Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/zHs9cFuQEsCg45LnMiCsOF3kF4Q.roa
File: zHs9cFuQEsCg45LnMiCsOF3kF4Q.roa (raw, json)
Hash identifier: C6+fwUFGNJ/F4sEfe/qDP+eEAltXpbDsycsJBFRmzqw=
Subject key identifier: CC:7B:3D:70:5B:90:12:C0:A0:E3:92:E7:32:20:AC:38:5D:E4:17:84
Certificate issuer: /CN=2532a5cf2ba18c753edc95ee20b666293df02d5b
Certificate serial: 0194244484D2115486C625A2FD87EC292D02
Authority key identifier: 25:32:A5:CF:2B:A1:8C:75:3E:DC:95:EE:20:B6:66:29:3D:F0:2D:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTKlzyuhjHU-3JXuILZmKT3wLVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/zHs9cFuQEsCg45LnMiCsOF3kF4Q.roa
Signing time: Wed 01 Jan 2025 23:47:37 +0000
ROA not before: Wed 01 Jan 2025 23:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35030
IP address blocks: 77.32.227.0/24 maxlen: 24
77.32.231.0/24 maxlen: 24
91.221.82.0/24 maxlen: 24
91.221.83.0/24 maxlen: 24
195.211.12.0/24 maxlen: 24
195.211.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:84:d2:11:54:86:c6:25:a2:fd:87:ec:29:2d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2532a5cf2ba18c753edc95ee20b666293df02d5b
Validity
Not Before: Jan 1 23:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc7b3d705b9012c0a0e392e73220ac385de41784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e8:7e:42:18:8c:9f:45:71:f0:39:70:ad:28:
ba:10:cb:0b:fc:49:e6:c4:f6:dd:7f:3a:ed:1c:e3:
ee:11:c0:54:6a:ce:87:ab:9f:a3:2d:bd:4a:53:27:
63:f9:0f:91:f9:17:9a:23:9a:d6:77:f7:a6:b5:fc:
e9:bd:50:58:02:ab:ed:18:6b:e7:33:d0:7c:ec:d8:
49:83:c6:b8:82:77:90:50:71:e7:fc:c5:e3:ee:07:
22:1c:19:94:4a:33:09:e6:20:ac:5e:75:35:fe:a2:
c0:49:90:b7:6e:a2:db:ea:a5:8e:f7:91:f2:c8:8a:
7c:f4:eb:93:dd:fa:07:f6:bd:d3:52:0e:39:29:20:
fb:14:e6:cb:4e:eb:71:d4:0c:e7:cc:51:5a:e0:0b:
7a:1a:03:55:28:54:85:49:67:e1:6f:05:22:28:e6:
1d:38:ff:e7:ec:03:95:9e:3a:39:72:bc:b7:f2:1c:
5f:12:4d:65:f8:be:2d:6c:51:ea:42:55:b1:70:d2:
c0:50:67:cd:32:f8:6e:59:17:f2:6e:85:7e:3c:c1:
09:fe:e1:23:1b:d0:75:71:7d:fa:55:1e:65:d7:95:
ea:12:17:c3:01:de:95:ca:35:af:5c:d7:3a:2a:fc:
3e:ff:8c:62:f1:72:64:48:6e:3a:af:c9:77:8c:ca:
2d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7B:3D:70:5B:90:12:C0:A0:E3:92:E7:32:20:AC:38:5D:E4:17:84
X509v3 Authority Key Identifier:
keyid:25:32:A5:CF:2B:A1:8C:75:3E:DC:95:EE:20:B6:66:29:3D:F0:2D:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTKlzyuhjHU-3JXuILZmKT3wLVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/zHs9cFuQEsCg45LnMiCsOF3kF4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/JTKlzyuhjHU-3JXuILZmKT3wLVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.32.227.0/24
77.32.231.0/24
91.221.82.0/23
195.211.12.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:24:18:ab:0f:92:ae:4f:3b:b2:5e:ae:02:f8:cd:02:e5:be:
9d:79:00:af:c6:41:65:ab:ab:2f:82:96:9a:f3:08:84:45:ff:
fd:72:f0:b1:cf:71:f0:35:e1:5c:fa:41:64:34:41:41:a1:1c:
99:61:8f:d0:78:c5:02:a6:b1:a1:ab:c3:2b:53:52:24:44:8d:
69:e7:02:ce:c8:58:d3:24:32:16:91:b1:59:f3:af:64:4f:80:
3c:c8:9c:aa:1d:39:21:7c:1d:2e:1c:20:0e:f2:ff:75:a5:04:
87:05:09:6f:f7:32:f3:fe:f2:e5:69:d1:d0:a0:7d:b7:2c:b2:
11:54:ae:31:0b:78:91:b7:95:52:8d:9e:b4:bd:e0:15:52:ac:
71:cc:2d:95:19:d7:ff:b9:b8:48:9b:a1:67:59:0e:c2:14:48:
b8:04:e5:9c:6b:39:de:44:a8:7a:30:07:c8:e4:e9:a2:27:04:
30:0f:49:34:d5:fd:63:86:84:46:f0:a6:e0:bb:68:96:53:6a:
8b:27:68:07:ca:b4:04:ce:c4:58:e9:b2:4e:df:25:cb:f5:fd:
3b:c1:e8:e2:e4:d4:e0:2b:77:9c:1f:30:20:92:1a:ce:05:c3:
5f:53:ca:81:4d:7f:f2:ac:23:4d:f3:68:32:f0:0a:ff:41:a0:
97:c0:34:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:31 2025 by rpki-client on console.sobornost.net