Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/vNTpagm0_QJY-WXuWWU3FuDfpf4.roa
File: vNTpagm0_QJY-WXuWWU3FuDfpf4.roa (raw, json)
Hash identifier: i722J83yF11NerE/ElLKh8VOymA+t2TKdnksg7waJQw=
Subject key identifier: BC:D4:E9:6A:09:B4:FD:02:58:F9:65:EE:59:65:37:16:E0:DF:A5:FE
Certificate issuer: /CN=662f55d377127f28ce26b78fd83becf41becad4b
Certificate serial: 0194CD3B0C95781EAB37509EF0D1ED347B9E
Authority key identifier: 66:2F:55:D3:77:12:7F:28:CE:26:B7:8F:D8:3B:EC:F4:1B:EC:AD:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zi9V03cSfyjOJreP2Dvs9BvsrUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/vNTpagm0_QJY-WXuWWU3FuDfpf4.roa
Signing time: Mon 03 Feb 2025 19:13:06 +0000
ROA not before: Mon 03 Feb 2025 19:13:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49683
IP address blocks: 31.25.234.0/24 maxlen: 24
171.22.172.0/24 maxlen: 24
171.22.173.0/24 maxlen: 24
171.22.174.0/24 maxlen: 24
171.22.175.0/24 maxlen: 24
185.44.64.0/24 maxlen: 24
185.44.65.0/24 maxlen: 24
185.44.66.0/24 maxlen: 24
185.44.67.0/24 maxlen: 24
185.85.240.0/24 maxlen: 24
185.85.241.0/24 maxlen: 24
185.85.242.0/24 maxlen: 24
185.85.243.0/24 maxlen: 24
185.116.236.0/24 maxlen: 24
185.116.237.0/24 maxlen: 24
185.116.239.0/24 maxlen: 24
185.122.164.0/24 maxlen: 24
185.122.165.0/24 maxlen: 24
185.122.166.0/24 maxlen: 24
185.122.167.0/24 maxlen: 24
185.168.192.0/24 maxlen: 24
185.168.193.0/24 maxlen: 24
185.168.194.0/24 maxlen: 24
185.168.195.0/24 maxlen: 24
185.184.68.0/24 maxlen: 24
185.184.69.0/24 maxlen: 24
185.184.70.0/24 maxlen: 24
185.184.71.0/24 maxlen: 24
185.189.56.0/24 maxlen: 24
185.189.57.0/24 maxlen: 24
185.189.58.0/24 maxlen: 24
185.189.59.0/24 maxlen: 24
2a0a:2f00:1::/48 maxlen: 48
2a0a:2f00:2::/48 maxlen: 48
2a0a:2f00:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cd:3b:0c:95:78:1e:ab:37:50:9e:f0:d1:ed:34:7b:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=662f55d377127f28ce26b78fd83becf41becad4b
Validity
Not Before: Feb 3 19:13:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bcd4e96a09b4fd0258f965ee59653716e0dfa5fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:66:47:e0:27:f6:2a:a7:67:fa:b9:13:61:fb:
23:58:a0:44:4d:b0:20:de:c3:62:bd:c4:84:a0:32:
05:62:c2:e4:e2:f3:da:5b:e3:ba:55:d9:cc:e7:18:
b9:c4:8b:cb:38:61:61:02:73:5f:1a:76:e0:a5:05:
b4:c1:8a:57:e1:bd:e8:1b:df:33:5a:f9:0a:24:3e:
8b:68:5c:6e:c4:3f:62:a5:07:47:05:55:08:77:01:
fb:96:9a:f8:e7:b7:f8:e1:89:32:f6:96:e7:ed:6c:
c2:91:71:0d:a5:ec:30:21:d5:a7:70:36:ee:70:08:
79:be:57:dc:57:28:db:cd:33:52:8e:cf:28:b2:07:
46:2b:e7:a4:0a:07:08:1b:ef:99:eb:70:45:d8:83:
eb:1d:6e:3e:ee:f6:3a:22:77:bc:21:b1:3e:fc:74:
e0:01:ae:2a:91:01:c0:fd:e6:c2:f9:49:a6:92:08:
41:e1:9c:cf:65:ec:92:b4:6b:04:d0:05:b4:f4:f6:
30:42:b5:14:01:49:02:60:5c:3f:65:57:2e:32:ab:
61:e1:75:90:a6:7e:80:bc:de:f4:50:a2:08:f1:a5:
eb:ea:3f:d1:92:ff:f8:ed:89:08:db:2e:eb:4d:7d:
9b:a1:84:b7:9d:cf:54:0d:bd:9d:a2:59:ed:b1:c5:
03:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D4:E9:6A:09:B4:FD:02:58:F9:65:EE:59:65:37:16:E0:DF:A5:FE
X509v3 Authority Key Identifier:
keyid:66:2F:55:D3:77:12:7F:28:CE:26:B7:8F:D8:3B:EC:F4:1B:EC:AD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zi9V03cSfyjOJreP2Dvs9BvsrUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/vNTpagm0_QJY-WXuWWU3FuDfpf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/Zi9V03cSfyjOJreP2Dvs9BvsrUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.234.0/24
171.22.172.0/22
185.44.64.0/22
185.85.240.0/22
185.116.236.0/23
185.116.239.0/24
185.122.164.0/22
185.168.192.0/22
185.184.68.0/22
185.189.56.0/22
IPv6:
2a0a:2f00:1::-2a0a:2f00:3:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
40:df:68:80:c0:6a:20:3f:55:a2:c2:4e:5a:21:77:50:95:f1:
59:8b:e7:cc:43:00:87:d7:d0:4d:4e:ed:c7:57:b0:e7:b7:76:
f2:b3:e0:09:a1:83:c9:aa:51:d0:8d:8e:0e:19:df:79:ce:b4:
fb:80:8f:54:6a:23:29:0c:e0:99:b4:94:49:e3:14:aa:48:fd:
21:f7:07:7c:8d:27:37:34:ae:8b:5c:ce:dd:b4:fb:e5:56:4d:
54:34:f8:51:89:95:54:9a:00:f3:a4:fd:dc:12:4d:9d:f8:eb:
60:1e:0e:15:63:a6:c4:51:1d:9d:95:2e:f0:1b:c9:8c:21:96:
40:06:3e:99:25:4a:8c:a7:70:a1:22:b4:fb:c6:ea:85:a4:da:
78:8a:28:03:c8:9b:fd:18:5e:b1:1d:7b:1b:5a:d5:b2:2b:21:
7e:20:22:5d:84:ba:95:7e:51:6c:e6:5d:f0:af:79:90:35:d6:
a7:5d:d1:f3:a3:b2:34:3d:c7:d1:06:cd:a1:32:7e:a8:75:90:
29:84:9a:37:c5:d9:65:e2:1e:25:40:eb:79:34:e9:ce:e9:c3:
7a:2f:cd:51:d5:97:70:d2:df:01:6b:98:d0:50:93:0a:22:c8:
00:6e:46:5a:6d:c0:78:89:a0:c7:cb:20:e3:7c:c3:93:bf:b6:
cf:60:d6:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:50:50 2025 by rpki-client on console.sobornost.net