Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/0fbd8d-820d-4979-81a3-8be9571eb10d/1/pzUgONhqi68QY0VvGpWltJYJNYw.roa
File: pzUgONhqi68QY0VvGpWltJYJNYw.roa (raw, json)
Hash identifier: Uq9NSVRaA6mFyoWNmYT8pc0z0L/fxwW0Qlau9RSv6Cw=
Subject key identifier: A7:35:20:38:D8:6A:8B:AF:10:63:45:6F:1A:95:A5:B4:96:09:35:8C
Certificate issuer: /CN=c69ceb1240844cde8a168897e47c1df5d6ecbf21
Certificate serial: 019422FB801A0C30E9E511DF2B220F02418D
Authority key identifier: C6:9C:EB:12:40:84:4C:DE:8A:16:88:97:E4:7C:1D:F5:D6:EC:BF:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xpzrEkCETN6KFoiX5Hwd9dbsvyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/0fbd8d-820d-4979-81a3-8be9571eb10d/1/pzUgONhqi68QY0VvGpWltJYJNYw.roa
Signing time: Wed 01 Jan 2025 17:48:15 +0000
ROA not before: Wed 01 Jan 2025 17:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49680
IP address blocks: 95.142.224.0/24 maxlen: 24
95.142.225.0/24 maxlen: 24
95.142.226.0/24 maxlen: 24
95.142.227.0/24 maxlen: 24
95.142.228.0/24 maxlen: 24
95.142.229.0/24 maxlen: 24
95.142.230.0/24 maxlen: 24
95.142.233.0/24 maxlen: 24
95.142.234.0/24 maxlen: 24
95.142.235.0/24 maxlen: 24
95.142.236.0/24 maxlen: 24
95.142.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:80:1a:0c:30:e9:e5:11:df:2b:22:0f:02:41:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c69ceb1240844cde8a168897e47c1df5d6ecbf21
Validity
Not Before: Jan 1 17:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a7352038d86a8baf1063456f1a95a5b49609358c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:65:c2:41:81:48:3c:6d:73:dd:56:a0:ff:78:
06:99:98:c1:da:bf:6d:60:c5:67:81:b0:09:94:97:
3d:72:eb:06:b3:de:78:ea:76:37:35:e3:15:12:5e:
5c:d7:2d:75:c2:69:66:00:c1:28:28:59:fa:da:17:
5e:16:60:b2:72:12:60:95:85:41:ea:10:d5:ad:8e:
da:46:e1:35:07:73:ef:c3:a4:ca:e9:a7:43:6b:76:
5b:c6:d4:4f:5d:3b:8a:7b:b5:b4:d4:db:2f:21:a3:
2c:a8:40:2b:ff:05:97:94:66:51:3a:c0:c6:e4:99:
ea:89:1c:f0:c7:5d:80:5c:c3:d8:2d:2d:90:94:db:
9d:e3:ca:1d:53:4e:d6:09:bd:f9:e0:75:a7:1f:f1:
80:3e:d8:5c:d5:c6:e4:fe:f9:d2:c1:12:9a:2b:a8:
a6:cb:8f:7f:fb:b8:15:e0:cc:14:77:31:97:17:e7:
ba:a2:03:30:f5:2f:1d:12:27:33:b2:d6:1e:30:5a:
70:72:6d:e2:69:5c:c0:a3:7d:1a:87:9c:fe:2e:3f:
fc:9a:9d:db:c0:1b:f7:a8:25:69:0a:33:ee:03:a6:
88:8e:00:70:d5:25:3d:20:b7:32:cb:f6:1e:01:57:
5b:dd:6a:9c:f7:60:26:f4:29:4c:47:c7:5d:be:3f:
e7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:35:20:38:D8:6A:8B:AF:10:63:45:6F:1A:95:A5:B4:96:09:35:8C
X509v3 Authority Key Identifier:
keyid:C6:9C:EB:12:40:84:4C:DE:8A:16:88:97:E4:7C:1D:F5:D6:EC:BF:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xpzrEkCETN6KFoiX5Hwd9dbsvyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/0fbd8d-820d-4979-81a3-8be9571eb10d/1/pzUgONhqi68QY0VvGpWltJYJNYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/0fbd8d-820d-4979-81a3-8be9571eb10d/1/xpzrEkCETN6KFoiX5Hwd9dbsvyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.142.224.0-95.142.230.255
95.142.233.0-95.142.237.255
Signature Algorithm: sha256WithRSAEncryption
9a:1e:c6:cb:a0:3d:7f:7e:df:26:cc:70:3a:80:03:45:90:9c:
0b:c8:79:99:e2:e0:3a:3c:9f:3d:3f:7d:b0:b0:be:32:96:0f:
d6:fc:74:60:7b:fb:29:1d:4c:d1:21:da:e2:3d:97:d8:99:92:
58:70:72:8f:76:20:32:87:53:3f:19:73:10:8e:39:e2:bd:ed:
f1:2e:4f:94:3e:0a:3b:94:aa:cf:73:e9:c7:e6:09:ae:6b:d9:
f1:e9:f2:54:d4:53:e9:54:b6:22:75:bf:a5:00:90:a4:fb:08:
af:8e:69:30:e0:38:f8:14:76:66:39:bc:ea:29:1b:65:ed:87:
b1:35:1e:99:e8:93:bc:06:af:5f:1b:d0:11:5f:55:e1:71:e7:
50:c1:6e:68:71:c0:85:2e:4d:1b:01:c5:a6:b1:b4:a8:a1:d7:
0f:16:de:1a:df:ef:fd:1d:ee:5d:d4:16:15:39:52:98:50:79:
91:a1:c5:06:1a:4b:d6:d4:eb:a5:45:a0:0a:d1:1a:b0:2f:65:
46:2f:a6:ad:1b:d5:8e:f4:99:56:f6:e9:86:9e:46:cf:96:3b:
6f:67:53:d7:81:9d:8f:1a:e4:7e:58:1a:3e:b9:df:55:2b:11:
ed:aa:bc:9a:83:81:d5:39:fa:6e:f7:f5:45:e0:b0:62:27:2f:
4c:4f:67:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net