Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa
File: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (raw, json)
Hash identifier: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=
Subject key identifier: 26:AA:FE:09:71:D8:9D:99:B3:83:FC:55:74:89:9A:5D:B3:26:54:42
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 019565861211E0E682CDE9C788054DDBE7AB
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa
Signing time: Wed 05 Mar 2025 08:57:19 +0000
ROA not before: Wed 05 Mar 2025 08:57:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6903
IP address blocks: 62.113.86.0/24 maxlen: 24
62.113.89.0/24 maxlen: 24
62.113.90.0/24 maxlen: 24
62.113.95.0/24 maxlen: 24
62.113.120.0/21 maxlen: 21
62.113.124.0/22 maxlen: 22
195.2.64.0/23 maxlen: 23
195.2.68.0/23 maxlen: 23
195.2.72.0/24 maxlen: 24
195.2.77.0/24 maxlen: 24
195.2.82.0/23 maxlen: 23
195.2.87.0/24 maxlen: 24
195.2.88.0/22 maxlen: 22
195.2.94.0/23 maxlen: 23
213.189.192.0/24 maxlen: 24
213.189.196.0/23 maxlen: 23
213.189.198.0/24 maxlen: 24
213.189.200.0/24 maxlen: 24
213.189.207.0/24 maxlen: 24
213.189.208.0/23 maxlen: 23
213.189.211.0/24 maxlen: 24
213.189.212.0/23 maxlen: 23
213.189.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:65:86:12:11:e0:e6:82:cd:e9:c7:88:05:4d:db:e7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Mar 5 08:57:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=26aafe0971d89d99b383fc5574899a5db3265442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:95:2e:bc:e5:42:9a:56:e6:c6:ba:42:9c:4d:
90:3a:ef:96:cc:56:49:5a:0a:a2:21:e4:62:de:71:
c5:d2:a9:29:a6:25:7f:c1:e9:ce:af:3c:dd:39:b1:
cc:61:91:4f:27:a5:67:ce:ff:1e:05:5a:4f:3c:64:
1f:4f:51:6b:ec:9f:7f:30:01:d7:a3:1e:c6:3a:fe:
00:d0:ad:9e:77:0f:5e:6b:8e:d5:2f:2b:27:46:0e:
19:8e:54:84:d8:7d:70:d8:a6:32:69:00:cd:30:dd:
55:46:3b:be:8e:49:05:7f:93:21:35:aa:9c:ee:20:
8a:87:dd:ac:95:d7:0e:43:2f:f9:5d:67:e1:49:33:
06:b9:2c:46:e9:a2:ad:29:01:82:35:43:78:4e:45:
c7:54:31:f7:ad:ea:37:bd:d1:32:3f:df:40:e2:73:
3e:63:62:e8:07:7d:de:3b:e5:ab:b1:67:69:21:98:
7c:a0:d1:b0:e6:8a:02:87:bd:c5:ee:80:75:21:8f:
7f:04:a1:e0:dd:8b:23:b1:05:48:03:b3:96:6d:91:
86:86:d0:85:05:a1:24:31:2f:1f:a9:6a:6e:cf:36:
85:a4:64:02:47:48:ca:17:5f:d8:ab:24:b9:aa:33:
89:49:d2:78:7a:8e:19:ca:bd:84:51:ab:f9:12:6e:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AA:FE:09:71:D8:9D:99:B3:83:FC:55:74:89:9A:5D:B3:26:54:42
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.113.86.0/24
62.113.89.0-62.113.90.255
62.113.95.0/24
62.113.120.0/21
195.2.64.0/23
195.2.68.0/23
195.2.72.0/24
195.2.77.0/24
195.2.82.0/23
195.2.87.0-195.2.91.255
195.2.94.0/23
213.189.192.0/24
213.189.196.0-213.189.198.255
213.189.200.0/24
213.189.207.0-213.189.209.255
213.189.211.0-213.189.214.255
Signature Algorithm: sha256WithRSAEncryption
a8:da:9e:08:e7:9b:6c:0d:a4:12:80:67:26:3a:80:f9:ef:0c:
4f:49:cd:9f:fe:af:20:f6:8a:6a:07:36:02:fd:46:f4:0b:44:
b6:24:e3:09:1a:e2:55:32:0e:3c:4b:b5:c5:25:81:da:44:3d:
9f:e1:ee:82:2b:70:b4:a7:3e:67:67:b4:9d:7d:d4:f8:2e:a1:
17:27:c0:37:0f:53:b4:92:f6:85:fb:ae:2a:09:34:73:1e:f4:
ce:d6:a9:34:f9:1f:2f:87:40:30:40:5c:9e:2c:7b:58:1a:78:
3b:48:3a:c2:84:e8:13:fd:02:a7:ba:eb:9b:6a:e4:aa:ce:13:
62:5b:60:61:d5:82:a0:09:67:be:44:5b:7f:d5:b5:96:5d:44:
15:1f:0a:31:61:98:db:01:e3:96:1d:71:15:4c:4d:ea:d3:ec:
e8:fd:05:96:b0:cc:aa:bc:1f:00:0f:78:82:ff:a0:86:39:93:
27:d6:6d:44:ca:2c:85:c4:d6:48:d3:e8:4a:3e:80:b8:b4:6e:
ce:cc:fd:cd:28:00:12:f3:91:2a:2b:a2:31:c6:8d:90:c5:4e:
f7:dd:71:2f:e5:07:0c:87:23:86:f9:55:8c:84:9f:23:50:b0:
60:e0:8e:eb:42:c9:4e:66:ba:d8:ae:e1:2c:98:c1:2e:75:14:
cb:02:03:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:12 2025 by rpki-client on console.sobornost.net