Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/76lBGSJE6aS-cLd60osQK82DpEo.roa
File: 76lBGSJE6aS-cLd60osQK82DpEo.roa (raw, json)
Hash identifier: n5bhitvtQQexgroyukpxKczTVWxHLJm13dQqJEWw3QA=
Subject key identifier: EF:A9:41:19:22:44:E9:A4:BE:70:B7:7A:D2:8B:10:2B:CD:83:A4:4A
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01961433D4428F43D1781750B2C01A0CC545
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/76lBGSJE6aS-cLd60osQK82DpEo.roa
Signing time: Tue 08 Apr 2025 07:01:03 +0000
ROA not before: Tue 08 Apr 2025 07:01:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204104
IP address blocks: 46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.143.0/24 maxlen: 24
109.94.164.0/24 maxlen: 24
212.80.8.0/24 maxlen: 24
212.80.9.0/24 maxlen: 24
212.80.10.0/24 maxlen: 24
212.80.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:33:d4:42:8f:43:d1:78:17:50:b2:c0:1a:0c:c5:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Apr 8 07:01:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=efa941192244e9a4be70b77ad28b102bcd83a44a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:41:e7:c3:e7:87:38:82:02:93:07:9b:57:7d:
81:8f:b6:32:f4:4e:13:9a:dd:1d:2e:2f:cc:ae:59:
fd:71:75:23:f5:c4:7f:09:12:4d:f5:e6:91:1b:b2:
87:d2:eb:5d:95:dd:b5:5a:08:fe:93:2c:4d:89:d4:
b3:cf:ef:7f:90:c0:92:5d:40:6f:ea:ef:0f:6c:00:
4d:7f:46:76:44:45:63:f0:e4:0a:b6:76:09:36:3f:
73:bd:f6:11:5f:6b:9d:ec:86:a7:02:08:ce:7b:9c:
4f:07:76:f4:9e:f9:0b:f0:04:84:bd:d0:1a:29:cc:
fe:6e:8c:8f:b8:85:04:36:04:13:ce:cf:62:43:e9:
91:c0:29:11:a0:7b:cc:57:0c:82:ee:eb:b4:bb:00:
cd:f9:be:94:b0:1d:fc:9a:17:d7:e0:60:ca:8f:9c:
e7:75:52:9f:49:83:8d:25:21:35:64:21:b0:03:64:
2e:f2:57:f7:d7:9c:02:f3:1e:2c:b4:da:5b:08:88:
1f:6c:be:07:5c:54:41:15:17:66:cf:a9:fb:69:cb:
a9:88:c6:48:82:98:69:66:b4:45:a4:55:ca:ef:d0:
1d:8c:87:1c:b7:ea:0b:b4:a2:87:b7:87:81:4f:d2:
ce:68:65:59:2f:c6:32:90:36:2c:45:9d:b8:fb:80:
af:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A9:41:19:22:44:E9:A4:BE:70:B7:7A:D2:8B:10:2B:CD:83:A4:4A
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/76lBGSJE6aS-cLd60osQK82DpEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.136.0/22
46.38.143.0/24
109.94.164.0/24
212.80.8.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:9e:9d:88:5a:6f:2b:e2:dc:b4:05:45:8c:55:eb:be:eb:71:
83:91:5f:cc:a4:e9:be:2a:a9:bc:01:78:f4:8b:11:24:ac:07:
ac:09:13:57:35:10:b1:7f:67:93:13:54:5d:1e:c0:5b:2e:e7:
3f:ab:a2:23:87:77:67:41:3a:7c:32:73:1b:49:bb:63:a5:f6:
a4:6d:4a:16:ce:c6:a1:54:84:22:8a:10:c0:fd:1d:bb:78:8b:
34:2a:c8:3b:92:0e:9b:b3:37:61:6c:c6:6b:3f:b3:ca:32:8a:
22:65:f2:6e:fc:5c:9a:b8:26:0a:e2:11:47:48:c7:7c:14:23:
bb:2b:da:fb:72:37:ae:d3:ab:6a:b3:4a:19:7f:95:65:e5:3b:
7d:d8:ee:69:ca:28:fc:1a:ea:cc:77:0b:65:50:95:da:5e:b2:
06:01:30:6f:80:5c:ba:b6:e3:13:e4:7e:0b:75:fb:50:3a:88:
ef:cf:8f:c3:7a:00:a8:ae:24:e6:2d:3b:92:c4:35:8a:36:26:
41:00:d7:c9:4a:c5:09:c0:fc:a5:e1:13:fb:70:c6:c9:58:5d:
86:22:5d:1d:a0:cb:32:2e:da:ab:41:9b:16:35:bd:7f:57:22:
62:0e:23:39:1f:48:54:e4:d9:4d:67:00:fe:c1:81:0c:4f:0c:
39:20:e8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:34 2025 by rpki-client on console.sobornost.net