Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/ula9jfoyo-Oxj4oQTJhGSM2DQ5o.roa
File: ula9jfoyo-Oxj4oQTJhGSM2DQ5o.roa (raw, json)
Hash identifier: +U/LkfnqXi7jglNA2KgxDFsmoz1cp5+KfODGzHBZoUo=
Subject key identifier: BA:56:BD:8D:FA:32:A3:E3:B1:8F:8A:10:4C:98:46:48:CD:83:43:9A
Certificate issuer: /CN=59919584033c3911a009bdde3183f6c60b2afcca
Certificate serial: 019424B3F37C08F66F33638E37B000AC0A70
Authority key identifier: 59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/ula9jfoyo-Oxj4oQTJhGSM2DQ5o.roa
Signing time: Thu 02 Jan 2025 01:49:20 +0000
ROA not before: Thu 02 Jan 2025 01:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41497
IP address blocks: 5.252.240.0/22 maxlen: 24
80.76.80.0/20 maxlen: 24
83.137.232.0/21 maxlen: 24
193.43.24.0/24 maxlen: 24
212.165.32.0/19 maxlen: 24
212.183.160.0/19 maxlen: 24
2001:4bb0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:f3:7c:08:f6:6f:33:63:8e:37:b0:00:ac:0a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59919584033c3911a009bdde3183f6c60b2afcca
Validity
Not Before: Jan 2 01:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba56bd8dfa32a3e3b18f8a104c984648cd83439a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:18:10:4d:f4:d6:f8:75:17:aa:d4:6a:ba:
b6:ad:fa:71:94:3b:9c:83:34:e9:68:a7:e4:b9:29:
fe:ce:ad:91:b3:ae:8a:fe:8c:af:dc:ed:1f:db:e2:
d7:e8:55:25:7e:c5:43:e1:16:03:41:8d:1e:9b:d2:
41:b4:97:e0:e7:aa:cc:98:44:9e:a6:9e:fd:ef:1e:
e3:28:35:7c:89:0a:17:bc:ea:ac:d1:05:a9:8b:3d:
00:e0:32:c7:60:b2:18:de:a2:ca:d4:4f:b4:b3:49:
d9:cd:b8:21:01:29:db:90:61:b1:a9:e9:9c:3b:cb:
f8:f8:63:09:98:62:ac:d0:58:0b:17:ee:fe:e1:12:
69:a9:55:14:8b:da:0e:e0:e5:16:6b:33:d2:5d:ec:
b2:98:4e:df:d1:80:c2:d9:6c:65:d6:ef:c3:a6:e2:
aa:c1:4a:b0:73:86:76:c8:5e:be:cf:0e:9d:f7:70:
9b:23:33:1e:e4:17:9f:fe:f5:b4:c7:2f:39:de:02:
7f:0b:04:b4:e3:7f:a8:61:2d:fd:af:3b:72:39:9a:
36:36:a0:4d:03:0c:cc:eb:de:c8:db:f8:78:f5:18:
97:6d:33:a8:f8:ff:bb:07:5d:09:77:97:f3:db:d4:
98:c2:6f:53:ee:dc:45:39:dc:6a:2f:88:c8:03:8a:
00:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:56:BD:8D:FA:32:A3:E3:B1:8F:8A:10:4C:98:46:48:CD:83:43:9A
X509v3 Authority Key Identifier:
keyid:59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/ula9jfoyo-Oxj4oQTJhGSM2DQ5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.240.0/22
80.76.80.0/20
83.137.232.0/21
193.43.24.0/24
212.165.32.0/19
212.183.160.0/19
IPv6:
2001:4bb0::/32
Signature Algorithm: sha256WithRSAEncryption
42:35:b0:a9:2b:a6:f6:b1:b5:9c:df:97:5e:fa:65:fe:fb:ab:
01:0f:85:91:09:e6:b7:1e:f0:e9:21:a8:dc:5e:48:c6:b5:96:
4b:d6:c1:b0:ec:49:c0:fd:52:65:71:31:19:e0:84:64:51:65:
d8:c5:47:8f:a6:9e:6d:58:1d:81:d5:c2:11:b2:a4:6f:31:ce:
1b:38:2c:31:d5:13:fe:18:09:2e:23:0e:0a:18:83:21:d8:87:
62:c6:10:50:5b:31:99:65:69:cd:ab:1b:40:7f:d7:d6:f1:77:
8f:e1:6f:c9:96:db:23:d1:c8:06:41:a4:17:e4:a9:34:a2:1f:
9a:cd:19:df:fd:14:04:82:40:20:71:78:cf:2b:0d:99:16:3c:
a0:a2:ce:e3:4d:13:3b:b6:07:05:ce:3f:7f:59:fc:9d:1b:a7:
bb:ec:e4:4e:60:f6:f1:bb:e1:bd:5a:0c:38:67:26:c0:76:83:
49:0a:8c:87:d8:ef:d4:31:6b:a2:25:b3:23:20:e8:f5:d4:84:
52:35:a5:bf:79:82:8b:41:4e:47:c0:a0:04:92:3b:28:38:46:
91:5a:63:0a:c2:2d:0f:29:b7:49:61:95:f2:fa:f3:75:e3:1a:
6c:56:aa:ff:2b:ca:c0:55:f5:7a:44:0f:60:f6:23:f3:ee:f3:
58:38:1d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net