Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/gWHF_rALnCC6aWL25OOLXmaYWd4.roa
File: gWHF_rALnCC6aWL25OOLXmaYWd4.roa (raw, json)
Hash identifier: MNZsV6aY4RN1u/cCPIru0uGzTZOf4K/o0suBsxP2p4c=
Subject key identifier: 81:61:C5:FE:B0:0B:9C:20:BA:69:62:F6:E4:E3:8B:5E:66:98:59:DE
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 019600CBF970D5278E6DF4A0EFD531A5EED9
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/gWHF_rALnCC6aWL25OOLXmaYWd4.roa
Signing time: Fri 04 Apr 2025 12:34:49 +0000
ROA not before: Fri 04 Apr 2025 12:34:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49234
IP address blocks: 77.87.224.0/21 maxlen: 21
77.87.224.0/22 maxlen: 22
77.87.228.0/22 maxlen: 22
193.30.80.0/24 maxlen: 25
193.30.82.0/23 maxlen: 23
193.30.82.0/24 maxlen: 24
193.30.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:cb:f9:70:d5:27:8e:6d:f4:a0:ef:d5:31:a5:ee:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Apr 4 12:34:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8161c5feb00b9c20ba6962f6e4e38b5e669859de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:76:05:8f:e7:25:27:49:27:2b:81:11:e2:c6:
f4:41:4f:c6:a7:c8:9f:ab:65:85:a1:38:c7:82:5c:
a3:49:e7:f1:d5:ea:8e:5b:a7:7f:74:1e:32:64:a5:
72:da:f2:de:7f:24:b0:68:07:00:c0:3a:f4:8b:48:
b9:a7:29:f7:e2:0d:0a:b8:4d:cc:f4:71:2d:9e:1c:
31:e8:0a:7f:6d:0c:cd:46:c8:8d:3d:30:b0:8f:83:
6f:4b:ba:cb:b5:fc:f0:d3:f6:a9:d8:5a:7e:9b:ed:
1f:f7:59:86:8b:16:c5:96:76:34:d9:cb:27:19:09:
d9:4b:d6:5e:8c:23:c4:ee:10:25:43:92:b0:f3:68:
53:95:2e:98:2a:dd:64:5e:2f:7e:27:0d:1d:2f:5f:
ca:80:ff:6d:1e:e6:09:f0:32:14:f6:32:c6:fc:a6:
9e:1a:7b:a7:88:27:42:5f:09:bd:7a:2f:41:10:50:
5f:b9:dc:41:1d:3e:b0:be:3f:88:7d:92:52:73:72:
73:0a:1c:e2:d6:14:f7:d8:72:03:3d:63:88:3c:86:
c6:c3:82:9e:22:82:6c:a8:f2:cb:c2:b2:53:60:fb:
ac:87:54:b8:cf:f3:aa:77:c7:98:f9:a9:76:b8:74:
fb:e3:f5:09:86:8f:f3:c1:58:14:6b:21:eb:7f:c2:
8b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:61:C5:FE:B0:0B:9C:20:BA:69:62:F6:E4:E3:8B:5E:66:98:59:DE
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/gWHF_rALnCC6aWL25OOLXmaYWd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.224.0/21
193.30.80.0/24
193.30.82.0/23
Signature Algorithm: sha256WithRSAEncryption
59:c6:2d:4e:c8:8e:61:6a:27:13:fc:36:c6:c1:ec:67:c0:fa:
87:49:e1:57:20:f2:5b:2f:e7:1a:7d:f6:32:9d:93:13:63:a8:
9c:b9:d6:ed:ee:89:6a:db:d5:eb:4f:c5:1d:fa:65:5e:e7:7d:
ed:c2:03:22:01:39:53:d2:7a:c5:2a:da:ea:42:ec:d2:65:2d:
75:41:98:f7:40:5b:3f:7f:1b:9a:ee:e5:5a:92:8a:65:b1:66:
ad:bb:cc:2e:e8:46:77:ca:9f:f0:dd:3a:7d:f2:af:20:74:54:
eb:1e:48:ea:63:57:ab:77:ce:ab:5a:e9:ce:93:4d:ef:fb:93:
76:f4:bf:f0:d8:b1:17:9a:ae:63:c6:29:e5:54:9e:e7:3d:2f:
47:81:ec:b5:d7:53:f6:6d:68:97:67:d8:4e:a7:21:27:26:51:
56:76:e9:6f:6e:83:37:da:9c:24:c8:a3:53:01:92:e9:3e:3b:
5d:66:f2:d5:91:8b:a2:89:a7:7a:b4:c2:6d:7c:d6:a2:b5:5c:
02:13:0e:5c:d2:fb:55:5e:b3:84:e5:6a:b5:a2:ad:3e:28:eb:
2d:34:bf:a0:70:a6:ba:e2:7b:a3:d8:e6:c9:f9:b3:fe:ee:f6:
07:17:70:91:3f:ca:63:da:84:30:63:cf:2e:f9:bd:93:c7:75:
56:1f:94:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:24 2025 by rpki-client on console.sobornost.net