Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/1d3ce5-c7ef-49ff-9d4e-596fdbb0edd9/1/YDfV9I6rtYOjYpm5Z092WUOvRZo.roa
File: YDfV9I6rtYOjYpm5Z092WUOvRZo.roa (raw, json)
Hash identifier: VUQya+NPZIcq+b1ZPCIIi30pk5o/2ydd0KrRwzAFiDg=
Subject key identifier: 60:37:D5:F4:8E:AB:B5:83:A3:62:99:B9:67:4F:76:59:43:AF:45:9A
Certificate issuer: /CN=df59083faf5f02bba66809a1a2272eaf26e8a378
Certificate serial: 0194252227647ED589D0303A2BFA3DFE6FD6
Authority key identifier: DF:59:08:3F:AF:5F:02:BB:A6:68:09:A1:A2:27:2E:AF:26:E8:A3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/31kIP69fArumaAmhoicuryboo3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/1d3ce5-c7ef-49ff-9d4e-596fdbb0edd9/1/YDfV9I6rtYOjYpm5Z092WUOvRZo.roa
Signing time: Thu 02 Jan 2025 03:49:42 +0000
ROA not before: Thu 02 Jan 2025 03:49:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8554
IP address blocks: 82.97.0.0/18 maxlen: 18
82.97.0.0/19 maxlen: 19
82.97.32.0/22 maxlen: 22
82.97.36.0/22 maxlen: 22
185.52.32.0/22 maxlen: 22
193.41.72.0/22 maxlen: 22
195.234.46.0/24 maxlen: 24
2001:1b38::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:27:64:7e:d5:89:d0:30:3a:2b:fa:3d:fe:6f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df59083faf5f02bba66809a1a2272eaf26e8a378
Validity
Not Before: Jan 2 03:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6037d5f48eabb583a36299b9674f765943af459a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:10:46:0b:2d:2c:be:70:93:c0:e3:63:3a:f9:
57:97:6f:bd:71:ab:9b:d9:1c:cf:60:44:98:0d:e0:
42:5c:ed:87:d3:0d:ff:0e:e7:85:bc:9c:81:0e:22:
97:b6:2a:da:95:36:03:3c:69:c7:d4:8c:97:11:6d:
0c:2d:6e:0f:a9:1d:a3:d2:87:96:41:53:f0:d4:db:
5a:45:43:f4:cc:04:8d:fd:3d:df:ab:0a:87:97:bd:
1d:e8:20:d0:0c:4f:d5:90:28:bf:ff:cf:97:13:05:
9c:ed:ca:33:93:22:ca:c6:27:65:c0:33:68:01:b3:
25:cf:ee:b2:88:c3:86:7e:86:94:c1:d9:f9:3e:cd:
1f:6a:ed:3a:64:1d:ae:00:a8:e0:da:9a:52:d4:66:
d6:86:6b:c7:4e:72:06:2c:ea:48:17:d3:a7:77:06:
79:3e:08:4d:04:2a:00:f3:8d:82:e3:e1:53:ef:b5:
e4:e7:f9:6e:d2:13:e0:cd:9b:b2:07:7e:a6:2d:e4:
f3:0a:d2:9b:6e:8b:a1:6b:e1:9b:5b:08:6a:f4:4d:
38:c8:84:87:04:1e:7e:93:72:06:9a:06:45:ef:92:
56:89:ba:01:14:e3:f9:09:f5:bc:c2:f0:c3:d8:df:
49:59:88:ff:35:71:ca:c3:88:44:1f:f4:a0:3a:d9:
90:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:37:D5:F4:8E:AB:B5:83:A3:62:99:B9:67:4F:76:59:43:AF:45:9A
X509v3 Authority Key Identifier:
keyid:DF:59:08:3F:AF:5F:02:BB:A6:68:09:A1:A2:27:2E:AF:26:E8:A3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31kIP69fArumaAmhoicuryboo3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/1d3ce5-c7ef-49ff-9d4e-596fdbb0edd9/1/YDfV9I6rtYOjYpm5Z092WUOvRZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/1d3ce5-c7ef-49ff-9d4e-596fdbb0edd9/1/31kIP69fArumaAmhoicuryboo3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.97.0.0/18
185.52.32.0/22
193.41.72.0/22
195.234.46.0/24
IPv6:
2001:1b38::/32
Signature Algorithm: sha256WithRSAEncryption
16:f8:ca:f2:61:37:1c:0f:31:8f:1e:77:15:ca:a1:be:57:43:
64:e7:ab:e4:72:75:53:01:3b:e4:0d:41:42:ca:ea:ef:9d:3a:
06:ea:b6:d3:c5:95:86:d8:ae:da:6e:28:04:83:bb:7d:cc:e6:
47:54:fc:6e:5d:a9:63:24:14:c8:89:c0:ad:2a:04:5b:8b:0a:
c2:47:07:2c:cd:eb:6d:94:99:db:8e:f5:24:1c:d6:22:7f:a5:
43:5b:f7:36:73:0c:5a:88:ee:f4:db:f1:76:c4:66:40:87:38:
c7:03:b8:a4:77:54:59:d1:77:ad:90:56:ed:75:1b:73:02:e8:
0f:f0:be:bb:5b:e9:4b:df:6b:ab:bf:4b:ae:fc:c3:c2:fa:56:
86:c4:81:b0:b4:4d:f1:c2:20:ed:78:17:35:f5:76:b3:00:3e:
d9:8a:03:8e:8d:72:d2:2a:92:fb:37:10:61:0f:76:a7:ae:d1:
3c:b6:77:54:47:a1:0a:22:8d:28:c5:fd:84:52:65:36:79:f3:
b0:ad:ef:7f:2a:89:75:4d:8a:d1:76:08:41:a0:1e:50:2c:ad:
1c:c1:cc:22:18:dd:0f:63:42:01:07:d7:28:44:4e:9d:0c:e4:
59:25:81:4e:7c:40:a8:66:c4:e0:55:de:04:36:1a:a4:73:53:
b8:59:bf:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:00 2025 by rpki-client on console.sobornost.net