Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/0I0Fa0O7Xqk8PAo5VRR9HwHSvFo.roa
File: 0I0Fa0O7Xqk8PAo5VRR9HwHSvFo.roa (raw, json)
Hash identifier: VDz1V6rPF+444e2I1uldEDzVvDGxCwDp5UCK6SCxm94=
Subject key identifier: D0:8D:05:6B:43:BB:5E:A9:3C:3C:0A:39:55:14:7D:1F:01:D2:BC:5A
Certificate issuer: /CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Certificate serial: 019566C3C1394F83FAF26C73731F42C7E47A
Authority key identifier: C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/0I0Fa0O7Xqk8PAo5VRR9HwHSvFo.roa
Signing time: Wed 05 Mar 2025 14:44:19 +0000
ROA not before: Wed 05 Mar 2025 14:44:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34594
IP address blocks: 5.39.128.0/19 maxlen: 19
5.43.160.0/19 maxlen: 19
37.60.128.0/21 maxlen: 21
37.205.96.0/20 maxlen: 20
80.80.48.0/20 maxlen: 24
85.114.32.0/19 maxlen: 19
85.114.32.0/20 maxlen: 20
85.114.33.0/24 maxlen: 24
89.17.0.0/19 maxlen: 19
89.201.128.0/17 maxlen: 17
89.201.175.0/24 maxlen: 24
95.178.128.0/17 maxlen: 17
151.252.208.0/21 maxlen: 21
151.252.224.0/19 maxlen: 19
151.252.224.0/20 maxlen: 20
176.222.32.0/20 maxlen: 20
185.10.40.0/23 maxlen: 23
185.10.42.0/24 maxlen: 24
185.18.60.0/22 maxlen: 22
2a02:ac8::/32 maxlen: 32
2a03:6100::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:66:c3:c1:39:4f:83:fa:f2:6c:73:73:1f:42:c7:e4:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Validity
Not Before: Mar 5 14:44:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d08d056b43bb5ea93c3c0a3955147d1f01d2bc5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9f:8b:d8:a7:8d:f2:df:1b:f4:9d:6e:17:05:
5a:ce:15:00:7d:8c:91:fc:00:d2:67:c2:9d:b7:ff:
d2:bd:f9:47:89:c2:96:fe:b0:41:28:e2:94:3f:70:
df:58:4c:33:c1:17:ee:cd:73:bf:ac:a9:08:cc:6c:
a8:23:06:2e:78:22:0d:85:14:fa:85:de:16:e0:e7:
11:56:ab:c1:34:b5:82:5f:51:28:ba:e1:c6:b6:37:
9f:62:dc:3f:a3:7f:0b:0a:7a:a1:1d:ae:ec:0b:0e:
2a:c2:91:1a:89:2b:16:82:0d:5c:d3:86:e5:68:cf:
9e:4f:a6:84:5a:69:49:8d:1d:95:9a:f6:26:50:b9:
cc:2d:f7:1d:cc:84:13:43:81:2e:a7:83:09:d0:f1:
61:9a:14:51:8d:2b:11:f5:b0:df:f6:e8:d9:2b:05:
9e:4f:58:2d:0e:a4:29:77:92:42:d3:56:9f:2d:1b:
10:ac:b6:21:12:3d:2b:cf:f3:32:b4:d6:c1:fa:2e:
5d:ae:b8:58:b6:2f:b1:51:79:9d:57:b3:a4:61:85:
1f:66:49:25:c5:03:a6:e1:7b:c8:67:4e:ec:64:90:
61:aa:4f:c4:94:0c:dc:1f:8b:5c:77:8d:3a:d2:00:
79:d2:2e:52:e1:72:43:67:26:89:58:15:2a:8b:e7:
37:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8D:05:6B:43:BB:5E:A9:3C:3C:0A:39:55:14:7D:1F:01:D2:BC:5A
X509v3 Authority Key Identifier:
keyid:C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/0I0Fa0O7Xqk8PAo5VRR9HwHSvFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.128.0/19
5.43.160.0/19
37.60.128.0/21
37.205.96.0/20
80.80.48.0/20
85.114.32.0/19
89.17.0.0/19
89.201.128.0/17
95.178.128.0/17
151.252.208.0/21
151.252.224.0/19
176.222.32.0/20
185.10.40.0-185.10.42.255
185.18.60.0/22
IPv6:
2a02:ac8::/32
2a03:6100::/32
Signature Algorithm: sha256WithRSAEncryption
1c:dc:0d:a5:b8:b4:38:d0:c6:7a:4c:ae:30:a8:4d:06:bb:4a:
25:70:94:9a:c9:15:f6:70:ea:f4:ce:34:3b:7f:85:79:68:a8:
2e:a9:fc:d8:d9:46:5d:b0:a1:1c:a3:8f:02:4f:5b:9e:20:62:
dc:bc:6c:10:59:93:f9:cb:7a:6e:e5:80:91:7c:af:7b:5b:5d:
f3:1e:34:17:35:c3:f7:b2:9b:71:b3:58:4d:4a:2f:ac:0b:c4:
97:2b:a0:1d:5a:63:c3:3a:24:cf:19:0a:24:81:d4:95:3a:b1:
15:1b:6e:f7:11:63:f9:b0:e2:65:87:a8:0d:69:bc:ef:6d:18:
ee:28:2d:a2:a3:79:31:48:6c:ad:a0:c7:c2:7f:5f:28:f6:2c:
b8:58:64:2b:7b:a5:97:e8:7d:75:67:76:2e:af:78:06:e8:f2:
fd:49:5c:56:3c:28:f4:b9:0d:37:5a:7b:0e:dd:66:05:cf:12:
3f:84:85:4f:77:5e:9e:a7:b5:57:60:64:bb:30:bc:76:7a:d5:
ab:3a:cd:a9:42:31:d9:07:de:a1:da:ad:39:c2:04:7b:b2:78:
b0:8f:07:a2:c5:7c:59:af:de:c0:08:c0:43:bb:03:1e:b3:ac:
ba:8c:8f:22:21:99:4c:8f:ae:35:60:e0:33:9a:fd:a6:a4:94:
92:50:9c:58
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net