Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/48f1c6-1134-4969-af60-d017c1759639/1/LhDegbR4xFlO6pz_ANDkPzTlFGk.roa
File: LhDegbR4xFlO6pz_ANDkPzTlFGk.roa (raw, json)
Hash identifier: xMGN0Z+cCcbH3arqVxwuW4j6b8JSM83DRHp4H/CfXzQ=
Subject key identifier: 2E:10:DE:81:B4:78:C4:59:4E:EA:9C:FF:00:D0:E4:3F:34:E5:14:69
Certificate issuer: /CN=533eead413a1705fbfcb2adbe90c69f055e275da
Certificate serial: 01942368CB94E6627C857215CA9C8A94321B
Authority key identifier: 53:3E:EA:D4:13:A1:70:5F:BF:CB:2A:DB:E9:0C:69:F0:55:E2:75:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uz7q1BOhcF-_yyrb6Qxp8FXiddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/48f1c6-1134-4969-af60-d017c1759639/1/LhDegbR4xFlO6pz_ANDkPzTlFGk.roa
Signing time: Wed 01 Jan 2025 19:47:37 +0000
ROA not before: Wed 01 Jan 2025 19:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12637
IP address blocks: 149.3.144.0/21 maxlen: 24
185.77.84.0/22 maxlen: 24
185.205.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:cb:94:e6:62:7c:85:72:15:ca:9c:8a:94:32:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533eead413a1705fbfcb2adbe90c69f055e275da
Validity
Not Before: Jan 1 19:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e10de81b478c4594eea9cff00d0e43f34e51469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ff:58:7d:dc:8c:62:51:77:f0:c8:d4:25:04:
dc:17:ed:b5:aa:e4:da:fc:d2:1c:23:07:7b:a2:e6:
ef:42:eb:42:75:f2:30:34:86:5d:eb:b6:a5:32:27:
a9:0d:03:8f:16:ac:df:d0:04:a5:10:dc:13:43:ea:
79:0f:59:db:e9:56:c5:0e:04:7f:94:d1:77:10:d1:
bd:db:a1:62:aa:b9:f2:2a:ef:fc:5e:97:7b:f5:8b:
72:e8:98:3b:44:c3:af:15:09:59:33:4f:44:2b:bb:
69:ee:9b:64:1d:58:53:98:d9:15:ce:e1:77:2e:20:
01:76:01:12:d7:a6:aa:65:b2:59:cb:51:93:ab:00:
be:80:db:81:72:45:59:6e:f0:8e:d3:1b:f0:25:64:
c3:31:c9:ce:6d:7e:78:bc:21:92:36:12:78:71:7d:
74:31:2e:cd:f2:40:23:02:96:26:86:94:64:33:e3:
b7:49:49:3d:8d:30:d5:d1:0d:25:a9:2e:43:45:81:
d0:7b:b9:7e:2a:db:6e:40:92:74:ff:42:31:d6:8b:
90:4a:07:55:d6:73:87:28:e8:b3:b7:3e:3c:80:df:
1a:1c:20:ee:74:10:a2:8e:87:a5:59:f8:ae:b4:4e:
bb:ba:86:52:2f:e8:61:80:c5:ee:4a:d1:a6:d3:d4:
2f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:10:DE:81:B4:78:C4:59:4E:EA:9C:FF:00:D0:E4:3F:34:E5:14:69
X509v3 Authority Key Identifier:
keyid:53:3E:EA:D4:13:A1:70:5F:BF:CB:2A:DB:E9:0C:69:F0:55:E2:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uz7q1BOhcF-_yyrb6Qxp8FXiddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/48f1c6-1134-4969-af60-d017c1759639/1/LhDegbR4xFlO6pz_ANDkPzTlFGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/48f1c6-1134-4969-af60-d017c1759639/1/Uz7q1BOhcF-_yyrb6Qxp8FXiddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.3.144.0/21
185.77.84.0/22
185.205.40.0/22
Signature Algorithm: sha256WithRSAEncryption
78:1e:26:f6:f0:e9:53:d2:e1:c9:60:f4:d9:09:28:0a:d1:75:
14:9e:ee:86:ae:5a:6e:17:55:87:b3:ee:28:2c:15:08:d8:b0:
ec:df:e5:b2:bf:56:59:63:a0:c7:8a:fb:9d:46:47:53:3f:32:
94:c4:1a:9b:74:f1:ab:69:35:0d:9b:8c:8f:18:e9:5b:0c:75:
58:92:49:5e:33:42:90:fa:8d:40:3f:53:c9:5c:b8:93:d6:09:
09:7f:87:a0:4e:28:b7:65:22:cc:af:3d:0a:e1:75:02:24:da:
19:ad:12:b2:32:2c:51:09:01:b9:64:d7:39:a6:5c:c9:06:88:
13:ac:00:ab:11:74:6d:71:4c:f3:90:99:70:a5:6c:8b:53:6d:
21:c1:b3:ad:0e:1d:ac:52:81:44:fa:28:7f:c8:b5:81:b4:7d:
5c:f6:9f:e7:5e:fa:7c:40:8e:ef:0a:44:96:eb:16:4a:31:8e:
b7:7b:16:96:59:b6:77:73:85:eb:78:da:c8:05:d9:3d:cf:54:
65:68:bf:e4:da:ee:f9:b5:b3:85:20:8c:3e:47:5b:a0:7e:ca:
de:8f:3c:e4:ab:fc:13:7b:3b:e4:a0:d8:4b:fc:85:2c:f9:3b:
b3:59:77:d4:d4:61:fd:ce:56:ee:9e:5a:ce:5d:1b:ed:b9:6a:
98:e2:b9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net