Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/Ue3VZrB8a4EG4I_RXK87Uw3OtZs.roa
File: Ue3VZrB8a4EG4I_RXK87Uw3OtZs.roa (raw, json)
Hash identifier: UZno3qoAs6BNi7dyZDbKw3CxcQ+pse82BKcQlZP0pfM=
Subject key identifier: 51:ED:D5:66:B0:7C:6B:81:06:E0:8F:D1:5C:AF:3B:53:0D:CE:B5:9B
Certificate issuer: /CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Certificate serial: 0195EB9A8EE5AF34D8BEE8A115346C0DC287
Authority key identifier: F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/Ue3VZrB8a4EG4I_RXK87Uw3OtZs.roa
Signing time: Mon 31 Mar 2025 09:48:49 +0000
ROA not before: Mon 31 Mar 2025 09:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35244
IP address blocks: 46.128.0.0/16 maxlen: 16
77.47.0.0/17 maxlen: 17
83.243.112.0/21 maxlen: 21
85.233.32.0/19 maxlen: 19
88.215.64.0/18 maxlen: 18
95.157.0.0/18 maxlen: 18
109.125.64.0/18 maxlen: 18
185.169.204.0/22 maxlen: 22
193.25.118.0/23 maxlen: 23
194.105.96.0/21 maxlen: 24
195.46.44.0/22 maxlen: 24
195.234.128.0/24 maxlen: 24
2001:4c50::/32 maxlen: 32
2a02:2455::/33 maxlen: 33
2a02:2457:300::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:9a:8e:e5:af:34:d8:be:e8:a1:15:34:6c:0d:c2:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Validity
Not Before: Mar 31 09:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51edd566b07c6b8106e08fd15caf3b530dceb59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:30:3b:e3:e5:8e:bd:e5:2c:64:31:12:99:e8:
64:78:e0:75:e8:8e:12:07:16:8c:2e:eb:6b:25:5a:
67:8c:0e:ef:62:f6:c5:75:bc:74:a9:b4:e2:db:c0:
2d:76:67:c4:be:97:aa:c9:62:7f:f4:8e:ac:7e:c6:
c1:4c:c9:61:92:1f:43:f1:2e:15:ab:ea:cb:09:9e:
89:78:7a:af:83:fb:37:4a:a3:40:76:e8:df:46:72:
0f:b9:8b:2c:98:f0:a8:ec:11:b4:c9:19:10:27:14:
92:85:8a:49:b0:d1:c1:d4:b6:66:f3:5e:e9:18:39:
69:40:4e:80:72:bb:7a:9e:f6:8a:8e:e2:0d:b3:7f:
61:d3:51:0e:e4:28:28:cc:d4:03:81:32:2c:19:f4:
3c:c4:c6:b6:4c:7a:b7:63:f2:62:db:03:56:ef:5b:
18:8b:ec:ea:09:f7:43:ba:30:83:ac:2e:d9:9a:56:
94:d4:5d:a4:88:de:23:d0:da:85:c8:60:d4:73:f7:
d6:c5:dd:7b:55:df:ec:87:54:e1:fc:45:d7:a6:54:
da:b2:05:da:79:2d:da:7f:c3:a6:09:65:4b:31:8f:
84:e5:db:e9:87:0f:f2:de:c0:72:e4:52:4c:3b:fc:
14:73:5b:c6:df:7f:c9:be:37:d8:23:0a:de:3f:ce:
4f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:ED:D5:66:B0:7C:6B:81:06:E0:8F:D1:5C:AF:3B:53:0D:CE:B5:9B
X509v3 Authority Key Identifier:
keyid:F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/Ue3VZrB8a4EG4I_RXK87Uw3OtZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/9LdppT3YY1LTRA8iK9-QfPCcLbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.128.0.0/16
77.47.0.0/17
83.243.112.0/21
85.233.32.0/19
88.215.64.0/18
95.157.0.0/18
109.125.64.0/18
185.169.204.0/22
193.25.118.0/23
194.105.96.0/21
195.46.44.0/22
195.234.128.0/24
IPv6:
2001:4c50::/32
2a02:2455::/33
2a02:2457:300::/40
Signature Algorithm: sha256WithRSAEncryption
9b:db:c5:c3:47:e8:7a:58:54:40:7d:88:34:d8:6e:27:29:1b:
43:9b:fc:0d:6f:54:e4:1a:c0:6f:03:df:dd:a9:a2:af:bb:92:
8d:25:e1:c7:ca:11:b9:4e:20:de:04:7f:45:d9:da:e4:13:93:
cb:bb:6e:35:1b:f5:cf:30:b8:7e:ea:96:d0:b0:e5:ee:84:67:
93:d8:7b:6b:2c:03:40:8f:4b:e3:40:58:8a:35:18:3d:07:f7:
35:5e:79:b3:0a:f0:71:bb:5e:42:c1:63:b0:b3:9c:d4:6a:ee:
7b:60:57:b2:5e:38:48:9c:ee:cb:c7:1b:77:95:3d:84:af:77:
fe:4a:8d:c7:f3:e3:8c:38:06:c1:3b:b6:b5:d6:41:8e:22:3f:
a7:d3:1c:a8:c4:3b:26:8a:68:c3:2d:93:04:f1:00:6b:bf:c4:
5a:12:c4:c9:06:ec:8f:32:d9:87:87:3b:5d:9d:46:84:85:90:
0c:63:39:82:05:3c:ed:4a:96:19:3f:b0:4f:30:01:96:c5:57:
3b:2e:cf:39:ba:e3:54:57:53:46:1f:e4:93:58:04:1c:44:b3:
97:ba:d0:b3:93:ae:e4:36:1a:4f:9a:6e:48:9b:49:57:e3:14:
85:b0:05:3b:fa:93:a4:9a:73:82:5b:b1:0f:ee:40:ca:33:0b:
a8:0e:7a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:47 2025 by rpki-client on console.sobornost.net