Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/RgDK0GlNrO7C7ubV0WX7Z9uLa44.roa
File: RgDK0GlNrO7C7ubV0WX7Z9uLa44.roa (raw, json)
Hash identifier: rsSKr9gwgh4LATGzKPPW1fvQ8qeoiCF1icD7tfZVV58=
Subject key identifier: 46:00:CA:D0:69:4D:AC:EE:C2:EE:E6:D5:D1:65:FB:67:DB:8B:6B:8E
Certificate issuer: /CN=c9e7aac3d724d9d49f3027133633ba119bb367fb
Certificate serial: 01954BB8890ACFC98DB2A5D41C311EF99CBC
Authority key identifier: C9:E7:AA:C3:D7:24:D9:D4:9F:30:27:13:36:33:BA:11:9B:B3:67:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yeeqw9ck2dSfMCcTNjO6EZuzZ_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/RgDK0GlNrO7C7ubV0WX7Z9uLa44.roa
Signing time: Fri 28 Feb 2025 08:42:19 +0000
ROA not before: Fri 28 Feb 2025 08:42:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48815
IP address blocks: 109.233.120.0/24 maxlen: 24
109.233.121.0/24 maxlen: 24
109.233.122.0/24 maxlen: 24
109.233.123.0/24 maxlen: 24
109.233.124.0/24 maxlen: 24
109.233.125.0/24 maxlen: 24
109.233.126.0/24 maxlen: 24
109.233.127.0/24 maxlen: 24
176.221.48.0/24 maxlen: 24
176.221.49.0/24 maxlen: 24
176.221.50.0/24 maxlen: 24
176.221.51.0/24 maxlen: 24
176.221.52.0/24 maxlen: 24
176.221.53.0/24 maxlen: 24
176.221.54.0/24 maxlen: 24
176.221.55.0/24 maxlen: 24
185.49.204.0/24 maxlen: 24
185.49.207.0/24 maxlen: 24
195.88.6.0/23 maxlen: 23
212.112.64.0/24 maxlen: 24
212.112.65.0/24 maxlen: 24
212.112.67.0/24 maxlen: 24
212.112.72.0/24 maxlen: 24
212.112.73.0/24 maxlen: 24
212.112.74.0/24 maxlen: 24
212.112.75.0/24 maxlen: 24
212.112.84.0/22 maxlen: 22
212.112.88.0/24 maxlen: 24
212.112.91.0/24 maxlen: 24
212.112.92.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:4b:b8:89:0a:cf:c9:8d:b2:a5:d4:1c:31:1e:f9:9c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9e7aac3d724d9d49f3027133633ba119bb367fb
Validity
Not Before: Feb 28 08:42:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4600cad0694daceec2eee6d5d165fb67db8b6b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0e:d5:47:52:87:b1:8e:73:9c:af:3a:0f:eb:
dd:61:ca:c8:e0:86:13:0e:74:8e:7c:0c:ad:9c:9b:
f1:b8:5f:56:54:2c:6a:dc:97:6e:23:4b:b3:df:08:
d3:32:13:3f:ca:e7:d6:4c:d3:81:d9:6f:7b:f9:4f:
78:4c:8d:4c:c8:ef:85:73:79:46:dd:c9:0f:33:30:
90:7a:79:fe:e9:5f:0f:8a:bb:eb:30:ee:f0:99:d8:
84:79:00:17:40:0a:b4:99:e8:81:ff:52:17:94:6e:
f2:1b:87:c9:5a:ee:68:e9:af:5f:71:0b:3a:f3:63:
2b:9e:9e:71:29:cf:f0:a5:3f:f5:1f:64:ad:b2:ea:
99:73:3d:f6:9c:11:2b:35:54:7b:d2:82:dd:78:83:
71:57:b0:d5:e2:50:d1:8d:7e:16:2a:0d:2f:a0:07:
cb:bc:39:0f:b1:1d:1a:2b:d2:01:83:44:4d:65:08:
67:5e:52:1b:bf:4a:34:7f:24:f2:64:c4:86:10:3e:
26:d0:4d:82:c8:3c:0a:91:d4:a4:1f:09:47:d1:18:
1b:df:e1:c4:13:e7:87:46:13:a0:21:b4:37:7e:b3:
6d:de:0e:29:eb:ef:d5:91:03:6b:bc:4a:57:f2:5f:
92:ca:ea:35:4c:be:69:d7:c2:2c:e5:e4:de:ed:49:
e4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:00:CA:D0:69:4D:AC:EE:C2:EE:E6:D5:D1:65:FB:67:DB:8B:6B:8E
X509v3 Authority Key Identifier:
keyid:C9:E7:AA:C3:D7:24:D9:D4:9F:30:27:13:36:33:BA:11:9B:B3:67:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yeeqw9ck2dSfMCcTNjO6EZuzZ_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/RgDK0GlNrO7C7ubV0WX7Z9uLa44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/yeeqw9ck2dSfMCcTNjO6EZuzZ_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.120.0/21
176.221.48.0/21
185.49.204.0/24
185.49.207.0/24
195.88.6.0/23
212.112.64.0/23
212.112.67.0/24
212.112.72.0/22
212.112.84.0-212.112.88.255
212.112.91.0-212.112.95.255
Signature Algorithm: sha256WithRSAEncryption
39:d4:b7:c3:81:1e:b8:ae:3c:4c:cd:ee:66:a4:2e:8b:00:17:
b4:a9:07:0b:fd:b1:cf:1b:0e:57:ef:c2:fe:e4:1f:04:56:a4:
9d:83:a6:07:d9:ea:79:53:35:71:45:6d:f6:47:d7:ce:c3:7a:
34:3c:16:e1:df:55:62:59:66:f2:5d:ce:97:d9:35:aa:66:0e:
c9:84:c6:af:0f:14:90:7a:ab:17:6f:bf:6e:33:16:31:92:16:
04:23:e7:4b:34:aa:2e:ec:13:7a:c1:ff:23:b8:45:f1:e2:9c:
31:c2:f6:b6:66:92:46:9b:6a:6e:20:e6:b9:16:dc:7a:53:80:
f3:66:d7:42:c8:ba:33:a7:ad:52:5d:f9:9b:94:0c:f8:9b:ae:
b3:80:80:47:90:25:0c:2e:5f:81:5d:4f:53:03:f9:c2:94:c4:
37:6f:27:41:4e:b2:8f:5f:4a:6a:d0:5a:3c:79:37:ef:aa:8d:
5a:52:fd:0e:e0:92:6e:a6:3a:ff:72:04:08:83:4a:45:73:bf:
aa:ce:a7:8b:ef:e3:5e:24:fd:a0:eb:75:ab:6f:c3:3c:d1:0e:
cf:c3:be:a0:40:24:a7:3a:2a:cb:1a:81:8a:64:0e:f5:45:28:
fa:3f:44:da:e9:b7:14:90:89:53:ac:30:ce:51:54:9e:a8:1b:
89:8f:1b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net