Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/ducUWn7SmjDXSD2XK_HAZ4X-w1E.roa
File: ducUWn7SmjDXSD2XK_HAZ4X-w1E.roa (raw, json)
Hash identifier: QsOlqkwJkHZw/RVRRDiq/I4YTQ51hDfHFRswj0zjjww=
Subject key identifier: 76:E7:14:5A:7E:D2:9A:30:D7:48:3D:97:2B:F1:C0:67:85:FE:C3:51
Certificate issuer: /CN=dc0bde1467895c6f3a47197eac58ca13ae4bb78d
Certificate serial: 0195F17C99A46C93E43C32C21B139A2ECF4F
Authority key identifier: DC:0B:DE:14:67:89:5C:6F:3A:47:19:7E:AC:58:CA:13:AE:4B:B7:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AveFGeJXG86Rxl-rFjKE65Lt40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/ducUWn7SmjDXSD2XK_HAZ4X-w1E.roa
Signing time: Tue 01 Apr 2025 13:13:49 +0000
ROA not before: Tue 01 Apr 2025 13:13:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49824
IP address blocks: 45.87.90.0/24 maxlen: 24
45.87.91.0/24 maxlen: 24
62.204.51.0/24 maxlen: 24
95.141.245.0/24 maxlen: 24
212.23.203.0/24 maxlen: 24
2a10:2f40::/48 maxlen: 48
2a10:2f40:1::/48 maxlen: 48
2a10:2f40:2::/48 maxlen: 48
2a10:2f40:3::/48 maxlen: 48
2a10:2f40:4::/48 maxlen: 48
2a10:2f40:5::/48 maxlen: 48
2a10:2f40:9::/48 maxlen: 48
2a10:2f40:a::/48 maxlen: 48
2a10:2f40:b::/48 maxlen: 48
2a10:2f40:c::/48 maxlen: 48
2a10:2f40:d::/48 maxlen: 48
2a10:2f40:1a::/48 maxlen: 48
2a10:2f40:d1::/48 maxlen: 48
2a10:2f40:d2::/48 maxlen: 48
2a10:2f40:d3::/48 maxlen: 48
2a10:2f40:d4::/48 maxlen: 48
2a14:7280::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f1:7c:99:a4:6c:93:e4:3c:32:c2:1b:13:9a:2e:cf:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc0bde1467895c6f3a47197eac58ca13ae4bb78d
Validity
Not Before: Apr 1 13:13:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76e7145a7ed29a30d7483d972bf1c06785fec351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:af:0d:0e:ae:38:8a:e5:e6:ee:5b:6c:3d:
77:6a:4e:60:06:9d:49:cf:84:04:7b:a6:32:fd:7c:
d1:d9:5e:73:11:6b:35:02:a8:c9:97:15:af:2c:9f:
b1:b8:47:4c:7a:e1:ca:57:cc:d4:78:a3:dc:ab:52:
f5:aa:24:f5:a1:fa:b0:02:50:03:f3:02:61:03:ec:
57:0b:3b:21:59:a6:a5:a4:b4:93:8a:10:50:f7:08:
51:46:62:24:e2:35:74:9d:e3:a1:aa:77:f1:64:b3:
19:97:48:5e:66:15:5f:8b:74:4f:eb:96:6a:bf:a1:
a7:df:d2:7c:9e:18:02:7f:09:71:45:ce:57:fb:3e:
9c:1a:f7:11:5d:5e:14:f1:71:9c:b2:0a:c6:63:b5:
df:d4:85:b4:1a:0b:a7:03:ab:42:95:2d:6f:44:e8:
ea:07:26:ad:3e:a9:52:4a:ae:d9:c7:c9:ea:e7:5b:
09:1a:f5:a8:cf:ea:0a:25:32:e9:ed:10:23:39:0c:
65:e4:e7:d6:a4:73:01:d5:89:12:d5:f6:6e:bc:09:
f5:72:3e:28:56:c9:51:53:7c:86:2f:e8:36:f9:be:
84:a2:d1:f6:00:fc:04:ff:60:89:f0:d3:07:5c:14:
4e:ff:42:d9:77:3a:d2:8a:8d:83:cc:e4:ab:a5:6b:
cb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E7:14:5A:7E:D2:9A:30:D7:48:3D:97:2B:F1:C0:67:85:FE:C3:51
X509v3 Authority Key Identifier:
keyid:DC:0B:DE:14:67:89:5C:6F:3A:47:19:7E:AC:58:CA:13:AE:4B:B7:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AveFGeJXG86Rxl-rFjKE65Lt40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/ducUWn7SmjDXSD2XK_HAZ4X-w1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/3AveFGeJXG86Rxl-rFjKE65Lt40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.90.0/23
62.204.51.0/24
95.141.245.0/24
212.23.203.0/24
IPv6:
2a10:2f40::-2a10:2f40:5:ffff:ffff:ffff:ffff:ffff
2a10:2f40:9::-2a10:2f40:d:ffff:ffff:ffff:ffff:ffff
2a10:2f40:1a::/48
2a10:2f40:d1::-2a10:2f40:d4:ffff:ffff:ffff:ffff:ffff
2a14:7280::/29
Signature Algorithm: sha256WithRSAEncryption
7a:55:52:4f:c6:d0:fe:f5:ce:5d:d5:98:90:3c:7b:07:b3:a1:
64:3e:0f:7b:5e:24:51:57:e0:71:70:8e:3e:bd:fa:39:51:41:
1c:85:a8:ec:42:44:66:6f:de:eb:47:e6:f2:a3:db:77:d3:d2:
d5:7d:50:7a:8a:9b:9b:35:00:da:9b:a0:80:81:1f:8d:9b:f7:
41:65:f2:b1:60:6b:b5:f2:95:61:b4:a1:0f:b4:59:9a:1a:de:
f0:d7:0a:db:9a:28:c3:29:81:1c:89:08:7b:58:7a:11:96:f2:
05:d2:9b:5e:a7:51:06:cc:2c:3a:57:80:5b:34:f2:df:95:30:
f9:ec:e3:4a:92:91:c5:25:b3:ed:43:12:7a:75:0a:a5:4a:07:
fe:fe:cb:3b:a9:03:49:bb:49:8f:5d:38:77:dc:44:15:0b:f3:
6b:28:7d:80:ea:1e:1c:53:c5:bd:10:51:49:7b:92:dd:ad:a6:
2f:e0:54:e4:96:31:7f:84:ee:ac:f7:aa:cd:d1:cb:d5:0b:4c:
10:0c:02:9e:89:12:57:5f:0a:70:f1:30:de:c7:d3:93:db:46:
dd:09:81:0b:55:41:eb:eb:2d:a1:dd:85:3e:18:68:1e:12:3f:
cc:65:ab:93:da:e5:c7:96:bb:c2:25:28:93:5b:29:95:af:73:
5a:a7:6d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:02 2025 by rpki-client on console.sobornost.net