Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/dr_w0m7Qv5ACMERXy8HC4D9ni94.roa
File: dr_w0m7Qv5ACMERXy8HC4D9ni94.roa (raw, json)
Hash identifier: HJDBt0N6ByEOqOCbXR7DjS91OIQ79dZMS46KwGzNDI8=
Subject key identifier: 76:BF:F0:D2:6E:D0:BF:90:02:30:44:57:CB:C1:C2:E0:3F:67:8B:DE
Certificate issuer: /CN=2452ab1d2d29bac9d52eb479de64c0700fc6724f
Certificate serial: 0195C6531A1AD3F94A94E1E9315A279E63C8
Authority key identifier: 24:52:AB:1D:2D:29:BA:C9:D5:2E:B4:79:DE:64:C0:70:0F:C6:72:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFKrHS0pusnVLrR53mTAcA_Gck8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/dr_w0m7Qv5ACMERXy8HC4D9ni94.roa
Signing time: Mon 24 Mar 2025 04:04:49 +0000
ROA not before: Mon 24 Mar 2025 04:04:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202024
IP address blocks: 46.31.70.0/24 maxlen: 24
79.98.126.0/24 maxlen: 24
79.98.127.0/24 maxlen: 24
185.54.16.0/22 maxlen: 22
185.54.16.0/23 maxlen: 23
185.54.16.0/24 maxlen: 24
185.54.17.0/24 maxlen: 24
185.54.18.0/23 maxlen: 23
185.54.18.0/24 maxlen: 24
185.54.19.0/24 maxlen: 24
185.141.12.0/22 maxlen: 22
185.141.12.0/23 maxlen: 23
185.141.12.0/24 maxlen: 24
185.141.13.0/24 maxlen: 24
185.141.14.0/23 maxlen: 23
185.141.14.0/24 maxlen: 24
185.141.15.0/24 maxlen: 24
2a00:d30:16::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c6:53:1a:1a:d3:f9:4a:94:e1:e9:31:5a:27:9e:63:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2452ab1d2d29bac9d52eb479de64c0700fc6724f
Validity
Not Before: Mar 24 04:04:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76bff0d26ed0bf9002304457cbc1c2e03f678bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:58:45:c6:07:03:24:c9:84:1e:91:91:3f:c5:
82:95:d3:be:26:ad:4d:12:68:39:bb:bb:60:3e:4a:
2d:28:3c:ff:b3:88:b4:54:cc:1a:00:04:7f:dc:e2:
59:33:f5:ef:62:6e:98:34:9b:1b:07:1e:73:a6:44:
b7:db:2d:0b:38:db:5f:f8:b2:22:24:0f:92:01:e0:
2f:86:20:97:eb:29:92:0b:62:04:1f:e8:48:fc:df:
53:98:b5:a0:00:49:07:ed:ae:5e:9e:b9:50:b1:ad:
cb:2b:30:68:16:fb:de:7b:25:f9:50:4d:09:c3:1f:
29:2b:6d:25:63:21:cd:0e:bc:dd:3e:77:69:4c:08:
64:c2:e0:e5:ee:5a:aa:a1:37:b7:f2:d5:59:24:6f:
48:e2:66:37:b2:18:d0:07:3f:1b:b9:59:e2:0a:24:
5b:78:f9:2e:29:1a:34:11:19:61:55:1f:9d:38:4f:
f9:20:62:7e:ac:d1:e8:6d:50:99:bd:77:fc:1c:da:
58:60:73:34:84:3c:eb:3f:63:b8:47:44:e2:95:4a:
93:ef:76:89:66:7d:53:da:e8:9e:96:98:91:f2:f8:
66:cd:69:f4:e0:68:59:2b:f6:3b:dd:58:00:16:29:
ff:52:50:31:17:a2:ca:29:5f:91:24:cc:2f:6e:11:
1c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BF:F0:D2:6E:D0:BF:90:02:30:44:57:CB:C1:C2:E0:3F:67:8B:DE
X509v3 Authority Key Identifier:
keyid:24:52:AB:1D:2D:29:BA:C9:D5:2E:B4:79:DE:64:C0:70:0F:C6:72:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFKrHS0pusnVLrR53mTAcA_Gck8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/dr_w0m7Qv5ACMERXy8HC4D9ni94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/JFKrHS0pusnVLrR53mTAcA_Gck8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.70.0/24
79.98.126.0/23
185.54.16.0/22
185.141.12.0/22
IPv6:
2a00:d30:16::/48
Signature Algorithm: sha256WithRSAEncryption
33:2f:37:da:99:24:29:89:5a:69:dc:27:4c:2a:da:e6:06:4a:
11:f5:04:b6:1b:e3:eb:91:8c:24:64:34:d8:a5:87:e0:71:c6:
c4:59:5f:d7:82:6a:ed:56:73:f4:35:87:da:cf:29:7a:87:09:
ef:ec:47:fa:a3:93:d2:7a:48:8b:cd:3d:5b:82:12:9f:32:e0:
c6:ee:22:16:eb:dd:cc:fa:d1:1a:c7:e6:43:bc:5f:1e:a8:f3:
3c:a9:cf:2e:97:31:c2:8c:3d:9b:da:4c:80:9d:24:e5:6b:48:
2d:83:72:ef:6f:7b:da:f5:4b:75:c5:7e:fd:d6:a6:4c:76:1a:
00:ad:f5:a2:ba:33:6c:60:18:82:89:85:bc:da:b1:53:04:04:
4c:6a:be:6b:23:91:f6:5a:af:85:b2:f9:dd:a3:18:77:b4:63:
b5:56:6e:7f:fc:32:00:5c:8e:43:e6:09:df:fb:7d:18:b3:6b:
47:57:c4:6f:a6:05:bf:97:27:94:cd:02:68:f6:36:ea:67:27:
d3:24:c6:4b:f2:74:61:70:6e:69:b0:59:68:46:17:b7:bd:e7:
bb:7c:6c:76:7d:e2:bd:01:07:dd:d7:f0:c2:2d:fc:fd:ae:b1:
67:4c:2b:e0:f2:d4:80:b5:ff:77:e8:d2:78:33:84:0d:b0:f8:
f2:d0:73:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:34 2025 by rpki-client on console.sobornost.net