Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/ebf795-a31d-4e63-8fa1-b2d268e2cb78/1/_uaKTHKtfWhbGfsoaUqVE21BcaI.roa
File: _uaKTHKtfWhbGfsoaUqVE21BcaI.roa (raw, json)
Hash identifier: ZcgIbRy8eNOQQ+FS3+GJOt3y/shZQUFy7iI8KMgc4tI=
Subject key identifier: FE:E6:8A:4C:72:AD:7D:68:5B:19:FB:28:69:4A:95:13:6D:41:71:A2
Certificate issuer: /CN=182241c2a4cd1b08bf5ba5412d491c49c8eb878d
Certificate serial: 0194FEDF6C4EAB7B34B579770E869586076F
Authority key identifier: 18:22:41:C2:A4:CD:1B:08:BF:5B:A5:41:2D:49:1C:49:C8:EB:87:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GCJBwqTNGwi_W6VBLUkcScjrh40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/ebf795-a31d-4e63-8fa1-b2d268e2cb78/1/_uaKTHKtfWhbGfsoaUqVE21BcaI.roa
Signing time: Thu 13 Feb 2025 10:34:02 +0000
ROA not before: Thu 13 Feb 2025 10:34:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206957
IP address blocks: 91.222.140.0/22 maxlen: 22
91.222.140.0/24 maxlen: 24
91.222.141.0/24 maxlen: 24
91.222.142.0/24 maxlen: 24
91.222.143.0/24 maxlen: 24
176.112.72.0/21 maxlen: 21
176.112.72.0/24 maxlen: 24
176.112.73.0/24 maxlen: 24
176.112.74.0/24 maxlen: 24
176.112.75.0/24 maxlen: 24
176.112.76.0/24 maxlen: 24
176.112.77.0/24 maxlen: 24
176.112.78.0/24 maxlen: 24
176.112.79.0/24 maxlen: 24
185.79.240.0/22 maxlen: 22
185.79.240.0/24 maxlen: 24
185.79.241.0/24 maxlen: 24
185.79.242.0/24 maxlen: 24
185.79.243.0/24 maxlen: 24
195.128.135.0/24 maxlen: 24
195.246.224.0/23 maxlen: 23
195.246.224.0/24 maxlen: 24
195.246.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:fe:df:6c:4e:ab:7b:34:b5:79:77:0e:86:95:86:07:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=182241c2a4cd1b08bf5ba5412d491c49c8eb878d
Validity
Not Before: Feb 13 10:34:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fee68a4c72ad7d685b19fb28694a95136d4171a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9d:42:94:0e:85:43:d6:a1:09:58:31:79:ef:
82:91:63:ec:e9:85:31:c6:07:dd:90:d2:da:85:c8:
31:5b:f6:92:f8:7e:5c:0b:4e:c7:9d:0e:98:04:78:
4f:d0:29:7e:c0:2d:94:ca:4c:92:52:90:4c:2e:38:
d3:89:90:b6:03:42:f1:73:a9:c1:39:f3:3f:10:f4:
d8:e0:ca:d6:f3:76:91:8d:b7:5e:f3:ce:43:85:8e:
ef:ba:ee:30:6f:51:59:6e:55:e4:f1:54:30:ea:3d:
cf:ab:a1:a2:58:ff:bc:42:fc:df:d6:8d:60:8a:d6:
37:f0:03:5e:99:36:eb:10:f0:95:bd:e1:41:c8:8c:
68:31:47:61:81:ce:8a:d6:8d:5c:17:71:29:ff:ce:
f5:c0:41:c7:98:6a:c5:87:73:97:b4:18:dd:5d:5a:
20:2c:9f:71:e0:a5:05:95:a1:65:18:46:e2:bd:10:
ce:25:d4:6d:fc:e7:63:71:a2:82:23:20:56:df:69:
35:37:41:b9:85:b2:35:16:d5:e3:8f:57:e1:dd:fb:
25:9c:b2:78:ff:8b:d7:33:ef:ab:68:10:91:2b:4d:
54:1e:2b:de:2a:9d:b7:54:fb:f1:b0:6c:55:37:ca:
ae:f7:3c:34:51:26:a2:f0:1b:8d:b1:5c:a9:64:dc:
6d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E6:8A:4C:72:AD:7D:68:5B:19:FB:28:69:4A:95:13:6D:41:71:A2
X509v3 Authority Key Identifier:
keyid:18:22:41:C2:A4:CD:1B:08:BF:5B:A5:41:2D:49:1C:49:C8:EB:87:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GCJBwqTNGwi_W6VBLUkcScjrh40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/ebf795-a31d-4e63-8fa1-b2d268e2cb78/1/_uaKTHKtfWhbGfsoaUqVE21BcaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/ebf795-a31d-4e63-8fa1-b2d268e2cb78/1/GCJBwqTNGwi_W6VBLUkcScjrh40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.140.0/22
176.112.72.0/21
185.79.240.0/22
195.128.135.0/24
195.246.224.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:fd:89:16:be:6c:ba:10:35:4d:d0:12:eb:d9:2f:64:62:50:
59:b1:fd:b0:f7:d7:33:a4:c6:b4:17:96:dc:d7:61:4c:7b:ab:
67:d0:49:39:8a:df:4c:07:67:3b:9c:01:67:2e:b5:43:03:ce:
7d:f9:88:7d:37:c4:60:b8:ef:e4:e1:5f:c9:50:4c:f4:80:0c:
ea:06:23:2f:0c:37:57:d9:03:93:7c:e4:4f:21:e4:b6:77:7c:
55:bb:ee:bd:bb:ec:15:3e:16:a6:d7:0b:5d:91:48:83:df:7f:
61:9c:35:e6:5f:42:50:38:29:b6:96:f7:9e:0f:e6:e2:b6:23:
9f:1f:31:dd:ce:48:85:0d:8b:c1:f6:8b:7e:3a:93:43:1f:67:
44:f2:c3:c7:30:87:c8:21:2e:ed:a5:e1:a8:c2:8b:38:76:8e:
9b:27:15:58:6f:fb:54:da:7c:30:68:a0:66:bb:99:72:25:53:
fd:ac:96:d0:bc:2d:58:52:27:16:1c:36:8a:0c:78:20:8f:8c:
76:3e:8b:5b:47:98:cc:8b:92:24:9e:c0:6a:dc:d4:b9:57:e2:
57:85:04:60:65:bd:c0:ce:f1:92:4c:2a:5c:90:7d:ea:cf:f5:
ac:34:1a:ce:7c:38:c5:87:39:06:69:9d:b6:60:71:a9:e0:4f:
fd:0a:0c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:34 2025 by rpki-client on console.sobornost.net