Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kurZdo7V81UmuTRR9eSVYX2ok8c.roa
File: kurZdo7V81UmuTRR9eSVYX2ok8c.roa (raw, json)
Hash identifier: LpmZT/JVWKprgk6UzJSMZi0ll/rQiq2frFIWfhBWFXs=
Subject key identifier: 92:EA:D9:76:8E:D5:F3:55:26:B9:34:51:F5:E4:95:61:7D:A8:93:C7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0195140A7064189173C8C97FC7A71E346B1C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kurZdo7V81UmuTRR9eSVYX2ok8c.roa
Signing time: Mon 17 Feb 2025 13:13:03 +0000
ROA not before: Mon 17 Feb 2025 13:13:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
193.33.94.0/23 maxlen: 24
193.163.86.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
2a04:ccc0:ffff::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a04:ccc6::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0c:3b80::/32 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a0c:3b83::/32 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c1:200::/40 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0e:b107:1165::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:0a:70:64:18:91:73:c8:c9:7f:c7:a7:1e:34:6b:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 17 13:13:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=92ead9768ed5f35526b93451f5e495617da893c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b8:15:75:4c:d1:d3:cb:8d:62:e4:6a:6a:20:
cf:1d:d1:a6:33:56:f3:63:03:d0:4c:d7:20:8d:c4:
90:89:60:b6:9c:a7:bf:6d:44:cf:eb:9f:9b:8b:7d:
cc:e2:09:7d:4e:e8:da:c2:93:7b:2b:2a:3a:a5:23:
80:fa:ff:1f:74:52:86:12:0e:34:ed:19:8e:49:68:
3f:44:4d:6b:3b:e7:d0:a8:c8:58:19:db:9f:f4:38:
ca:77:26:d0:df:57:61:95:7c:fe:68:4a:b0:9a:ea:
c5:76:af:b2:58:b8:2a:76:50:00:be:13:5a:8a:30:
c7:1a:ac:ed:b6:c1:e9:a8:5e:5a:af:d2:7f:f8:21:
9c:d5:46:e4:e0:5c:e3:86:d1:33:f2:18:5c:f6:d3:
ed:cb:c8:53:bd:5b:c9:3c:79:22:f4:fd:7c:dd:54:
cb:f7:e3:9b:45:dc:88:89:7d:59:4f:67:ef:32:d7:
b1:41:50:f8:2f:8f:f4:1c:88:f9:e3:c1:96:95:6d:
12:09:5b:c3:b1:95:44:f8:09:24:43:4d:73:9d:20:
1e:25:2c:9c:e6:4a:fc:2d:01:ce:7c:3f:73:55:a3:
4a:31:4f:78:de:1a:77:de:ac:19:56:90:53:82:ab:
c5:36:fb:70:fa:a8:8e:10:98:d3:2d:f1:be:28:d8:
c9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:EA:D9:76:8E:D5:F3:55:26:B9:34:51:F5:E4:95:61:7D:A8:93:C7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kurZdo7V81UmuTRR9eSVYX2ok8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.136.0/22
185.232.117.0/24
193.33.94.0/23
193.163.86.0/24
194.50.92.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
0a:9c:57:fe:c8:64:a5:d1:17:8a:c3:16:ac:a4:b0:15:5a:d5:
a1:e7:a1:e3:b8:b9:99:28:02:79:17:9e:aa:8a:12:21:d3:1d:
04:30:37:f7:e4:c1:2c:b7:b2:bb:ec:7d:db:6a:70:86:d4:e0:
27:e0:fc:8b:e6:fd:2b:68:d4:d6:58:f9:4a:be:a0:c1:52:69:
e8:0d:3b:fe:75:1c:a5:19:8d:b4:8e:45:56:ca:05:cf:64:42:
97:54:cc:3f:b4:04:f5:29:31:7a:49:2a:2a:9f:3e:03:bb:26:
31:83:5a:7a:51:80:bc:4d:75:f1:15:39:8b:b8:8a:e7:6b:12:
ff:c9:b8:32:99:bb:1f:35:bd:86:d2:eb:84:0c:a8:48:2f:74:
88:d1:c9:df:6b:c9:c5:fd:04:27:8a:3a:e6:76:a7:bd:71:f0:
5d:85:d7:dd:93:b4:b4:70:33:5f:0b:75:88:e3:aa:94:f3:f8:
71:28:89:e2:a9:8a:b3:fa:b3:a9:57:42:b4:ea:26:30:3f:12:
0b:b9:a7:c7:b5:94:70:ef:3a:ec:54:93:cc:20:f0:40:94:59:
31:f3:6e:19:45:d4:0f:4e:96:9b:fc:f6:ee:92:a6:26:76:5d:
60:86:32:0f:d7:d2:86:d6:ff:dd:c0:6b:a9:76:8d:f4:bd:be:
b3:3d:68:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:49:15 2025 by rpki-client on console.sobornost.net