Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/vyegIY_7PWJ_35cJ7FHof10Oetc.roa
File: vyegIY_7PWJ_35cJ7FHof10Oetc.roa (raw, json)
Hash identifier: WbJ2gjaiGN54VhXMkNaf0rgW5sSEbQ1P8bkrjt4iUcs=
Subject key identifier: BF:27:A0:21:8F:FB:3D:62:7F:DF:97:09:EC:51:E8:7F:5D:0E:7A:D7
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 01955C509503A0A19DF45BED6F19F47F7D09
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/vyegIY_7PWJ_35cJ7FHof10Oetc.roa
Signing time: Mon 03 Mar 2025 14:02:19 +0000
ROA not before: Mon 03 Mar 2025 14:02:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202015
IP address blocks: 77.83.199.0/24 maxlen: 24
79.141.160.0/23 maxlen: 23
79.141.162.0/23 maxlen: 23
79.141.172.0/24 maxlen: 24
79.141.173.0/24 maxlen: 24
91.193.19.0/24 maxlen: 24
185.33.84.0/23 maxlen: 23
185.33.86.0/23 maxlen: 23
193.42.38.0/24 maxlen: 24
193.111.208.0/24 maxlen: 24
194.124.229.0/24 maxlen: 24
2a01:8640:4::/48 maxlen: 48
2a01:8640:5::/48 maxlen: 48
2a01:8640:b::/48 maxlen: 48
2a01:8640:e::/48 maxlen: 48
2a01:8640:1e::/48 maxlen: 48
2a01:8640:1f::/48 maxlen: 48
2a01:8640:22::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5c:50:95:03:a0:a1:9d:f4:5b:ed:6f:19:f4:7f:7d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Mar 3 14:02:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bf27a0218ffb3d627fdf9709ec51e87f5d0e7ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f1:62:16:b7:24:bb:97:85:b5:2a:04:b3:59:
53:9e:88:cf:0a:81:17:bb:e8:e7:dc:4e:94:d8:c9:
27:aa:bc:38:71:1b:d7:87:d0:d3:1f:46:d5:b6:0f:
d2:11:e7:1f:0c:73:62:23:09:6d:9d:b7:d0:ef:92:
1c:87:cf:26:11:95:a0:24:12:ac:49:d8:55:25:49:
b5:f2:fa:45:b3:e1:f2:16:ba:04:5d:b7:c9:fc:2c:
ee:87:66:41:e9:0a:8a:68:71:d1:5b:16:c7:f7:5b:
b8:ae:42:62:dc:c5:45:ed:b9:f2:be:72:b9:74:7f:
53:d9:9b:39:2a:8a:a1:32:2d:21:26:64:9a:10:ab:
0d:0e:67:b1:22:c5:1e:03:bb:75:c8:32:70:c6:9b:
31:ce:51:17:9c:12:56:a9:ff:bb:b8:20:24:3f:08:
c6:77:75:ab:64:ad:dd:ff:ad:d4:5e:af:d9:a7:46:
cc:f4:f1:84:0b:49:22:9a:65:0d:aa:0c:a2:d0:ba:
c7:61:0c:8d:5d:27:24:7a:80:9d:d8:02:47:22:41:
c4:32:9c:a2:be:ec:1b:22:59:c1:47:68:2a:b0:80:
18:f0:21:3a:e2:dd:12:07:9d:50:10:5e:1c:08:bf:
49:0b:7c:90:49:be:a0:bb:e2:60:63:f3:9b:be:4b:
d5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:27:A0:21:8F:FB:3D:62:7F:DF:97:09:EC:51:E8:7F:5D:0E:7A:D7
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/vyegIY_7PWJ_35cJ7FHof10Oetc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.199.0/24
79.141.160.0/22
79.141.172.0/23
91.193.19.0/24
185.33.84.0/22
193.42.38.0/24
193.111.208.0/24
194.124.229.0/24
IPv6:
2a01:8640:4::/47
2a01:8640:b::/48
2a01:8640:e::/48
2a01:8640:1e::/47
2a01:8640:22::/48
Signature Algorithm: sha256WithRSAEncryption
6d:9d:a5:4a:fb:77:9b:e7:a1:53:dd:df:99:54:a8:d5:0b:65:
6e:70:c9:41:1d:1b:b2:08:1f:77:46:b4:c1:23:7a:e3:69:cc:
f8:d6:9e:3b:77:01:46:5a:76:e6:ea:45:1a:d2:56:d4:45:67:
06:a3:39:80:26:02:d0:44:02:02:b7:4e:9a:29:d5:0a:06:13:
b2:c3:2b:0a:58:e2:d3:17:09:33:3e:1b:5e:0e:24:1c:97:b3:
de:84:b7:74:b9:2c:32:12:bd:64:e3:68:c8:7d:d0:b0:35:f9:
e1:30:b0:4c:bc:db:a2:64:51:03:e6:aa:5b:20:a4:fb:4b:91:
07:00:0d:03:68:b5:bc:8c:21:50:91:c3:7f:ee:2b:83:f4:66:
8e:3a:1b:4c:8c:ca:50:24:e4:f9:5f:9d:8e:bb:bd:99:48:35:
95:f2:e5:d0:0b:41:09:38:10:87:0b:dc:23:fc:6d:33:75:22:
80:5c:f4:c2:b7:e9:07:97:9d:f7:4b:5f:d5:da:2a:d9:34:9b:
6c:d1:6a:28:b2:4f:66:c7:05:a6:8e:f3:33:82:fe:8c:25:03:
a6:54:7c:6a:6e:d8:36:d6:81:7f:a3:40:9f:a6:2a:43:06:32:
d5:c1:fb:0b:f6:2e:94:3f:52:a3:40:74:2f:52:7f:b1:09:bc:
38:3a:52:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:00 2025 by rpki-client on console.sobornost.net