Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/Y1Q65_50tcxlLXfWRBA87l5aDQw.roa
File: Y1Q65_50tcxlLXfWRBA87l5aDQw.roa (raw, json)
Hash identifier: g92z5H6lVXAl9mxdMgSPp7qM0b2CPQJ/omh9m+p0QO4=
Subject key identifier: 63:54:3A:E7:FE:74:B5:CC:65:2D:77:D6:44:10:3C:EE:5E:5A:0D:0C
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 019427483E30B28DA9192FD4CCE86EDB1AC6
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/Y1Q65_50tcxlLXfWRBA87l5aDQw.roa
Signing time: Thu 02 Jan 2025 13:50:33 +0000
ROA not before: Thu 02 Jan 2025 13:50:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42739
IP address blocks: 37.139.144.0/24 maxlen: 24
37.139.145.0/24 maxlen: 24
37.139.146.0/24 maxlen: 24
37.139.147.0/24 maxlen: 24
37.139.148.0/24 maxlen: 24
37.139.149.0/24 maxlen: 24
37.139.150.0/24 maxlen: 24
37.139.151.0/24 maxlen: 24
77.242.224.0/20 maxlen: 20
77.242.233.0/24 maxlen: 24
77.242.234.0/24 maxlen: 24
77.242.235.0/24 maxlen: 24
78.159.64.0/20 maxlen: 20
78.159.83.0/24 maxlen: 24
92.55.192.0/18 maxlen: 18
92.55.220.0/24 maxlen: 24
92.55.226.0/24 maxlen: 24
185.46.92.0/22 maxlen: 22
188.112.0.0/18 maxlen: 18
188.112.57.0/24 maxlen: 24
2a02:7f0::/32 maxlen: 32
2a02:7f0::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:3e:30:b2:8d:a9:19:2f:d4:cc:e8:6e:db:1a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Jan 2 13:50:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63543ae7fe74b5cc652d77d644103cee5e5a0d0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e9:d6:ae:b0:79:e3:1b:6d:db:b0:ea:a4:c2:
b1:c1:9f:68:f0:36:56:bf:96:f6:de:e8:ed:61:15:
c4:bd:cd:da:b8:7b:b7:b0:54:8d:48:d9:0e:12:ec:
a3:14:4a:d3:ae:5d:14:e7:fb:85:d1:64:11:ba:b4:
96:f3:ff:d0:78:ba:31:ec:27:be:14:f5:95:13:8c:
ac:db:50:2f:8c:36:5b:5b:bf:a4:55:37:f8:37:a7:
5a:6f:68:55:2b:79:e4:03:72:e0:fe:ff:70:74:c5:
39:1f:bb:bb:bb:46:a7:eb:77:9d:d2:22:85:df:11:
aa:35:fd:b2:3b:69:b1:e0:0c:3f:80:09:8f:f2:f2:
de:9b:e1:49:09:83:84:dc:94:62:41:59:ce:fd:b3:
1c:40:f6:c7:9b:cf:af:35:56:fd:f0:ec:cc:40:ac:
23:cc:96:c2:7d:76:31:b9:7e:b9:0e:65:b3:13:83:
ac:74:a1:e4:2c:c7:17:75:d6:5f:84:0e:56:30:f3:
35:40:0a:ea:e8:33:1a:61:4d:c9:ef:4f:85:3f:ba:
3a:1c:56:05:7c:8e:9c:b9:3e:96:61:2a:ae:79:61:
70:8f:11:e6:56:eb:9e:76:3d:fd:03:45:a8:6c:88:
1c:9d:a1:07:01:26:b0:8f:c6:fc:30:b5:83:da:c9:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:54:3A:E7:FE:74:B5:CC:65:2D:77:D6:44:10:3C:EE:5E:5A:0D:0C
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/Y1Q65_50tcxlLXfWRBA87l5aDQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.144.0/21
77.242.224.0/20
78.159.64.0/20
78.159.83.0/24
92.55.192.0/18
185.46.92.0/22
188.112.0.0/18
IPv6:
2a02:7f0::/32
Signature Algorithm: sha256WithRSAEncryption
36:0c:b6:e8:7d:a5:a6:76:33:8a:96:bf:a9:85:db:77:0c:64:
1e:8f:26:0e:d6:2e:77:52:3f:09:06:67:0c:0e:55:73:74:84:
80:eb:62:61:a3:56:4f:f6:17:0c:38:f5:4a:61:d6:1a:4c:e3:
e1:e6:72:7d:15:11:bc:93:f2:84:14:90:af:02:a8:39:77:b5:
fe:f0:27:e7:74:60:66:b7:d9:84:59:50:f7:16:01:c7:6b:76:
ed:39:0b:fb:9d:ba:3b:59:ae:6f:95:5b:31:f4:c8:e2:bc:51:
34:23:e9:78:2b:bf:e8:69:4e:bf:b5:69:de:81:2f:9c:ed:6d:
0d:3c:7d:f2:49:9f:81:b3:a7:ea:d5:69:b3:c4:06:07:57:2f:
29:5f:01:9c:82:f4:1a:d3:c2:5c:9d:e8:11:13:85:33:37:8e:
a8:06:c0:74:a2:d2:63:8b:94:08:cc:19:dc:60:18:07:05:3f:
71:7d:c3:30:b3:e3:4f:59:af:2d:d1:56:da:24:99:b4:25:1b:
f1:98:f8:22:94:fd:9b:6e:ab:79:bf:4d:f1:d0:5f:ca:40:d7:
98:da:e2:94:88:fd:db:23:c4:3b:55:00:9c:c8:ba:05:fb:77:
f9:d0:e2:1c:9f:a8:12:98:c1:4f:29:9c:da:c9:79:19:2f:23:
33:55:57:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net