Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/DNtJ2qjJ88EsSdjFjsf4FwAUY9U.roa
File: DNtJ2qjJ88EsSdjFjsf4FwAUY9U.roa (raw, json)
Hash identifier: futuen5fOiPEuyuqJ5+ZcSUSkOZ6KmDLpQK21WlrqTg=
Subject key identifier: 0C:DB:49:DA:A8:C9:F3:C1:2C:49:D8:C5:8E:C7:F8:17:00:14:63:D5
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0194F9CF0925678D25BFB010A62A75A06B95
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/DNtJ2qjJ88EsSdjFjsf4FwAUY9U.roa
Signing time: Wed 12 Feb 2025 10:58:02 +0000
ROA not before: Wed 12 Feb 2025 10:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 170.62.236.0/24 maxlen: 24
170.62.237.0/24 maxlen: 24
170.62.239.0/24 maxlen: 24
170.62.244.0/24 maxlen: 24
170.62.245.0/24 maxlen: 24
193.142.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f9:cf:09:25:67:8d:25:bf:b0:10:a6:2a:75:a0:6b:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Feb 12 10:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0cdb49daa8c9f3c12c49d8c58ec7f817001463d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:4a:e1:28:11:f6:cb:fd:d7:e2:45:d6:ef:
1a:94:a3:fb:83:8f:12:99:68:a2:b1:0b:ee:87:9d:
66:16:3d:da:b0:80:38:5d:b3:86:67:4c:4b:d8:4f:
06:43:ba:1f:9d:97:fb:34:6c:e0:02:da:7c:f2:13:
d5:c3:2c:a4:1d:f1:80:7f:70:40:3e:c8:1e:5f:a3:
c3:2c:2c:b0:a0:8c:59:73:bf:4c:76:07:fd:0a:f3:
20:b3:c1:53:77:07:3b:e5:10:9a:7e:bf:4a:86:69:
06:4a:37:8c:d0:15:28:98:40:ac:b2:29:53:b0:d4:
ea:af:4f:f0:10:c2:d2:26:03:90:d5:07:75:21:e4:
8e:5a:b8:4b:9c:f1:28:b5:b8:cf:95:b0:ab:87:67:
f3:9d:bb:ae:47:80:69:4e:81:dc:59:f0:0e:4a:84:
d0:1b:16:31:17:83:03:51:58:b7:bc:2e:45:a5:da:
e5:ae:07:94:6e:4c:5e:fc:f2:66:f4:ae:58:5c:3d:
71:eb:2c:36:ad:9f:7d:64:b2:4d:7d:30:9c:09:67:
31:07:a1:1b:4c:1d:0c:54:4d:f2:6c:33:bb:71:b7:
9a:7f:de:8a:0c:e3:16:23:c0:d3:b2:cc:0d:0b:89:
8c:f6:23:e8:c2:90:bc:11:9e:fc:22:a5:89:1b:15:
bf:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DB:49:DA:A8:C9:F3:C1:2C:49:D8:C5:8E:C7:F8:17:00:14:63:D5
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/DNtJ2qjJ88EsSdjFjsf4FwAUY9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.236.0/23
170.62.239.0/24
170.62.244.0/23
193.142.58.0/24
Signature Algorithm: sha256WithRSAEncryption
71:49:f4:b7:27:21:5a:e8:5f:0a:b9:6e:3f:18:d8:14:4f:7b:
54:56:e2:b2:82:b5:e9:7a:e8:3b:91:9f:be:82:46:41:68:b8:
f9:50:23:cb:97:a8:bf:44:4f:4b:b9:e3:77:0b:9d:e9:fb:02:
3c:a9:9c:7b:2e:bb:80:1c:57:ef:f6:5a:5b:fc:cd:72:8d:9c:
24:e1:95:e7:73:2f:6b:47:26:c5:d0:df:81:6d:03:ca:08:ca:
42:9c:b1:24:da:15:a8:09:1c:23:4b:45:07:d0:8b:72:de:c9:
b7:5b:c9:6b:f1:78:1a:b7:55:22:d0:2c:0f:22:55:84:89:18:
c6:cb:2c:92:6c:72:c4:88:d0:5c:c1:43:31:8b:17:14:5b:26:
e1:f0:32:3b:3f:37:7b:ef:33:c3:55:18:b5:f4:ee:03:96:d7:
45:d0:6b:1f:26:fd:45:3c:ff:33:bc:1d:10:5f:4b:e0:13:f2:
d1:07:d3:ca:27:e6:b7:6b:1d:df:81:ae:23:11:6f:e8:b5:ad:
68:24:41:0f:2a:05:31:00:ef:45:49:26:07:8e:c4:d5:33:38:
31:f6:06:96:7f:82:bd:7f:eb:1c:bb:29:3b:d5:d9:f4:59:33:
4b:f5:54:3f:7b:82:b6:46:0d:b1:01:17:66:f4:f5:aa:8e:c4:
68:ad:14:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 22:13:28 2025 by rpki-client on console.sobornost.net