Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/76a7f1-748d-406c-a51f-1ba343f17ec2/1/uewbSpC9FC5XlY_eCEo6RSIybUc.roa
File: uewbSpC9FC5XlY_eCEo6RSIybUc.roa (raw, json)
Hash identifier: cOCIDwbVrfM9ZnTl9yxy//LsNgZKG3oH8DmYwSlxygI=
Subject key identifier: B9:EC:1B:4A:90:BD:14:2E:57:95:8F:DE:08:4A:3A:45:22:32:6D:47
Certificate issuer: /CN=ba31bcf923c5f25cafbdabdfdd46e511f95df0d1
Certificate serial: 01956BBF15A2826D310D2B522EAD5128FB16
Authority key identifier: BA:31:BC:F9:23:C5:F2:5C:AF:BD:AB:DF:DD:46:E5:11:F9:5D:F0:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ujG8-SPF8lyvvavf3UblEfld8NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/76a7f1-748d-406c-a51f-1ba343f17ec2/1/uewbSpC9FC5XlY_eCEo6RSIybUc.roa
Signing time: Thu 06 Mar 2025 13:57:19 +0000
ROA not before: Thu 06 Mar 2025 13:57:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20904
IP address blocks: 5.61.94.0/24 maxlen: 24
37.35.80.0/21 maxlen: 24
46.254.208.0/22 maxlen: 22
77.95.242.0/24 maxlen: 24
77.95.245.0/24 maxlen: 24
77.95.246.0/23 maxlen: 23
80.75.96.0/20 maxlen: 20
80.75.106.0/24 maxlen: 24
93.174.192.0/21 maxlen: 22
149.126.176.0/21 maxlen: 21
185.16.168.0/22 maxlen: 22
185.25.76.0/22 maxlen: 22
185.67.80.0/22 maxlen: 22
188.64.0.0/21 maxlen: 21
2a00:1a58::/32 maxlen: 32
2a00:74a0::/32 maxlen: 32
2a04:240::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6b:bf:15:a2:82:6d:31:0d:2b:52:2e:ad:51:28:fb:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba31bcf923c5f25cafbdabdfdd46e511f95df0d1
Validity
Not Before: Mar 6 13:57:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9ec1b4a90bd142e57958fde084a3a4522326d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:81:e4:b3:ff:ad:c9:ce:c3:b6:58:b1:2d:60:
ef:7f:cb:ed:56:01:04:7a:4b:ef:5d:a1:45:f3:42:
99:55:6a:8e:79:c8:f2:cd:01:5e:a8:ac:98:5f:82:
73:74:77:2a:16:97:a9:24:47:ac:40:f6:99:89:5f:
30:c4:cc:ca:46:2f:ed:88:69:d6:41:41:f1:95:10:
d3:bd:3b:a9:d5:78:e6:7d:ad:a2:55:11:67:11:a2:
65:ae:47:29:f9:77:43:41:c5:fe:4d:ff:39:ba:17:
67:00:8c:e5:9d:dc:fb:59:e2:2b:d6:c3:f3:d5:a6:
15:87:7f:34:47:de:b0:ca:be:2d:05:cf:1e:28:44:
72:90:ff:b5:7a:ea:de:b6:87:5a:45:a8:4d:78:03:
cc:b1:8c:56:19:ad:1f:6a:72:f4:b5:ab:8e:d7:8b:
72:0c:ae:d2:08:86:0c:4a:e1:bf:59:ea:d6:25:29:
8a:9b:e2:1b:ee:40:68:68:79:7e:0f:25:f1:46:f8:
63:85:91:92:bd:97:bf:63:7f:40:58:41:a7:7e:be:
a9:33:18:e6:17:84:29:c8:3b:63:48:43:b7:c0:68:
ea:54:24:8e:d0:54:56:93:e9:80:68:43:30:ac:8b:
fe:fa:47:c1:0d:b2:a8:3a:fc:fa:51:37:49:0e:c5:
f8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:EC:1B:4A:90:BD:14:2E:57:95:8F:DE:08:4A:3A:45:22:32:6D:47
X509v3 Authority Key Identifier:
keyid:BA:31:BC:F9:23:C5:F2:5C:AF:BD:AB:DF:DD:46:E5:11:F9:5D:F0:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ujG8-SPF8lyvvavf3UblEfld8NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/76a7f1-748d-406c-a51f-1ba343f17ec2/1/uewbSpC9FC5XlY_eCEo6RSIybUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/76a7f1-748d-406c-a51f-1ba343f17ec2/1/ujG8-SPF8lyvvavf3UblEfld8NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.94.0/24
37.35.80.0/21
46.254.208.0/22
77.95.242.0/24
77.95.245.0-77.95.247.255
80.75.96.0/20
93.174.192.0/21
149.126.176.0/21
185.16.168.0/22
185.25.76.0/22
185.67.80.0/22
188.64.0.0/21
IPv6:
2a00:1a58::/32
2a00:74a0::/32
2a04:240::/29
Signature Algorithm: sha256WithRSAEncryption
39:2e:27:60:33:f2:65:dc:47:44:d0:ba:29:70:e0:77:77:dd:
87:13:c2:41:22:13:c9:5a:18:0e:54:54:b8:dc:71:ca:c7:b3:
a8:66:14:35:b6:20:94:8f:90:e7:4a:c7:24:f2:12:06:99:b6:
33:48:2b:99:57:05:ea:80:55:61:19:73:8c:45:13:86:03:25:
06:6e:bf:7a:6f:1a:6e:5a:cd:c1:67:2a:59:13:f2:ef:e5:64:
b5:1f:9f:84:24:34:df:f5:0b:06:a6:e6:25:56:86:47:06:44:
22:5e:80:1e:b8:2c:7e:19:4f:42:6e:be:b8:da:41:31:eb:ae:
af:8e:ad:9d:7f:c2:ea:79:24:f4:ad:6e:a7:a0:c4:58:9a:23:
92:b0:a9:9c:f5:38:95:5a:d1:8d:b2:42:ec:af:b6:c0:31:71:
96:d4:76:c4:f9:2b:f8:68:69:01:82:6b:91:f4:ec:8f:16:08:
a7:ea:9f:08:78:e6:3f:d2:33:58:b1:de:d4:16:4f:ca:97:98:
82:e9:24:b0:03:97:e9:26:e7:3c:e8:4b:ae:71:df:de:b8:3a:
c8:f6:81:15:e7:b0:07:b7:79:ff:78:aa:56:7f:51:9b:c4:7e:
00:e1:ba:ba:a2:ff:8c:b4:a3:5e:58:f7:17:fa:b6:56:5e:47:
3f:ee:19:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:55 2025 by rpki-client on console.sobornost.net