Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/5d4d2f-ba18-4211-bc9b-ee8831924b32/1/5hRdogkirGENwV4J_9yZhIM72Qg.roa
File: 5hRdogkirGENwV4J_9yZhIM72Qg.roa (raw, json)
Hash identifier: J4uFgSp054qa3rungh3dVcHSOU8TUTMoE74wGhQ37mY=
Subject key identifier: E6:14:5D:A2:09:22:AC:61:0D:C1:5E:09:FF:DC:99:84:83:3B:D9:08
Certificate issuer: /CN=66d9758b8c8c373583c0575166d62343600c7f01
Certificate serial: 01953D4934F32A5B38ADEBA79EA8AE76A404
Authority key identifier: 66:D9:75:8B:8C:8C:37:35:83:C0:57:51:66:D6:23:43:60:0C:7F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ztl1i4yMNzWDwFdRZtYjQ2AMfwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/5d4d2f-ba18-4211-bc9b-ee8831924b32/1/5hRdogkirGENwV4J_9yZhIM72Qg.roa
Signing time: Tue 25 Feb 2025 13:26:02 +0000
ROA not before: Tue 25 Feb 2025 13:26:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47302
IP address blocks: 91.206.24.0/23 maxlen: 23
149.126.0.0/21 maxlen: 21
185.174.216.0/22 maxlen: 22
194.126.200.0/24 maxlen: 24
2001:67c:234::/48 maxlen: 48
2a01:ab20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3d:49:34:f3:2a:5b:38:ad:eb:a7:9e:a8:ae:76:a4:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d9758b8c8c373583c0575166d62343600c7f01
Validity
Not Before: Feb 25 13:26:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6145da20922ac610dc15e09ffdc9984833bd908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8d:f6:78:ff:08:cb:c2:d9:cd:11:3f:b4:e4:
a2:e3:53:1c:60:c8:23:96:5d:33:ae:31:f9:b1:21:
f3:7c:96:3d:9c:5b:0f:0a:15:a1:a3:d7:db:cf:cc:
02:d0:46:1b:9b:5d:a3:7d:13:73:2f:ea:a1:19:77:
ed:05:65:ce:74:81:53:b5:fe:41:e8:a2:23:48:d1:
dc:1b:e4:2b:f2:31:80:93:23:ac:98:ff:a0:42:d9:
17:ce:26:70:aa:89:9b:79:3f:a2:b8:93:32:ef:18:
90:08:f9:32:fb:fe:cf:0e:06:ac:7e:87:61:d8:a9:
f5:36:6b:fb:e0:ea:ad:da:34:58:5c:46:68:0d:1e:
1a:5d:e4:8e:18:a9:40:11:f9:66:22:91:7e:15:f2:
42:a7:33:d3:49:f2:1d:f8:ff:64:f6:20:0c:ae:7c:
fc:93:3c:57:0b:2f:e2:c5:2f:e7:be:5b:18:74:88:
f3:0b:8a:8a:50:c1:14:36:be:79:4b:86:2a:c8:eb:
fe:d5:07:22:64:d7:b5:be:39:98:89:d7:3e:2b:84:
f2:71:3e:00:c5:0a:a5:f1:83:ba:00:2d:7b:4a:3f:
3e:91:6f:8f:9c:46:ea:77:ad:07:1a:3b:52:05:b0:
59:70:03:f3:7a:c4:ab:a6:87:4a:26:10:5d:18:c4:
5b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:14:5D:A2:09:22:AC:61:0D:C1:5E:09:FF:DC:99:84:83:3B:D9:08
X509v3 Authority Key Identifier:
keyid:66:D9:75:8B:8C:8C:37:35:83:C0:57:51:66:D6:23:43:60:0C:7F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ztl1i4yMNzWDwFdRZtYjQ2AMfwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/5d4d2f-ba18-4211-bc9b-ee8831924b32/1/5hRdogkirGENwV4J_9yZhIM72Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/5d4d2f-ba18-4211-bc9b-ee8831924b32/1/Ztl1i4yMNzWDwFdRZtYjQ2AMfwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.24.0/23
149.126.0.0/21
185.174.216.0/22
194.126.200.0/24
IPv6:
2001:67c:234::/48
2a01:ab20::/32
Signature Algorithm: sha256WithRSAEncryption
4d:83:f3:39:32:c5:cb:0c:04:bf:8b:4d:c7:91:71:92:85:09:
76:d2:1b:48:9f:27:c2:6a:06:54:19:6f:6a:09:9a:e9:aa:73:
b4:b7:f4:7f:40:f1:d8:7e:2e:ab:0d:5c:23:c9:35:cc:7f:ca:
58:f5:1f:9b:c7:19:37:40:20:37:5d:5f:67:5d:1c:cd:1d:a5:
21:c9:0a:67:2b:09:b1:eb:ca:73:d1:97:8e:f6:06:d5:d4:89:
ea:0a:ff:c2:93:e4:47:8c:fa:e5:11:86:26:3a:85:27:1d:54:
d9:6e:03:55:01:90:68:19:f6:98:97:93:d8:a9:5e:e4:78:29:
3b:f8:30:ee:a0:57:da:61:01:39:cd:b7:a5:fa:50:7d:ae:f8:
7e:1e:1d:c8:9f:ea:b5:60:2a:3f:80:58:a4:8a:ad:7e:9f:ab:
5f:fd:87:6c:d8:5d:38:f2:6b:a4:8b:8f:97:df:cf:d3:e8:00:
74:8d:42:6d:a9:fb:75:27:da:6b:1d:70:9a:1f:3f:14:72:ed:
e9:0d:83:9a:e4:3d:d1:e9:b3:b8:14:50:b3:a5:b1:b9:84:19:
2a:5d:b6:b2:3b:ab:37:c4:cc:44:d1:96:c4:53:44:87:77:cb:
bf:62:39:47:1a:c9:a8:71:ce:57:9f:15:51:38:44:4e:11:82:
87:3d:61:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net