121.208.0/21
185.161.168.0/22
185.231.8.0/22
185.253.168.0/22
IPv6:
2a0a:e805:210::/44
2a0a:e805:500::/40
2a0a:e805:610::/44
2a0a:e805:710::/44
Signature Algorithm: sha256WithRSAEncryption
06:2c:c2:dc:c9:26:93:67:6e:2a:cf:86:58:78:c9:e2:02:90:
6f:14:e9:57:36:e1:8e:05:9f:a8:ee:eb:1c:be:a7:f3:61:13:
78:7d:60:5d:98:06:e5:84:57:b3:28:34:f6:ea:e8:9c:15:ec:
e8:77:24:fc:3a:41:87:7b:e4:f0:c7:21:27:44:17:30:15:63:
b6:c4:bd:bd:93:29:9e:bc:1d:cb:5f:20:8c:18:bb:5c:5b:fe:
24:3b:26:87:82:9e:9b:22:f4:e1:fe:d2:86:fa:66:d3:1c:81:
4d:59:29:2f:e9:94:13:90:32:ca:2e:52:da:8a:a3:31:57:1c:
b0:6f:60:30:24:89:7b:c2:2d:9c:2a:66:c1:5f:db:f7:67:ba:
42:4a:43:f8:bd:74:f7:b9:f6:e6:6e:6e:2f:db:80:67:71:fe:
45:94:38:4a:ef:2a:7c:5e:5d:2f:99:16:36:38:6a:3f:a7:52:
1e:73:21:bb:35:e3:2e:0a:6a:e8:23:dc:f0:dd:e1:b1:5b:5d:
f9:84:13:38:1a:35:2f:d1:59:2b:b8:3a:da:ec:82:c7:59:b6:
d7:42:81:63:97:26:5c:2a:e1:cc:a6:97:5b:ab:31:1f:89:0d:
0b:0a:c8:c7:98:cb:fd:3a:9f:bc:76:c1:65:af:2b:3b:44:d1:
f4:db:a1:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net