Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/5c06c3-b44f-4be9-8b2e-5eebe35352e8/1/z09mXVSXSd7UAacEzfV20oFsmYY.roa
File: z09mXVSXSd7UAacEzfV20oFsmYY.roa (raw, json)
Hash identifier: 1yRcdJ+SBO6uBICs/lRiYWbJ7McXCDERo9p2CuxM7s0=
Subject key identifier: CF:4F:66:5D:54:97:49:DE:D4:01:A7:04:CD:F5:76:D2:81:6C:99:86
Certificate issuer: /CN=07730862dfb740166df453fb6e9c8508af5d9c56
Certificate serial: 0195FB140BA6137B3CDE0D7318514549BC35
Authority key identifier: 07:73:08:62:DF:B7:40:16:6D:F4:53:FB:6E:9C:85:08:AF:5D:9C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B3MIYt-3QBZt9FP7bpyFCK9dnFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/5c06c3-b44f-4be9-8b2e-5eebe35352e8/1/z09mXVSXSd7UAacEzfV20oFsmYY.roa
Signing time: Thu 03 Apr 2025 09:55:49 +0000
ROA not before: Thu 03 Apr 2025 09:55:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19399
IP address blocks: 131.205.0.0/16 maxlen: 16
136.155.0.0/16 maxlen: 16
147.180.0.0/16 maxlen: 16
159.38.0.0/16 maxlen: 16
192.44.240.0/21 maxlen: 21
192.44.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fb:14:0b:a6:13:7b:3c:de:0d:73:18:51:45:49:bc:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07730862dfb740166df453fb6e9c8508af5d9c56
Validity
Not Before: Apr 3 09:55:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf4f665d549749ded401a704cdf576d2816c9986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:44:b7:b2:47:70:c2:07:2f:87:83:bc:eb:36:
ef:a0:43:93:6e:7a:cd:94:2c:07:0e:29:7e:83:1b:
6f:ef:09:66:65:e4:89:ef:58:5a:ef:81:39:6b:5b:
56:82:e7:b9:a5:0a:3d:4f:0f:cf:0b:59:97:9c:56:
4c:96:d2:36:e3:06:89:7f:1f:f0:b5:ad:f9:5c:b6:
12:db:0f:1a:4c:c3:18:26:7f:65:5e:f5:ac:bf:e2:
fa:be:2c:7a:2f:c9:05:be:d7:14:4a:8e:b2:66:2f:
81:70:27:b9:c6:34:0e:79:bd:4b:96:62:5b:2f:7d:
38:08:67:f0:1b:2c:ab:61:35:98:5d:5f:c0:46:f3:
cc:72:9d:81:63:2d:45:f3:2e:26:69:05:41:99:14:
62:e3:9d:84:fd:5e:a5:7c:bf:62:6c:00:4e:1d:3a:
5f:18:34:a1:a7:68:dc:a4:fa:77:88:7c:81:fa:4c:
e2:8b:cf:f9:c2:f3:59:f9:84:00:89:bc:5c:ca:e0:
92:94:61:73:61:40:0a:e7:d7:ab:08:75:03:f1:3a:
18:76:c5:b8:2f:bd:59:ce:5d:e6:24:50:ee:30:a2:
64:86:93:ab:b9:9b:80:58:a0:96:75:49:15:ac:77:
ff:12:08:f8:56:86:ea:c8:c6:df:e1:cc:43:71:b5:
6e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4F:66:5D:54:97:49:DE:D4:01:A7:04:CD:F5:76:D2:81:6C:99:86
X509v3 Authority Key Identifier:
keyid:07:73:08:62:DF:B7:40:16:6D:F4:53:FB:6E:9C:85:08:AF:5D:9C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B3MIYt-3QBZt9FP7bpyFCK9dnFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/5c06c3-b44f-4be9-8b2e-5eebe35352e8/1/z09mXVSXSd7UAacEzfV20oFsmYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/5c06c3-b44f-4be9-8b2e-5eebe35352e8/1/B3MIYt-3QBZt9FP7bpyFCK9dnFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.205.0.0/16
136.155.0.0/16
147.180.0.0/16
159.38.0.0/16
192.44.240.0-192.44.251.255
Signature Algorithm: sha256WithRSAEncryption
c8:73:50:da:96:ae:50:05:5c:0d:ae:1a:b0:1a:a4:36:4f:06:
c9:21:57:cc:a4:af:7e:56:96:be:9d:70:42:f1:97:ce:f9:65:
a7:e2:e2:df:2f:86:43:6d:4d:14:8e:d2:cf:8d:87:96:f2:c8:
a3:93:a8:71:90:0b:91:a2:db:67:0b:6b:9d:6d:f4:8e:df:30:
3c:f6:16:df:ff:ab:a0:2f:e4:f0:bd:be:10:1d:04:98:8b:ba:
2f:e2:20:de:03:26:36:62:b5:ad:d4:8b:90:5d:65:6d:0d:39:
42:32:c2:1d:7b:c2:78:85:e7:dd:10:85:63:39:87:d1:5d:bc:
87:9b:88:a3:ad:f8:61:79:45:31:bc:fe:69:c8:1d:a9:1d:53:
4b:9a:bd:46:06:f5:b6:cc:ad:4a:85:d6:12:be:ab:3e:2a:1f:
35:0d:ac:b8:bb:85:54:5f:52:13:7d:a5:30:cd:a1:f3:88:91:
34:1d:4c:f4:b4:84:88:c9:bb:6c:f4:bf:50:44:ef:fc:70:b3:
f4:b0:a5:6c:42:17:2b:ef:a8:e6:6d:88:03:c7:01:04:d5:35:
1e:5b:f0:29:3e:e4:25:3d:64:ed:73:19:91:7a:af:53:5b:97:
3e:6f:41:0b:f8:76:d2:2d:37:41:80:df:86:0f:58:a1:ba:28:
49:73:3c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net