Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/PUVo5ST7GwSNOno6GEB7-_75840.roa
File: PUVo5ST7GwSNOno6GEB7-_75840.roa (raw, json)
Hash identifier: cD6D5iZgvHwEh63NtvZYi1ih3mUJsM/67jxgu3bl/KM=
Subject key identifier: 3D:45:68:E5:24:FB:1B:04:8D:3A:7A:3A:18:40:7B:FB:FE:F9:F3:8D
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 019569DC9AC121161BFA53E22CD18EE47245
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/PUVo5ST7GwSNOno6GEB7-_75840.roa
Signing time: Thu 06 Mar 2025 05:10:20 +0000
ROA not before: Thu 06 Mar 2025 05:10:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211970
IP address blocks: 185.234.245.0/24 maxlen: 24
188.72.0.0/24 maxlen: 24
188.72.3.0/24 maxlen: 24
188.72.51.0/24 maxlen: 24
188.72.56.0/24 maxlen: 24
188.72.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:69:dc:9a:c1:21:16:1b:fa:53:e2:2c:d1:8e:e4:72:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Mar 6 05:10:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3d4568e524fb1b048d3a7a3a18407bfbfef9f38d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:54:fd:b9:30:af:29:34:56:6f:f0:b8:75:b8:
0e:cd:40:16:da:99:70:bc:ab:98:ff:65:22:89:0e:
b8:c6:c9:5e:8b:fc:34:7a:d9:42:8c:3a:b7:e1:fb:
10:04:67:4f:ae:69:1f:a8:12:ab:89:44:47:f8:e2:
35:e6:2e:3c:6e:e7:a3:4f:02:a1:8b:0f:a6:84:bf:
db:ca:23:07:5d:b3:cb:b1:70:4d:67:ce:d5:49:e9:
6d:53:9a:38:47:e4:99:5a:fc:97:8d:e7:0c:a1:a4:
97:82:f0:34:b4:4b:74:2f:4c:d9:b2:7e:a1:2a:8b:
83:a6:2c:e5:f6:db:28:5f:f8:ab:f7:87:0a:74:39:
e4:9a:4c:f2:2d:83:be:c7:c9:9b:eb:b6:6d:54:56:
22:b1:93:a5:eb:7c:9b:ad:33:e5:c7:80:2f:79:a7:
1e:f9:64:b9:a4:84:9a:cd:05:7d:47:b0:c9:67:98:
ae:cc:11:f7:7c:2d:56:45:bf:4b:5b:f5:af:e2:77:
f8:7c:a5:02:d7:c8:3e:0b:62:c6:3c:c4:13:f4:8e:
64:5a:aa:98:1e:f8:cd:3a:83:be:17:74:29:96:58:
9a:12:ac:61:5e:ff:e3:78:73:97:af:d4:b6:eb:19:
ab:85:45:51:85:dd:db:56:80:1d:9e:e8:3a:72:bb:
80:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:45:68:E5:24:FB:1B:04:8D:3A:7A:3A:18:40:7B:FB:FE:F9:F3:8D
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/PUVo5ST7GwSNOno6GEB7-_75840.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.245.0/24
188.72.0.0/24
188.72.3.0/24
188.72.51.0/24
188.72.56.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:d1:c7:06:99:ad:fa:91:02:7e:69:a3:75:13:20:0e:64:26:
18:53:52:5a:b4:d4:1d:67:bd:91:7b:1a:06:6c:a2:c2:5e:a4:
b0:15:4d:81:b9:6f:87:69:4d:f6:1e:8e:84:99:3c:10:9f:5e:
23:75:ab:ef:c2:c0:c2:5e:83:1d:4d:62:31:ba:a2:fb:53:9c:
1b:0a:3f:74:05:dc:af:14:cd:34:3a:5b:4e:e5:46:24:65:e4:
c3:2b:03:b5:21:f5:a1:f5:dc:a4:1f:34:4c:33:f7:68:53:82:
fe:df:6e:e2:9e:66:a9:1e:c5:d8:4f:f0:ee:fa:6b:e3:9f:dc:
d6:91:ab:84:ce:75:f9:e2:9d:78:95:84:52:71:82:2d:7f:34:
40:55:bd:7f:9b:e0:83:84:d8:49:e9:f5:97:4b:ed:f9:55:91:
fe:af:14:27:ef:c0:44:cc:1c:eb:9c:5e:49:b4:8e:41:a5:7a:
37:e2:f5:97:9f:6c:10:57:ec:35:37:9e:7a:e8:a5:f9:b5:6c:
71:91:8d:46:9a:8e:14:4a:d9:48:b0:3a:a3:cb:66:45:4e:c2:
89:83:05:f0:37:4a:78:92:9a:08:ea:d5:74:9c:a8:54:66:80:
39:72:37:b0:da:ce:7a:f9:2f:7c:01:38:6a:ba:12:30:4e:6b:
e2:d2:e2:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net