Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/dfec40-b86e-494c-ba10-3a5628cc81d9/1/9PRjxeCqIjFBKjj9ZCsSUjWebm8.roa
File: 9PRjxeCqIjFBKjj9ZCsSUjWebm8.roa (raw, json)
Hash identifier: RUbumQikWEUJw86fkVBXkNxglUvMLn5BU1sBdU5SK10=
Subject key identifier: F4:F4:63:C5:E0:AA:22:31:41:2A:38:FD:64:2B:12:52:35:9E:6E:6F
Certificate issuer: /CN=b1a4a601ca35c6c8376b89aaf443b63ea439cdb8
Certificate serial: 01955C59BD051A855D4EE667B6280F75024F
Authority key identifier: B1:A4:A6:01:CA:35:C6:C8:37:6B:89:AA:F4:43:B6:3E:A4:39:CD:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saSmAco1xsg3a4mq9EO2PqQ5zbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/dfec40-b86e-494c-ba10-3a5628cc81d9/1/9PRjxeCqIjFBKjj9ZCsSUjWebm8.roa
Signing time: Mon 03 Mar 2025 14:12:19 +0000
ROA not before: Mon 03 Mar 2025 14:12:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15435
IP address blocks: 62.45.0.0/16 maxlen: 24
62.238.128.0/17 maxlen: 24
81.172.128.0/17 maxlen: 24
141.224.192.0/18 maxlen: 24
149.143.32.0/19 maxlen: 24
149.143.64.0/18 maxlen: 24
185.200.96.0/22 maxlen: 24
212.92.64.0/19 maxlen: 24
212.115.192.0/19 maxlen: 24
213.34.224.0/19 maxlen: 24
213.184.96.0/19 maxlen: 24
217.63.64.0/19 maxlen: 24
217.102.240.0/20 maxlen: 24
2001:4c38::/29 maxlen: 48
2a02:f68::/29 maxlen: 48
2a07:31c0::/29 maxlen: 48
2a0f:900::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5c:59:bd:05:1a:85:5d:4e:e6:67:b6:28:0f:75:02:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a4a601ca35c6c8376b89aaf443b63ea439cdb8
Validity
Not Before: Mar 3 14:12:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f4f463c5e0aa2231412a38fd642b1252359e6e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8f:c2:47:71:bb:49:3e:6f:6b:88:4a:16:c6:
fe:30:0c:ef:44:2b:2e:07:d2:bb:88:3c:41:20:1a:
0e:37:04:99:80:82:87:59:6a:cc:27:a6:bb:66:d8:
52:17:69:59:5f:58:51:a5:5d:ce:58:1b:b7:2d:fc:
73:55:44:57:ce:77:9a:e7:86:37:4c:32:61:9e:d4:
40:34:33:d0:25:07:3b:e9:20:b5:a1:d1:c1:30:ca:
73:e2:a0:00:5f:06:cc:00:24:ca:76:e6:6d:e2:f4:
d5:20:50:b9:08:30:6e:83:ef:b0:47:d8:9b:ce:c0:
eb:81:3f:9b:0c:b3:9d:07:f3:38:4d:14:ac:9e:36:
fd:df:7f:d8:6b:08:b1:76:33:a8:04:be:b6:86:18:
25:96:63:6e:5b:e4:55:d4:2e:07:70:5c:f8:9e:f5:
12:86:5f:03:8e:b1:c2:c2:cc:73:5d:ba:9a:fd:7f:
dd:d4:df:b0:e9:0b:a7:0b:7a:73:fd:f9:8e:9e:98:
7c:4f:1f:b5:98:fb:6b:49:b9:0c:37:91:41:0c:80:
b7:14:48:73:69:4f:5a:6a:fd:b7:5e:05:31:85:ab:
ee:9a:f0:0c:37:7f:fe:14:47:b8:2c:16:a6:38:2b:
34:d1:dd:54:a2:49:00:63:ec:e8:84:8b:aa:78:1a:
66:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F4:63:C5:E0:AA:22:31:41:2A:38:FD:64:2B:12:52:35:9E:6E:6F
X509v3 Authority Key Identifier:
keyid:B1:A4:A6:01:CA:35:C6:C8:37:6B:89:AA:F4:43:B6:3E:A4:39:CD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saSmAco1xsg3a4mq9EO2PqQ5zbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/dfec40-b86e-494c-ba10-3a5628cc81d9/1/9PRjxeCqIjFBKjj9ZCsSUjWebm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/dfec40-b86e-494c-ba10-3a5628cc81d9/1/saSmAco1xsg3a4mq9EO2PqQ5zbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.45.0.0/16
62.238.128.0/17
81.172.128.0/17
141.224.192.0/18
149.143.32.0-149.143.127.255
185.200.96.0/22
212.92.64.0/19
212.115.192.0/19
213.34.224.0/19
213.184.96.0/19
217.63.64.0/19
217.102.240.0/20
IPv6:
2001:4c38::/29
2a02:f68::/29
2a07:31c0::/29
2a0f:900::/29
Signature Algorithm: sha256WithRSAEncryption
88:b7:9c:f7:bb:20:f4:b6:ef:b5:79:56:ef:e4:75:fa:c2:eb:
07:b5:54:16:a6:c9:ed:56:46:a9:9f:19:6c:56:58:40:af:fb:
1b:34:50:e7:54:f9:5c:be:08:1c:02:c5:ff:ad:07:e0:28:e5:
44:09:c6:8e:d8:2b:c7:f7:60:b6:67:c1:13:b1:ba:60:39:bf:
17:f3:78:17:f6:43:23:46:ff:7a:bd:f4:8d:6b:b2:f8:19:35:
47:df:28:ec:87:4a:75:5b:10:f9:bf:8d:db:0f:3b:b7:9c:b8:
28:19:8e:96:df:a9:93:86:6e:79:b4:68:1e:55:22:ab:99:84:
78:41:bb:6b:96:d8:ac:70:f4:d7:7f:53:fe:4b:42:9a:97:ec:
5f:21:c9:2e:5d:3b:34:29:fd:bb:32:14:3e:37:77:0a:d1:75:
2d:d9:f3:76:59:ff:46:dd:49:fd:8c:0b:fa:63:e5:c8:c0:46:
4f:b3:11:ca:e1:c8:6c:81:e6:33:c7:d7:9e:af:79:4e:4c:7e:
3c:9e:4f:ba:bb:fe:71:69:3c:e2:69:5d:d6:87:cb:ad:b9:85:
67:b1:cb:78:38:28:0f:11:9e:7c:4f:8f:16:1a:fc:f9:8e:ef:
ae:55:c0:53:8e:a3:b6:f8:93:4a:1d:64:43:3e:5f:60:f0:22:
74:e4:ef:58
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net