Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/Jb_gFPV2he7uZ_D9dGgBvUqstrY.roa
File: Jb_gFPV2he7uZ_D9dGgBvUqstrY.roa (raw, json)
Hash identifier: 76/q3p10jkYhjXz60HYg6xHRHGQY02emHt13PPRY/0Y=
Subject key identifier: 25:BF:E0:14:F5:76:85:EE:EE:67:F0:FD:74:68:01:BD:4A:AC:B6:B6
Certificate issuer: /CN=cc40d96242b082efe5b4f2258820b3059396198d
Certificate serial: 019610C778C16D29F6A97942303F43A81F12
Authority key identifier: CC:40:D9:62:42:B0:82:EF:E5:B4:F2:25:88:20:B3:05:93:96:19:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEDZYkKwgu_ltPIliCCzBZOWGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/Jb_gFPV2he7uZ_D9dGgBvUqstrY.roa
Signing time: Mon 07 Apr 2025 15:03:50 +0000
ROA not before: Mon 07 Apr 2025 15:03:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8412
IP address blocks: 62.99.128.0/17 maxlen: 18
81.223.0.0/16 maxlen: 17
83.64.0.0/15 maxlen: 16
85.124.0.0/14 maxlen: 15
85.127.96.0/20 maxlen: 20
91.118.0.0/15 maxlen: 16
195.58.160.0/19 maxlen: 20
212.41.224.0/19 maxlen: 20
213.229.0.0/18 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:c7:78:c1:6d:29:f6:a9:79:42:30:3f:43:a8:1f:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc40d96242b082efe5b4f2258820b3059396198d
Validity
Not Before: Apr 7 15:03:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25bfe014f57685eeee67f0fd746801bd4aacb6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7c:e1:ef:73:8d:83:81:10:cd:f8:03:58:ff:
66:3a:bb:93:12:d4:bd:ec:b0:ba:8e:7f:b2:a5:81:
6e:4e:17:50:22:b3:0f:b4:1e:8b:79:4c:ac:03:4a:
30:66:5b:26:a4:75:eb:dd:c6:eb:26:98:c4:b5:d8:
8e:29:9e:38:c0:c2:3f:f1:1a:f7:36:c9:5f:2b:3e:
18:85:aa:80:74:39:01:01:80:42:44:06:a5:c2:a3:
10:19:16:60:24:5f:90:fd:93:97:93:df:54:35:55:
0a:0a:20:0b:41:53:f0:ce:2a:e9:d4:93:3a:60:cf:
e9:4f:eb:6f:8a:9b:c7:78:ea:82:1a:75:49:2d:48:
62:87:18:ea:5b:7b:df:7a:20:df:d3:68:e0:85:07:
b5:cc:a9:6f:c1:d7:e1:8a:e8:84:ea:09:d2:53:e9:
c9:8f:d9:cf:b0:45:b4:37:72:39:64:30:2c:81:ff:
bb:77:40:54:ec:75:32:cf:d0:43:14:1f:81:52:71:
90:b5:29:87:bd:c8:33:01:42:61:d6:8a:36:c3:1b:
fc:72:a6:f7:2a:e5:10:8b:a6:52:e3:2a:63:24:c1:
5c:bf:35:f1:32:92:2e:51:c8:83:2e:c0:bd:4d:4e:
47:46:f9:62:13:3c:4a:e6:41:15:1f:13:4e:57:9f:
f2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BF:E0:14:F5:76:85:EE:EE:67:F0:FD:74:68:01:BD:4A:AC:B6:B6
X509v3 Authority Key Identifier:
keyid:CC:40:D9:62:42:B0:82:EF:E5:B4:F2:25:88:20:B3:05:93:96:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEDZYkKwgu_ltPIliCCzBZOWGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/Jb_gFPV2he7uZ_D9dGgBvUqstrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/zEDZYkKwgu_ltPIliCCzBZOWGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.99.128.0/17
81.223.0.0/16
83.64.0.0/15
85.124.0.0/14
91.118.0.0/15
195.58.160.0/19
212.41.224.0/19
213.229.0.0/18
Signature Algorithm: sha256WithRSAEncryption
2b:db:7e:e8:29:97:75:85:bc:0b:3e:75:ea:0f:b8:84:ed:ed:
7f:77:96:87:6d:0a:1e:09:de:6e:da:cc:9c:87:69:79:95:fe:
82:c6:e0:2b:78:e8:3b:0a:f8:d9:7f:2e:ac:05:49:46:1a:b3:
01:28:ed:8d:70:41:97:fe:15:28:c3:d7:79:62:64:cd:e3:2b:
fe:93:5c:0e:dd:12:7f:b0:13:fb:53:71:da:8f:10:18:a7:d7:
46:29:e2:14:08:1f:01:10:14:36:7e:41:9d:83:cc:e2:5b:a7:
64:0c:08:c5:99:15:21:6a:68:2d:3a:af:d3:39:b4:44:0f:05:
0d:f2:e4:84:c8:d6:4c:7a:f1:0c:86:e3:c1:99:cb:76:84:36:
dc:3f:2f:70:e0:b9:5f:86:52:c6:1c:4f:21:36:da:50:ab:25:
e4:7f:37:ae:a0:7f:2b:57:44:45:65:8e:2d:92:2c:0a:24:5d:
87:14:e5:61:54:86:0f:55:3a:ee:03:99:76:91:6b:72:ab:57:
74:16:23:bf:72:5b:83:98:c0:d5:60:ed:ce:77:2f:9d:49:23:
ca:9e:a2:9b:2f:22:e8:de:ee:40:e1:68:52:10:6e:56:cd:86:
e6:dc:14:d3:cc:78:a8:f0:ef:7e:02:94:f0:49:a8:29:18:d3:
df:bc:53:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net