Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e22dc2-f406-40c9-ba5f-bf69b12a6744/1/prglgmNE0DnLZ3nl3oMZgYr1Qeo.roa
File: prglgmNE0DnLZ3nl3oMZgYr1Qeo.roa (raw, json)
Hash identifier: GKdnp0Wdjr67WCtOM6orFlzZGNRiIjqsf66HzX247Ag=
Subject key identifier: A6:B8:25:82:63:44:D0:39:CB:67:79:E5:DE:83:19:81:8A:F5:41:EA
Certificate issuer: /CN=9e81ddaad88f7071612d7c3b7618e24d1a5233bb
Certificate serial: 0195EC9F7BA25B8D27C562D076D559AEA1A9
Authority key identifier: 9E:81:DD:AA:D8:8F:70:71:61:2D:7C:3B:76:18:E2:4D:1A:52:33:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/noHdqtiPcHFhLXw7dhjiTRpSM7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e22dc2-f406-40c9-ba5f-bf69b12a6744/1/prglgmNE0DnLZ3nl3oMZgYr1Qeo.roa
Signing time: Mon 31 Mar 2025 14:33:49 +0000
ROA not before: Mon 31 Mar 2025 14:33:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61060
IP address blocks: 37.44.8.0/21 maxlen: 21
185.144.5.0/24 maxlen: 24
2a10:40::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ec:9f:7b:a2:5b:8d:27:c5:62:d0:76:d5:59:ae:a1:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e81ddaad88f7071612d7c3b7618e24d1a5233bb
Validity
Not Before: Mar 31 14:33:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6b825826344d039cb6779e5de8319818af541ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:44:71:eb:01:60:52:aa:73:21:8a:76:db:8f:
8a:70:e5:3c:42:49:fc:0b:7f:b6:76:3a:db:f0:1d:
4f:cc:89:8b:ef:79:85:93:9c:fd:e7:bf:aa:31:4a:
85:c4:99:e1:4b:cd:84:10:2d:c3:25:33:b3:68:b8:
05:49:b6:63:24:0c:d8:96:73:20:b7:74:36:83:7b:
1a:f9:03:14:3a:19:41:5c:86:e5:ba:b1:a5:02:f5:
8d:18:a0:e8:d1:80:76:1a:af:93:9a:e9:4a:ed:ad:
e8:e0:30:c4:6e:c0:0c:fa:ec:9e:40:ec:4b:72:40:
8e:c1:1c:87:e3:39:48:36:a1:47:0a:3f:72:36:e0:
2b:5d:18:75:d2:fe:90:87:12:8a:7a:57:63:c0:e4:
ba:82:36:39:3f:59:c6:69:78:b4:23:45:8b:25:c0:
4a:fa:d3:cc:de:ca:2f:22:3e:b6:48:52:e8:fd:75:
b1:40:f6:24:c1:7a:a9:20:65:cd:ad:ed:34:1c:38:
d8:ef:b0:0b:ff:ef:29:11:d4:d7:7a:ce:1e:26:1e:
9c:8c:5d:c0:2d:96:85:8c:ac:1f:7b:15:0f:17:68:
9c:4e:9b:3d:79:f6:e9:dc:57:74:66:4a:49:82:60:
85:04:a7:1a:bf:d7:e6:7b:0e:cb:60:3f:96:15:ce:
0d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B8:25:82:63:44:D0:39:CB:67:79:E5:DE:83:19:81:8A:F5:41:EA
X509v3 Authority Key Identifier:
keyid:9E:81:DD:AA:D8:8F:70:71:61:2D:7C:3B:76:18:E2:4D:1A:52:33:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noHdqtiPcHFhLXw7dhjiTRpSM7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e22dc2-f406-40c9-ba5f-bf69b12a6744/1/prglgmNE0DnLZ3nl3oMZgYr1Qeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e22dc2-f406-40c9-ba5f-bf69b12a6744/1/noHdqtiPcHFhLXw7dhjiTRpSM7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.8.0/21
185.144.5.0/24
IPv6:
2a10:40::/32
Signature Algorithm: sha256WithRSAEncryption
05:6e:b7:16:80:de:15:74:c7:d4:a0:63:f9:3b:c6:a6:ee:f5:
82:8d:d2:30:33:1e:06:f2:4b:23:2f:95:7b:d0:f6:2c:f1:e6:
d6:29:39:c7:03:db:86:b8:ba:41:17:86:db:97:6f:a4:7a:57:
08:63:aa:f6:4f:eb:35:f6:b0:41:c0:8b:f4:b9:ce:1b:b6:cf:
32:b7:a4:ff:64:de:54:5b:52:95:d9:07:88:24:3b:9c:ae:d7:
d5:f0:76:61:c5:1a:e3:92:ee:0d:8d:f7:96:ce:19:81:bf:3d:
2f:12:f2:90:f1:10:75:e2:bb:b9:7a:01:12:d5:4c:0f:cd:5f:
18:bc:14:a7:41:f0:77:60:54:90:12:ff:42:79:1b:78:bb:d8:
76:85:8c:59:0d:a9:de:0d:c9:80:52:12:c3:d8:1c:69:f1:93:
9b:b9:0b:27:66:5a:01:78:ed:e4:ff:c3:68:b0:0f:43:4a:38:
b7:ad:1b:f3:d4:2c:50:16:45:97:2e:5f:c3:9b:54:4e:58:89:
be:c1:92:cc:e3:fb:27:6a:d7:ce:28:1e:5d:f3:57:b2:94:e5:
37:fd:c6:7a:e6:e1:90:45:d9:8c:8a:99:02:34:8a:b6:50:da:
9e:a3:fa:93:c0:4c:76:3a:33:46:d6:64:84:1d:ae:f7:8b:f3:
ce:4e:54:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 17:32:18 2025 by rpki-client on console.sobornost.net