Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/866b6b-f56c-4a2f-902d-fbc36e4348f5/1/FGVVapfPvK0QzFf1pALkp5bEruw.roa
File: FGVVapfPvK0QzFf1pALkp5bEruw.roa (raw, json)
Hash identifier: TSwtNe6AniR+9RFExziwrrS0q9Xsbcr++0YQr2+oyJQ=
Subject key identifier: 14:65:55:6A:97:CF:BC:AD:10:CC:57:F5:A4:02:E4:A7:96:C4:AE:EC
Certificate issuer: /CN=002fa6e19056838905bc32b53ab0d1047d78e4d4
Certificate serial: 01942444AF979E9D0F3146C5FBD5EF19D97D
Authority key identifier: 00:2F:A6:E1:90:56:83:89:05:BC:32:B5:3A:B0:D1:04:7D:78:E4:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AC-m4ZBWg4kFvDK1OrDRBH145NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/866b6b-f56c-4a2f-902d-fbc36e4348f5/1/FGVVapfPvK0QzFf1pALkp5bEruw.roa
Signing time: Wed 01 Jan 2025 23:47:48 +0000
ROA not before: Wed 01 Jan 2025 23:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39049
IP address blocks: 94.231.32.0/22 maxlen: 22
195.66.136.0/23 maxlen: 23
195.66.136.0/24 maxlen: 24
195.66.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:af:97:9e:9d:0f:31:46:c5:fb:d5:ef:19:d9:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002fa6e19056838905bc32b53ab0d1047d78e4d4
Validity
Not Before: Jan 1 23:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1465556a97cfbcad10cc57f5a402e4a796c4aeec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b7:04:bb:e1:f0:46:38:7e:23:27:01:0f:0c:
3a:a1:13:3f:22:ea:87:fb:8a:d1:5c:47:18:41:10:
e0:ff:5b:97:a5:87:67:d1:da:64:31:4a:6d:f9:0b:
59:2f:42:47:f3:ef:7f:60:bb:18:5a:af:08:80:25:
d3:dc:04:72:fd:07:c2:de:a5:9c:9e:cc:82:52:83:
4f:31:45:c9:fa:d8:e7:ce:6a:21:8b:58:36:75:fa:
16:87:0e:b7:31:2e:62:b5:c8:39:ef:d5:c8:ab:6f:
36:bb:09:e4:ff:60:ec:77:d3:0a:29:12:17:9a:44:
26:59:3f:be:1e:91:b8:40:4c:bf:32:ff:6e:bc:a2:
98:e5:2c:7d:3e:bc:6c:7f:31:d2:ba:ce:bf:aa:05:
a2:0c:39:c8:49:47:af:53:ee:ed:e5:78:f4:cf:66:
7f:3f:ef:87:e1:38:e2:26:34:dd:e8:06:41:f9:09:
f7:42:56:01:35:bf:ce:96:56:33:94:92:2a:d4:51:
43:25:86:56:4c:34:0e:b7:70:0b:6a:86:64:81:b4:
6d:b4:6e:10:d9:dc:04:6c:4a:b1:ce:7f:b2:52:cd:
54:19:65:6e:8b:61:97:db:d3:e0:99:bc:28:2c:d5:
8f:e3:0a:66:e7:bd:ed:d2:cd:6a:13:b3:18:75:e1:
20:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:65:55:6A:97:CF:BC:AD:10:CC:57:F5:A4:02:E4:A7:96:C4:AE:EC
X509v3 Authority Key Identifier:
keyid:00:2F:A6:E1:90:56:83:89:05:BC:32:B5:3A:B0:D1:04:7D:78:E4:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AC-m4ZBWg4kFvDK1OrDRBH145NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/866b6b-f56c-4a2f-902d-fbc36e4348f5/1/FGVVapfPvK0QzFf1pALkp5bEruw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/866b6b-f56c-4a2f-902d-fbc36e4348f5/1/AC-m4ZBWg4kFvDK1OrDRBH145NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.32.0/22
195.66.136.0/23
Signature Algorithm: sha256WithRSAEncryption
11:0e:14:da:ac:0a:3e:31:fa:3b:11:2c:02:16:06:1a:a7:69:
cf:91:5e:2d:09:a8:d6:26:82:f9:33:c9:7e:a1:1e:ac:53:fd:
f7:de:d8:46:05:22:87:f3:24:38:70:39:cf:ce:e7:49:1e:d1:
b2:d4:5c:a8:92:ef:70:fa:66:47:79:bb:ef:8f:9a:47:f6:8f:
ed:fc:f4:06:ba:27:6e:44:d9:0f:a8:22:19:01:da:a6:74:b4:
1d:b0:4a:d6:be:46:03:ce:42:9a:a6:b5:28:93:6b:fd:9e:fe:
a9:db:2b:2d:29:c1:d4:7b:4e:21:14:be:6a:6d:ea:b7:16:4b:
b9:71:34:db:d3:d0:30:7c:92:57:e0:2b:56:91:a0:65:b6:10:
20:f9:4e:2f:a7:b7:0f:a7:d1:f4:b0:0b:a8:de:54:43:68:bf:
bb:73:c9:6c:8b:b1:76:e3:4b:cc:2b:8e:a3:78:ac:81:ec:7d:
7d:95:e9:9b:2d:55:ec:49:f5:a5:8e:47:f8:4e:1b:2f:99:1e:
99:0a:1e:2d:d1:ef:bb:8d:d0:d7:6f:6f:c6:06:c3:0a:6b:1f:
72:ef:4b:12:22:62:76:7d:01:45:a8:9d:66:26:d2:e6:5a:b6:
80:92:07:d6:e1:65:54:71:b8:fa:fb:ea:58:10:52:c3:99:38:
e5:e5:9d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net