Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/dTX8V27b3FZ8vwtYRtnPTsQ9bhg.roa
File: dTX8V27b3FZ8vwtYRtnPTsQ9bhg.roa (raw, json)
Hash identifier: 77xEsKoJwAS0zsMbL8sU52nye1oYIoAnIfCbqIAKy1c=
Subject key identifier: 75:35:FC:57:6E:DB:DC:56:7C:BF:0B:58:46:D9:CF:4E:C4:3D:6E:18
Certificate issuer: /CN=31242850cad41cdf75a3c9d60b21fca543f74384
Certificate serial: 01942369543A143F52434E8B046F0A372BA6
Authority key identifier: 31:24:28:50:CA:D4:1C:DF:75:A3:C9:D6:0B:21:FC:A5:43:F7:43:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/dTX8V27b3FZ8vwtYRtnPTsQ9bhg.roa
Signing time: Wed 01 Jan 2025 19:48:12 +0000
ROA not before: Wed 01 Jan 2025 19:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9136
IP address blocks: 5.159.24.0/21 maxlen: 21
62.176.224.0/19 maxlen: 19
91.186.32.0/19 maxlen: 19
92.118.192.0/22 maxlen: 22
185.72.232.0/22 maxlen: 22
213.162.128.0/19 maxlen: 19
2a01:580::/29 maxlen: 29
2a01:581:6::/48 maxlen: 48
2a01:581:7::/48 maxlen: 48
2a01:581:8::/48 maxlen: 48
2a01:581:9::/48 maxlen: 48
2a01:581:a::/48 maxlen: 48
2a01:581:b::/48 maxlen: 48
2a01:581:c::/48 maxlen: 48
2a01:581:d::/48 maxlen: 48
2a01:581:10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:54:3a:14:3f:52:43:4e:8b:04:6f:0a:37:2b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31242850cad41cdf75a3c9d60b21fca543f74384
Validity
Not Before: Jan 1 19:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7535fc576edbdc567cbf0b5846d9cf4ec43d6e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fe:7c:40:3e:69:6b:62:e0:51:62:56:63:31:
96:c6:9f:9e:c8:43:6b:c1:1f:85:f1:b8:4a:d5:9c:
89:c3:cc:d8:7a:29:33:3e:e7:f9:ed:68:ed:40:a8:
ea:25:d5:55:fb:02:f9:71:56:14:d7:79:d6:ee:30:
e6:d6:05:3e:a8:fc:0b:8a:c7:25:f9:cd:31:97:32:
4a:be:c6:4c:13:7f:9f:b1:92:7c:86:bb:f3:ae:79:
58:5d:21:2c:88:2d:17:2c:10:89:54:cf:ec:67:a9:
a6:19:16:ea:8d:70:27:b9:5b:6a:ca:9d:ef:c5:5d:
32:d8:cb:f5:f9:78:68:85:90:e8:18:bc:62:86:7b:
72:41:2c:74:df:a3:05:a8:ac:60:a4:0d:26:c5:3e:
fd:c2:46:5b:3e:39:50:4a:23:bf:c3:c2:40:b7:5c:
69:16:07:c2:9a:49:24:60:f2:95:12:93:28:f7:ab:
c1:59:3c:9b:cc:0f:34:4f:a3:cd:53:f0:52:4f:c4:
ac:aa:59:4e:e9:8f:6d:9b:6c:34:b0:f5:c9:86:2d:
0c:34:cf:82:36:b0:0b:fc:43:cc:4c:4a:8f:f8:5c:
4b:a9:07:af:69:4f:f8:b0:cd:b0:39:57:70:06:e5:
11:e7:5f:18:bf:d2:3a:b3:80:23:cf:27:ec:46:6c:
7b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:35:FC:57:6E:DB:DC:56:7C:BF:0B:58:46:D9:CF:4E:C4:3D:6E:18
X509v3 Authority Key Identifier:
keyid:31:24:28:50:CA:D4:1C:DF:75:A3:C9:D6:0B:21:FC:A5:43:F7:43:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/dTX8V27b3FZ8vwtYRtnPTsQ9bhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.24.0/21
62.176.224.0/19
91.186.32.0/19
92.118.192.0/22
185.72.232.0/22
213.162.128.0/19
IPv6:
2a01:580::/29
Signature Algorithm: sha256WithRSAEncryption
16:f3:49:96:b6:d7:09:c9:71:17:f3:8b:6a:75:e6:8b:d5:de:
6c:73:9a:44:cd:34:f4:8e:71:68:ba:35:1c:4e:74:78:a7:48:
60:9d:b8:be:0a:5b:ff:98:a4:29:5c:d9:f3:27:71:56:30:3b:
64:84:4f:30:8a:84:d8:87:1d:8a:08:5c:97:09:06:41:a6:3b:
31:08:73:3f:f7:95:5b:b9:f2:9c:ed:5d:af:92:d7:b2:5f:39:
1b:7b:cc:bb:c4:aa:df:b4:13:47:75:fe:ca:11:e6:ab:14:9b:
32:08:76:81:71:79:ac:68:29:ef:2a:ec:cc:af:e2:d7:5b:88:
12:3a:3d:10:00:1f:69:18:c7:24:97:57:65:ba:28:20:a0:f3:
01:31:64:73:a2:ad:c7:39:7b:14:30:51:54:37:12:84:e9:43:
d8:06:7a:06:a7:fb:e9:6e:ff:56:63:02:47:c7:10:a7:42:0e:
26:b6:7b:bb:7b:60:73:82:2a:89:69:c7:8b:96:4d:81:2e:0f:
94:5e:64:92:a2:88:19:df:49:9b:d3:9b:c9:c4:13:7d:62:52:
d9:6a:0c:f7:29:f8:ab:64:e1:6b:d1:1c:25:d6:11:28:2d:b1:
9d:bc:99:17:36:e8:a2:2d:ad:8c:58:15:b4:74:a7:02:a9:70:
a1:53:db:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:26 2025 by rpki-client on console.sobornost.net