Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/uHEuD8aXw5zCDwLiRdnodeHZ2Uo.roa
File: uHEuD8aXw5zCDwLiRdnodeHZ2Uo.roa (raw, json)
Hash identifier: KE7IJQ0OmDLAI5ALwObHQrWm600PXzNwoVNUMsRxY50=
Subject key identifier: B8:71:2E:0F:C6:97:C3:9C:C2:0F:02:E2:45:D9:E8:75:E1:D9:D9:4A
Certificate issuer: /CN=1690970ddbb7619cc82186ddb536eb4e8985d2de
Certificate serial: 01948D002CA65EFC1771637EDF1F4DEF3939
Authority key identifier: 16:90:97:0D:DB:B7:61:9C:C8:21:86:DD:B5:36:EB:4E:89:85:D2:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FpCXDdu3YZzIIYbdtTbrTomF0t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/uHEuD8aXw5zCDwLiRdnodeHZ2Uo.roa
Signing time: Wed 22 Jan 2025 07:53:06 +0000
ROA not before: Wed 22 Jan 2025 07:53:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42697
IP address blocks: 77.243.48.0/20 maxlen: 20
109.200.64.0/20 maxlen: 20
185.29.76.0/24 maxlen: 24
185.29.77.0/24 maxlen: 24
185.29.78.0/23 maxlen: 23
2a03:dc80::/29 maxlen: 32
2a03:dc82::/32 maxlen: 32
2a03:dc84::/32 maxlen: 32
2a03:dc86::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8d:00:2c:a6:5e:fc:17:71:63:7e:df:1f:4d:ef:39:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1690970ddbb7619cc82186ddb536eb4e8985d2de
Validity
Not Before: Jan 22 07:53:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b8712e0fc697c39cc20f02e245d9e875e1d9d94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:52:1c:9e:5f:3c:7b:6e:5e:8e:58:be:c1:0a:
e7:7a:72:34:fb:1f:ea:f7:06:6d:16:5f:d0:4b:fe:
22:fc:5d:bf:ee:94:95:66:7f:1e:b8:16:b9:0d:68:
a4:e8:7d:19:ab:ac:79:e4:1e:8d:e7:27:30:da:a7:
fc:04:f3:fe:be:fc:1e:40:56:e9:09:2b:77:da:05:
85:d5:28:fa:b8:d1:8c:dc:f4:d2:61:3d:fe:46:9e:
73:87:51:65:29:26:f9:2e:c1:f3:ba:cb:3e:bc:09:
2b:03:43:e6:47:41:c1:f6:d3:85:a7:41:25:2d:74:
5b:98:91:52:c3:81:fd:ef:50:b5:5f:ec:69:8c:50:
6a:4e:7b:bf:39:e4:94:32:2c:c8:a1:d7:3f:c9:39:
57:7e:58:23:fe:5a:ab:3a:41:9c:4f:54:b6:ce:37:
ba:2b:b5:ab:79:51:55:14:fc:c5:6d:d6:1f:30:20:
9b:65:db:63:7c:88:79:a3:e7:85:68:99:bd:08:fb:
58:ce:92:36:d7:1e:22:d3:82:74:43:3b:03:7c:78:
b8:9d:2e:a7:cc:4f:33:9e:93:26:eb:d7:6e:34:95:
87:16:94:7b:5b:6b:f1:9a:01:62:6e:00:3d:29:86:
9e:a6:06:62:56:72:fe:93:93:3d:1a:af:13:ba:e1:
e2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:71:2E:0F:C6:97:C3:9C:C2:0F:02:E2:45:D9:E8:75:E1:D9:D9:4A
X509v3 Authority Key Identifier:
keyid:16:90:97:0D:DB:B7:61:9C:C8:21:86:DD:B5:36:EB:4E:89:85:D2:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FpCXDdu3YZzIIYbdtTbrTomF0t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/uHEuD8aXw5zCDwLiRdnodeHZ2Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/FpCXDdu3YZzIIYbdtTbrTomF0t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.48.0/20
109.200.64.0/20
185.29.76.0/22
IPv6:
2a03:dc80::/29
Signature Algorithm: sha256WithRSAEncryption
07:02:18:7b:ce:d9:b2:3b:21:1b:9a:a5:fd:a6:f3:53:ed:95:
74:85:a8:b9:cf:62:b4:80:b8:99:59:fa:56:f0:84:19:51:9c:
95:42:f8:95:62:c4:3e:08:a5:1d:a9:4f:d6:89:8c:ba:43:64:
ac:e9:b8:a0:95:af:64:d0:49:32:d6:53:b3:a1:34:3c:e4:2d:
df:c4:f6:95:0d:26:01:86:98:f6:b9:7b:2b:c0:80:80:70:ea:
9f:1c:06:be:74:51:f0:1d:83:ab:ef:95:ad:64:f2:81:0c:0b:
c1:81:cb:89:43:fc:9b:d9:cd:bc:65:29:e5:c4:91:7d:39:74:
fd:ff:06:bd:c4:99:9d:79:14:2b:72:38:cc:9d:b5:47:c0:4c:
be:2b:59:6d:91:14:5a:e3:93:ee:c4:ea:7d:e3:e2:89:e9:37:
bc:26:c3:42:5d:21:ea:eb:09:ac:71:f0:e3:09:89:a7:98:0c:
13:95:24:e3:ba:19:0f:9b:b4:a6:05:bf:4f:47:ea:dc:c6:9b:
52:46:99:b5:d6:fb:ef:42:30:bd:e6:3f:fe:6c:93:c8:b6:0e:
2b:35:84:3d:c3:82:48:73:1d:3c:16:71:51:fe:9a:4d:74:64:
4a:5e:e6:f1:cb:70:08:15:ad:f3:db:f1:ba:bd:45:3d:61:7a:
f2:9a:93:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:58 2025 by rpki-client on console.sobornost.net