Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/6cgyQw3c6pwtU4O5qiL8so1iLO0.roa
File: 6cgyQw3c6pwtU4O5qiL8so1iLO0.roa (raw, json)
Hash identifier: RrJ/CIW7j+YCVbEs17TVrQYeU0kZt0hrM4cIT1zfgiE=
Subject key identifier: E9:C8:32:43:0D:DC:EA:9C:2D:53:83:B9:AA:22:FC:B2:8D:62:2C:ED
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 019421B1E974571A57DA905026A92E59190A
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/6cgyQw3c6pwtU4O5qiL8so1iLO0.roa
Signing time: Wed 01 Jan 2025 11:48:15 +0000
ROA not before: Wed 01 Jan 2025 11:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204582
IP address blocks: 62.76.248.0/24 maxlen: 24
62.76.249.0/24 maxlen: 24
62.76.250.0/24 maxlen: 24
62.76.251.0/24 maxlen: 24
62.76.252.0/24 maxlen: 24
194.85.31.0/24 maxlen: 24
194.85.77.0/24 maxlen: 24
194.85.78.0/24 maxlen: 24
194.85.79.0/24 maxlen: 24
212.193.116.0/24 maxlen: 24
212.193.117.0/24 maxlen: 24
212.193.118.0/24 maxlen: 24
212.193.119.0/24 maxlen: 24
212.193.120.0/24 maxlen: 24
212.193.121.0/24 maxlen: 24
212.193.122.0/24 maxlen: 24
212.193.123.0/24 maxlen: 24
212.193.124.0/24 maxlen: 24
212.193.125.0/24 maxlen: 24
212.193.126.0/24 maxlen: 24
212.193.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:e9:74:57:1a:57:da:90:50:26:a9:2e:59:19:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jan 1 11:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9c832430ddcea9c2d5383b9aa22fcb28d622ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ee:55:8a:60:4d:b4:87:1f:05:68:fb:3a:2a:
cf:82:2c:9f:0d:5d:fc:0b:3e:15:bf:90:3d:48:d6:
db:44:2f:2a:3b:8a:a8:22:88:c8:07:33:c0:cc:89:
3b:d6:a1:4c:64:d1:e8:2d:54:ba:a5:bc:42:61:df:
13:9f:58:59:95:14:c8:5d:d7:98:a2:3a:bf:f2:05:
db:6e:af:be:6c:6d:c8:1a:d1:54:db:8d:c1:b0:05:
33:69:db:1a:ad:26:40:8e:df:99:4d:40:df:eb:77:
50:17:f8:9f:c2:ac:f6:fe:d7:e4:43:f5:26:74:e1:
cf:ab:c3:fa:db:e4:d5:a2:be:fe:71:ac:a4:24:13:
69:a1:62:45:8a:f7:84:fe:87:92:6c:79:3d:d8:2d:
c6:4e:8f:9b:7a:1b:d1:bd:69:0d:36:09:f0:17:a7:
6f:e9:be:77:f3:c0:cb:5e:8f:ff:09:e7:3d:65:fa:
60:5d:c0:54:68:9c:13:2f:43:b6:8a:58:08:0b:9d:
24:4a:c8:0c:36:f3:f6:3b:d8:54:30:9f:76:74:85:
be:be:dd:ba:dc:f6:af:fb:6f:37:83:83:09:5d:13:
e7:92:c5:b4:a4:f6:0e:fa:da:46:2a:0d:cd:9d:6b:
96:aa:60:37:d9:69:cb:2a:50:0b:f8:82:ed:95:10:
1b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C8:32:43:0D:DC:EA:9C:2D:53:83:B9:AA:22:FC:B2:8D:62:2C:ED
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/6cgyQw3c6pwtU4O5qiL8so1iLO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.248.0-62.76.252.255
194.85.31.0/24
194.85.77.0-194.85.79.255
212.193.116.0-212.193.127.255
Signature Algorithm: sha256WithRSAEncryption
a9:52:61:02:a0:7d:db:62:23:2d:15:e0:c5:46:de:da:df:df:
b0:c9:fd:9f:f8:73:bb:ad:a4:bf:08:fa:74:24:c5:ca:f3:81:
bb:05:29:47:81:b2:8e:a3:7c:de:79:d8:75:8c:24:75:78:54:
9f:24:e0:9f:9d:de:1e:ca:56:ce:06:59:89:05:95:d8:63:47:
8d:b7:7a:e5:ba:cc:a2:47:db:10:e6:c3:3c:88:11:7c:ee:bc:
b6:50:99:4b:18:40:fb:dc:49:60:af:a3:4a:7a:95:03:f0:92:
de:78:7d:eb:03:94:51:97:02:d6:d2:05:01:84:ea:76:81:9a:
ee:0d:00:c8:72:0a:1b:fc:08:38:b9:e9:bd:97:8f:e3:b5:e3:
53:9e:00:82:53:cd:af:41:43:b5:60:e3:88:9f:66:5d:bd:f4:
31:28:58:1f:7b:fc:e9:45:38:8d:2b:2b:a6:54:4a:20:08:28:
85:87:d5:ab:59:6c:2c:82:bc:d2:f7:2f:16:9f:fc:31:e7:53:
05:f9:95:f5:77:ba:18:25:0c:e8:c8:0f:fe:52:13:5a:bd:64:
1f:da:15:f4:59:6f:a2:77:ef:2e:c4:ee:c2:c4:1f:6e:b8:49:
19:fd:d4:84:8d:db:03:2d:3b:a3:12:ba:25:9b:70:de:64:06:
49:21:74:3a
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAZQhsel0VxpX2pBQJqkuWRkKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2
OTdhMDMwHhcNMjUwMTAxMTE0ODE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWM4MzI0MzBkZGNlYTljMmQ1MzgzYjlhYTIyZmNiMjhkNjIyY2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAje5VimBNtIcfBWj7OirPgiyfDV38
Cz4Vv5A9SNbbRC8qO4qoIojIBzPAzIk71qFMZNHoLVS6pbxCYd8Tn1hZlRTIXdeY
ojq/8gXbbq++bG3IGtFU243BsAUzadsarSZAjt+ZTUDf63dQF/ifwqz2/tfkQ/Um
dOHPq8P62+TVor7+caykJBNpoWJFiveE/oeSbHk92C3GTo+behvRvWkNNgnwF6dv
6b5388DLXo//Cec9ZfpgXcBUaJwTL0O2ilgIC50kSsgMNvP2O9hUMJ92dIW+vt26
3Pav+283g4MJXRPnksW0pPYO+tpGKg3NnWuWqmA32WnLKlAL+ILtlRAbdwIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFOnIMkMN3OqcLVODuaoi/LKNYiztMB8GA1UdIwQY
MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt
Njg4ZDMzM2VkOWQ1LzEvNmNneVF3M2M2cHd0VTRPNXFpTDhzbzFpTE8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1
LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwMAwDBAM+TPgD
BAA+TPwDBADCVR8wDAMEAMJVTQMEBMJVQDAMAwQC1MF0AwQH1MEAMA0GCSqGSIb3
DQEBCwUAA4IBAQCpUmECoH3bYiMtFeDFRt7a39+wyf2f+HO7raS/CPp0JMXK84G7
BSlHgbKOo3zeedh1jCR1eFSfJOCfnd4eylbOBlmJBZXYY0eNt3rlusyiR9sQ5sM8
iBF87ry2UJlLGED73Elgr6NKepUD8JLeeH3rA5RRlwLW0gUBhOp2gZruDQDIcgob
/Ag4uem9l4/jteNTngCCU82vQUO1YOOIn2ZdvfQxKFgfe/zpRTiNKyumVEogCCiF
h9WrWWwsgrzS9y8Wn/wx51MF+ZX1d7oYJQzoyA/+UhNavWQf2hX0WW+id+8uxO7C
xB9uuEkZ/dSEjdsDLTujErolm3DeZAZJIXQ6
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:14 2025 by rpki-client on console.sobornost.net