Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/54a65b-cf0b-498f-80d4-bc584b36cbef/1/HmjrrvNNU1yqGq3_xmYXZ7xuiFg.roa
File: HmjrrvNNU1yqGq3_xmYXZ7xuiFg.roa (raw, json)
Hash identifier: Kbry8XJIb38Dn/hCakpXS7cXVbuwiYg0BYs5Jt2kXbk=
Subject key identifier: 1E:68:EB:AE:F3:4D:53:5C:AA:1A:AD:FF:C6:66:17:67:BC:6E:88:58
Certificate issuer: /CN=79e24b47f8943cad6e04c9f646cb1077c140fdfb
Certificate serial: 0196101DA75B6AA25971B17039708BDEAE93
Authority key identifier: 79:E2:4B:47:F8:94:3C:AD:6E:04:C9:F6:46:CB:10:77:C1:40:FD:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eeJLR_iUPK1uBMn2RssQd8FA_fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/54a65b-cf0b-498f-80d4-bc584b36cbef/1/HmjrrvNNU1yqGq3_xmYXZ7xuiFg.roa
Signing time: Mon 07 Apr 2025 11:58:20 +0000
ROA not before: Mon 07 Apr 2025 11:58:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42532
IP address blocks: 77.73.64.0/23 maxlen: 23
77.73.71.0/24 maxlen: 24
94.242.48.0/24 maxlen: 24
94.242.49.0/24 maxlen: 24
94.242.58.0/23 maxlen: 23
94.242.63.0/24 maxlen: 24
185.22.172.0/22 maxlen: 22
185.145.245.0/24 maxlen: 24
185.155.119.0/24 maxlen: 24
185.242.104.0/22 maxlen: 22
185.242.106.0/23 maxlen: 23
212.6.44.0/24 maxlen: 24
2a0c:16c0::/32 maxlen: 32
2a0c:16c1::/32 maxlen: 32
2a0c:16c2::/32 maxlen: 32
2a0c:16c3::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:1d:a7:5b:6a:a2:59:71:b1:70:39:70:8b:de:ae:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79e24b47f8943cad6e04c9f646cb1077c140fdfb
Validity
Not Before: Apr 7 11:58:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e68ebaef34d535caa1aadffc6661767bc6e8858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ce:3a:bc:56:e1:28:06:b5:59:f8:3c:c2:52:
14:75:1b:d2:b3:76:bd:45:3f:58:a1:ad:b5:59:7b:
8a:e7:a7:6d:ba:b1:de:68:67:7e:18:cc:2a:bb:3b:
eb:d0:3c:34:4c:76:02:30:18:61:d7:30:76:12:c0:
d5:22:2b:1f:e7:4b:77:45:6b:45:43:8f:f5:dc:eb:
d4:cf:b6:15:c0:f3:25:16:b3:ad:a9:bf:00:23:75:
d8:21:20:1e:35:91:2d:23:30:38:49:bf:f2:e5:80:
b6:90:c0:0c:b5:31:d9:79:f7:22:e4:0c:2a:ba:00:
98:a6:de:32:bd:9f:63:07:06:fd:a7:e9:93:fc:76:
60:54:e0:59:fd:cd:c2:d5:eb:cc:94:0d:52:29:8f:
dd:ae:bd:7c:ee:cc:63:7f:15:82:48:6a:ae:4f:58:
b7:d3:ad:44:7b:d1:d9:b6:a1:ba:3d:2b:6f:4d:9a:
49:2a:f4:86:bb:86:72:ff:31:50:df:1f:d2:7c:c7:
85:ae:b3:6d:78:e0:bf:08:00:f6:98:09:79:f0:0d:
96:ec:48:f5:30:a4:2f:0a:3b:a8:52:52:7c:a8:30:
69:cd:10:62:30:56:58:d1:01:11:f6:08:48:03:ab:
ab:53:14:7b:42:33:7b:fc:21:e8:2d:fe:a7:d1:20:
35:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:68:EB:AE:F3:4D:53:5C:AA:1A:AD:FF:C6:66:17:67:BC:6E:88:58
X509v3 Authority Key Identifier:
keyid:79:E2:4B:47:F8:94:3C:AD:6E:04:C9:F6:46:CB:10:77:C1:40:FD:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eeJLR_iUPK1uBMn2RssQd8FA_fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/54a65b-cf0b-498f-80d4-bc584b36cbef/1/HmjrrvNNU1yqGq3_xmYXZ7xuiFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/54a65b-cf0b-498f-80d4-bc584b36cbef/1/eeJLR_iUPK1uBMn2RssQd8FA_fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.64.0/23
77.73.71.0/24
94.242.48.0/23
94.242.58.0/23
94.242.63.0/24
185.22.172.0/22
185.145.245.0/24
185.155.119.0/24
185.242.104.0/22
212.6.44.0/24
IPv6:
2a0c:16c0::/30
Signature Algorithm: sha256WithRSAEncryption
4d:43:be:f9:ab:e1:30:c3:32:1e:69:f3:db:ee:fd:dc:4b:60:
5a:da:26:84:6b:82:c9:36:c3:97:f4:fa:2d:0a:cb:fe:12:d4:
49:52:0d:10:2a:a7:75:70:a3:90:13:bb:11:e4:d9:26:de:3c:
0c:68:ba:85:76:ff:6e:f0:a0:08:88:79:29:a1:e6:f7:f2:ee:
f3:96:9c:32:ac:b8:8b:f2:e6:6c:aa:2f:f1:16:ca:c2:ed:4e:
12:56:89:df:33:5f:75:79:09:05:99:30:40:dc:ad:2c:bf:99:
ec:73:06:d2:93:40:7f:25:ba:04:29:3a:0f:09:bb:c5:eb:70:
96:7e:5d:f1:8f:f1:6a:97:fb:1c:89:58:46:cf:da:c0:57:94:
d5:da:a5:56:a8:8e:d5:8d:11:d5:7b:ef:6a:1d:db:8b:70:f0:
8a:ac:a5:fe:03:11:e5:1c:80:c2:07:f3:e3:ac:7f:0e:99:da:
ee:93:2c:0a:df:d0:8a:96:ea:a5:5e:43:b6:b9:d3:e2:f5:d7:
41:5c:fa:0a:12:2e:3b:39:97:bc:a7:41:db:33:b3:b8:9e:96:
77:52:e7:ed:aa:93:f6:a0:8c:39:20:f2:36:8a:9a:27:44:9a:
8d:20:53:e9:b2:f6:bd:34:0d:fa:91:48:e2:26:d0:a1:26:e0:
d3:2f:ae:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:31 2025 by rpki-client on console.sobornost.net