Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/LNUfeHuP7gnY_85aOJlr0qSJEMQ.roa
File: LNUfeHuP7gnY_85aOJlr0qSJEMQ.roa (raw, json)
Hash identifier: YoOtP+EHXOmT+ABly+3o3H4KeOBEs5xmQuWc5ATMUTk=
Subject key identifier: 2C:D5:1F:78:7B:8F:EE:09:D8:FF:CE:5A:38:99:6B:D2:A4:89:10:C4
Certificate issuer: /CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Certificate serial: 019423D70FF0F52A0B14317CC7E903E5D494
Authority key identifier: E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/LNUfeHuP7gnY_85aOJlr0qSJEMQ.roa
Signing time: Wed 01 Jan 2025 21:48:04 +0000
ROA not before: Wed 01 Jan 2025 21:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21500
IP address blocks: 62.106.68.0/24 maxlen: 24
81.17.129.0/24 maxlen: 24
81.17.130.0/24 maxlen: 24
81.17.130.194/32 maxlen: 32
81.17.130.198/32 maxlen: 32
81.17.133.0/24 maxlen: 24
81.17.134.0/24 maxlen: 24
81.17.135.0/24 maxlen: 24
81.17.136.0/24 maxlen: 24
81.17.140.0/24 maxlen: 24
81.17.142.0/24 maxlen: 24
85.90.200.0/22 maxlen: 22
92.118.136.0/22 maxlen: 22
92.118.224.0/24 maxlen: 24
92.118.225.0/24 maxlen: 24
92.118.226.0/24 maxlen: 24
195.69.184.0/22 maxlen: 24
195.234.220.0/22 maxlen: 22
2a06:6200::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:0f:f0:f5:2a:0b:14:31:7c:c7:e9:03:e5:d4:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Validity
Not Before: Jan 1 21:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2cd51f787b8fee09d8ffce5a38996bd2a48910c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:73:40:88:46:3c:bd:2b:0b:23:77:5e:ac:10:
f7:22:03:db:a2:e5:f5:66:36:2c:ba:03:4d:4b:a4:
2c:62:40:f8:c8:75:30:a9:47:e0:4a:ad:f0:10:31:
18:43:df:09:ed:6e:c3:eb:e7:9b:eb:84:01:63:a3:
2e:49:22:a7:28:d6:87:96:c5:4f:21:df:1a:92:04:
0c:7d:c2:57:2b:ff:2a:52:c2:3b:c0:61:50:f8:48:
69:ae:ad:cd:c1:79:f3:73:a2:da:ec:27:10:fd:3f:
65:9b:77:b5:47:29:07:88:0f:c3:6d:b6:a4:ab:1d:
35:26:24:3a:b5:5f:c3:e3:2d:5a:f6:e3:ad:f1:db:
53:e2:11:27:b0:cb:f3:1e:69:1f:55:61:d4:9e:ef:
10:9a:b9:04:e7:2e:92:55:3e:14:e3:f3:e7:67:d6:
5a:14:75:8e:48:eb:6f:9a:b9:46:2d:df:aa:c8:d2:
1c:b8:b2:fd:f6:f4:a4:19:67:a3:c9:a8:ef:73:61:
9a:f9:67:af:b7:90:91:0a:0d:71:74:b0:b0:ca:1c:
b3:e1:ed:36:72:88:69:09:70:e8:07:be:d3:ed:bb:
33:9e:0d:a3:eb:c9:70:7e:c2:b1:dd:fe:f0:c1:7a:
88:10:50:4b:48:5b:58:d2:ca:5e:a7:ef:3e:5f:91:
8d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D5:1F:78:7B:8F:EE:09:D8:FF:CE:5A:38:99:6B:D2:A4:89:10:C4
X509v3 Authority Key Identifier:
keyid:E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/LNUfeHuP7gnY_85aOJlr0qSJEMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.68.0/24
81.17.129.0-81.17.130.255
81.17.133.0-81.17.136.255
81.17.140.0/24
81.17.142.0/24
85.90.200.0/22
92.118.136.0/22
92.118.224.0-92.118.226.255
195.69.184.0/22
195.234.220.0/22
IPv6:
2a06:6200::/29
Signature Algorithm: sha256WithRSAEncryption
55:e2:f7:a6:b6:1b:60:b9:ea:2d:95:30:f7:8b:47:f2:c7:1a:
06:d7:1d:ce:59:46:7b:fc:a9:81:ba:6c:31:23:12:8a:c1:75:
70:52:fa:6c:9d:65:3d:35:e6:3f:62:9d:63:c1:bf:29:8e:b6:
11:a9:3a:40:a7:27:96:01:e3:e9:b5:96:14:52:ce:ba:3c:23:
2c:e0:b6:37:5a:d7:f0:1e:04:a6:a5:84:0e:44:4e:3e:ec:a1:
62:ad:ef:ff:33:99:98:bc:5a:a0:e8:61:50:33:58:04:54:1b:
5f:bd:b6:23:8c:b4:31:e4:5c:b3:58:a4:69:d4:f4:a6:d7:3d:
c4:f5:b1:cc:1a:b0:7c:c2:cb:47:3b:06:9d:95:d4:60:dc:11:
62:43:7d:bd:83:ad:b0:c2:12:53:62:d2:58:a6:98:ae:00:dd:
01:81:f1:b6:12:f0:5d:ea:1d:70:f7:2f:c9:52:9f:0f:85:a9:
84:e3:d8:97:b3:c2:73:a9:48:52:2a:6b:97:49:c9:69:84:0f:
42:d2:1a:41:eb:b4:73:84:87:6b:dc:9b:3d:6a:5c:2f:f3:cc:
75:94:58:2e:5b:46:45:93:c3:39:91:26:08:0a:8a:dc:e0:8a:
96:24:d6:68:06:4e:ea:3b:29:ce:18:6b:ed:67:f6:b6:2f:2a:
24:97:f8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net