Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/4QXRAbNR3yAj5SaRnruidaQPNKo.roa
File: 4QXRAbNR3yAj5SaRnruidaQPNKo.roa (raw, json)
Hash identifier: phO8vfaPccH9SR7nce4AC0vjdKm6fZJc24zYaHvUQ+8=
Subject key identifier: E1:05:D1:01:B3:51:DF:20:23:E5:26:91:9E:BB:A2:75:A4:0F:34:AA
Certificate issuer: /CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Certificate serial: 0194266C1A7259D94719BC172C0EB503F5EA
Authority key identifier: 58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/4QXRAbNR3yAj5SaRnruidaQPNKo.roa
Signing time: Thu 02 Jan 2025 09:50:06 +0000
ROA not before: Thu 02 Jan 2025 09:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31673
IP address blocks: 62.148.160.0/19 maxlen: 24
80.247.160.0/20 maxlen: 24
81.26.208.0/20 maxlen: 24
81.93.48.0/20 maxlen: 24
85.255.208.0/20 maxlen: 24
87.237.96.0/21 maxlen: 24
94.126.64.0/21 maxlen: 24
185.2.24.0/22 maxlen: 24
185.111.120.0/22 maxlen: 24
185.139.148.0/22 maxlen: 24
193.239.88.0/22 maxlen: 24
2001:16e8::/32 maxlen: 48
2a00:f80::/32 maxlen: 48
2a02:728::/32 maxlen: 48
2a02:4640::/32 maxlen: 48
2a06:5dc0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:1a:72:59:d9:47:19:bc:17:2c:0e:b5:03:f5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Validity
Not Before: Jan 2 09:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e105d101b351df2023e526919ebba275a40f34aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5f:a4:e5:3e:c4:e5:12:c3:57:b0:83:5f:f4:
cb:d9:09:b4:7c:e0:53:8d:e9:30:77:66:23:6b:ac:
0a:ac:7a:8e:fb:e6:c9:4b:6f:e1:c9:1a:6b:53:84:
99:07:71:ff:33:51:64:d2:50:8e:56:f9:c3:d1:10:
0e:10:00:18:3e:76:4d:53:ff:9b:3f:9f:e0:1e:43:
36:08:d5:a4:2a:ec:27:3e:e2:78:8a:1f:da:7a:d1:
79:27:76:fe:76:54:b6:be:f9:1a:8b:35:25:49:da:
6a:98:1c:d0:92:a1:6a:92:b7:3e:7c:fc:08:bd:99:
0b:fa:00:dc:96:69:0b:fd:65:6f:c9:68:9d:71:73:
6f:e1:43:86:60:34:bd:db:71:fe:92:5d:35:f2:48:
1f:87:4e:20:e9:48:a1:90:93:33:d6:10:88:8a:21:
05:eb:d9:24:46:b3:7c:f1:80:1a:ec:4b:05:01:cc:
bc:cc:9b:cd:e0:12:65:4d:c2:cf:14:68:44:5c:1b:
3f:ac:9c:b8:fb:4b:8e:05:e9:17:42:6c:f7:f0:86:
ff:bc:35:c8:d6:b0:56:aa:b4:6c:23:3d:5e:e7:3e:
a4:33:a9:e7:f9:01:2a:61:ef:12:3b:30:e1:79:08:
22:ae:a5:ab:64:e3:bc:49:79:5d:14:d6:49:26:64:
16:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:05:D1:01:B3:51:DF:20:23:E5:26:91:9E:BB:A2:75:A4:0F:34:AA
X509v3 Authority Key Identifier:
keyid:58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/4QXRAbNR3yAj5SaRnruidaQPNKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.148.160.0/19
80.247.160.0/20
81.26.208.0/20
81.93.48.0/20
85.255.208.0/20
87.237.96.0/21
94.126.64.0/21
185.2.24.0/22
185.111.120.0/22
185.139.148.0/22
193.239.88.0/22
IPv6:
2001:16e8::/32
2a00:f80::/32
2a02:728::/32
2a02:4640::/32
2a06:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
99:ab:45:42:f3:55:c9:fb:03:54:98:08:1d:b6:16:1d:c5:78:
d2:c5:cd:8b:66:3b:a6:17:48:a0:f1:e2:77:35:c1:59:4e:f7:
9e:3c:db:cd:d8:76:8f:8b:40:be:cb:03:7a:cc:00:0f:7f:71:
3d:25:44:28:71:fe:1e:02:93:aa:00:b5:07:91:95:e0:9c:1e:
c6:21:7b:4a:ea:3c:57:1d:4e:4d:06:e9:cd:91:25:38:2a:62:
15:f6:e6:92:aa:ea:c7:5c:ae:57:8e:73:dc:75:2d:f7:8b:3f:
8f:9e:9a:3b:16:ef:2c:b2:2a:d7:92:84:97:23:ae:50:0e:73:
c6:52:3e:3a:5f:10:3c:85:28:07:2c:b5:06:cb:57:dd:77:98:
73:5f:8d:45:5b:40:2d:c2:1a:c1:db:17:bd:4f:aa:59:fd:c5:
c7:6d:68:dc:44:32:66:64:d9:12:78:fa:44:9d:9e:15:51:76:
f2:69:53:64:8f:b2:ae:28:1e:5a:79:ac:45:de:d5:08:02:e8:
4a:00:c5:de:18:cd:96:64:78:c6:42:dc:b7:42:c3:35:f0:7c:
af:4b:e8:86:ec:92:08:36:36:42:17:43:d8:ef:21:56:b2:7a:
56:d8:a2:f3:e4:6f:0f:f1:23:8b:7b:65:49:e4:14:29:29:f3:
c7:47:4e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:47 2025 by rpki-client on console.sobornost.net