Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/11dCD_28knpPV-7hcS46kYjhhGo.roa
File: 11dCD_28knpPV-7hcS46kYjhhGo.roa (raw, json)
Hash identifier: G83WGRUtYY3zSefbF+E2SJyXjgx9VV9MLKF3KXuZ9b4=
Subject key identifier: D7:57:42:0F:FD:BC:92:7A:4F:57:EE:E1:71:2E:3A:91:88:E1:84:6A
Certificate issuer: /CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Certificate serial: 019426D9A4E91447C6E1CD4388B82AB1CB7A
Authority key identifier: 5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/11dCD_28knpPV-7hcS46kYjhhGo.roa
Signing time: Thu 02 Jan 2025 11:49:45 +0000
ROA not before: Thu 02 Jan 2025 11:49:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206757
IP address blocks: 82.144.12.0/25 maxlen: 25
83.175.221.128/25 maxlen: 25
83.175.230.0/24 maxlen: 24
213.171.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:a4:e9:14:47:c6:e1:cd:43:88:b8:2a:b1:cb:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Validity
Not Before: Jan 2 11:49:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d757420ffdbc927a4f57eee1712e3a9188e1846a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:53:f3:5c:77:15:f9:d2:98:83:c3:78:96:e4:
ec:e9:a0:ba:9f:bd:0f:e9:61:ce:0e:24:1d:a7:5f:
bd:01:19:e6:5f:4e:c1:ea:0d:3f:43:cc:76:2d:80:
a9:8a:02:17:fa:7c:14:df:36:5f:cb:fa:ad:2a:c4:
40:c1:fc:79:72:f5:fe:74:5d:f4:68:4c:cd:81:cd:
25:5a:52:da:a1:a6:72:fc:ca:91:46:28:ab:26:e3:
ff:dd:b3:ca:24:db:61:8d:d7:72:76:f5:02:60:02:
e2:70:24:57:cc:88:9e:06:15:7b:91:86:cf:b7:e6:
dc:33:08:19:96:ed:28:6d:95:d5:7c:c6:b7:b7:5f:
ca:8d:d3:98:c3:f1:93:81:75:e9:fb:5a:07:7e:27:
d9:a4:a6:39:71:9d:28:34:b7:e5:b1:c8:d4:fe:a7:
9c:61:8b:db:57:31:cd:1b:d9:10:69:5e:a9:85:df:
7d:95:eb:b0:15:61:b5:c7:7f:7a:ed:4d:92:bf:50:
54:04:87:30:31:7e:21:f9:d5:14:f9:50:ec:6d:cd:
6c:f4:38:e1:c0:8a:62:b3:22:f9:83:f4:62:94:3a:
59:24:9d:36:da:9d:8a:39:6e:2d:79:bf:e6:75:8b:
65:60:9d:c1:f3:1c:74:13:f9:43:1b:b7:2a:08:e1:
a1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:57:42:0F:FD:BC:92:7A:4F:57:EE:E1:71:2E:3A:91:88:E1:84:6A
X509v3 Authority Key Identifier:
keyid:5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/11dCD_28knpPV-7hcS46kYjhhGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.12.0/25
83.175.221.128/25
83.175.230.0/24
213.171.230.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c1:da:dc:1f:5e:37:3c:be:51:7a:1d:57:3d:ec:b2:16:c0:
28:71:94:78:58:eb:58:ac:bd:b4:ae:b2:5e:34:9e:08:22:14:
2d:a8:87:79:ac:7f:c5:0b:a3:ae:86:88:3f:8d:4e:2c:d9:5c:
19:41:ad:b7:90:0f:fa:93:bf:bc:8f:63:29:79:7b:a9:36:0f:
8f:0b:13:0d:84:9a:70:e7:5f:76:97:02:d6:ff:40:2c:2b:08:
39:92:d1:e4:b6:08:a9:bb:4c:f3:f7:aa:9e:9e:0e:ec:f0:7d:
01:65:99:fd:69:e4:c5:fb:ae:59:1b:17:fe:ea:d0:ab:b4:41:
47:e4:f5:a4:40:bc:f5:87:8f:c9:8b:e0:ab:ca:88:c8:74:ea:
35:67:71:d2:f4:44:45:38:4e:fa:cd:f8:33:84:7a:24:8f:28:
15:1e:e1:4d:13:04:7c:a3:79:36:a4:b4:82:db:eb:90:e6:7b:
8f:61:d9:ba:98:43:6b:ba:f2:4a:fb:36:2a:a1:28:c5:62:a4:
60:7f:bf:40:1d:a8:e5:a1:32:cd:2e:15:b1:1d:3a:e6:c3:97:
ce:60:24:da:a3:5b:ab:13:52:17:ab:2b:e6:b9:68:2f:7f:4e:
e8:ee:a3:80:1b:a0:bf:4c:2e:01:45:0f:8a:2b:9f:37:91:44:
32:a1:03:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net