Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/GhyJElhSMkb21ni84p3HgeSkxTQ.roa
File: GhyJElhSMkb21ni84p3HgeSkxTQ.roa (raw, json)
Hash identifier: KwUCFvaWxHo9sPEoV9+enTpSMnw5D6fXp7AzPwgg1sY=
Subject key identifier: 1A:1C:89:12:58:52:32:46:F6:D6:78:BC:E2:9D:C7:81:E4:A4:C5:34
Certificate issuer: /CN=bfabf5a474afe7212331670e831e119da38f284f
Certificate serial: 019424B2A817C7F079E6D79B1E249A88901E
Authority key identifier: BF:AB:F5:A4:74:AF:E7:21:23:31:67:0E:83:1E:11:9D:A3:8F:28:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v6v1pHSv5yEjMWcOgx4RnaOPKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/GhyJElhSMkb21ni84p3HgeSkxTQ.roa
Signing time: Thu 02 Jan 2025 01:47:55 +0000
ROA not before: Thu 02 Jan 2025 01:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21232
IP address blocks: 62.32.0.0/19 maxlen: 19
77.74.56.0/21 maxlen: 21
79.142.128.0/20 maxlen: 20
82.192.224.0/19 maxlen: 19
93.184.16.0/20 maxlen: 20
185.31.248.0/22 maxlen: 22
185.41.132.0/22 maxlen: 22
185.45.236.0/22 maxlen: 22
185.64.184.0/22 maxlen: 22
185.110.72.0/22 maxlen: 22
185.110.88.0/22 maxlen: 22
185.110.184.0/22 maxlen: 22
185.119.36.0/22 maxlen: 22
185.132.16.0/22 maxlen: 22
195.216.64.0/19 maxlen: 19
213.160.32.0/19 maxlen: 19
213.188.32.0/19 maxlen: 19
2a02:5c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:a8:17:c7:f0:79:e6:d7:9b:1e:24:9a:88:90:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfabf5a474afe7212331670e831e119da38f284f
Validity
Not Before: Jan 2 01:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1a1c891258523246f6d678bce29dc781e4a4c534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4c:28:99:d6:74:f2:29:33:43:b7:c8:35:e0:
59:e7:e6:1b:d3:be:bb:71:11:6a:eb:18:1c:06:69:
78:bf:7a:e4:79:a4:1e:d3:17:b3:86:11:7d:6d:21:
37:58:c9:56:dc:5d:d8:4e:7e:29:cc:4d:47:f5:da:
51:49:19:e4:7d:42:5c:c8:05:15:65:0d:e9:c3:01:
ba:ff:eb:14:71:fb:32:e2:60:44:1f:8e:ed:18:67:
e1:5d:40:a4:f2:c1:00:99:fb:93:71:c0:a7:79:6d:
8d:39:64:20:d6:8a:44:33:44:9a:9d:8d:96:c2:95:
a2:94:a0:b2:20:cb:b3:21:ae:b8:fd:6c:0e:54:9b:
68:59:93:8f:ee:1a:36:a8:4c:3b:21:40:33:02:8a:
ff:24:4a:b5:31:18:04:0f:2a:6a:83:b5:f8:95:26:
c2:18:ab:b6:87:36:5a:69:0d:e4:bf:13:c3:c3:1c:
a2:e8:c3:38:8a:b7:96:d3:12:58:5f:2e:ad:65:d3:
0b:ec:34:45:8c:28:96:01:62:1e:35:8f:26:f4:26:
ad:52:e9:17:0b:e5:8d:17:71:81:2b:51:f3:77:e8:
45:e5:17:4d:11:74:0a:0e:0a:3f:24:6c:18:8c:0b:
e4:a2:8a:5f:fe:5f:a7:27:53:43:37:c6:b0:de:19:
43:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1C:89:12:58:52:32:46:F6:D6:78:BC:E2:9D:C7:81:E4:A4:C5:34
X509v3 Authority Key Identifier:
keyid:BF:AB:F5:A4:74:AF:E7:21:23:31:67:0E:83:1E:11:9D:A3:8F:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v6v1pHSv5yEjMWcOgx4RnaOPKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/GhyJElhSMkb21ni84p3HgeSkxTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0188da-3655-482d-881b-febbc4a3b45b/1/v6v1pHSv5yEjMWcOgx4RnaOPKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.32.0.0/19
77.74.56.0/21
79.142.128.0/20
82.192.224.0/19
93.184.16.0/20
185.31.248.0/22
185.41.132.0/22
185.45.236.0/22
185.64.184.0/22
185.110.72.0/22
185.110.88.0/22
185.110.184.0/22
185.119.36.0/22
185.132.16.0/22
195.216.64.0/19
213.160.32.0/19
213.188.32.0/19
IPv6:
2a02:5c0::/32
Signature Algorithm: sha256WithRSAEncryption
50:9c:3f:20:b0:44:4f:86:32:19:58:e9:d9:57:5b:7f:2a:bf:
63:10:28:5b:46:85:d4:0d:63:35:4a:ec:3a:2c:90:83:57:64:
aa:da:cc:ec:66:33:df:8a:d4:e7:8c:15:56:59:64:9f:2e:1f:
4c:26:53:e4:30:84:00:f0:1b:d5:b5:70:c0:ce:f9:d5:8c:5d:
c9:40:35:e7:9a:3c:16:fb:fa:08:ab:85:14:74:4c:bb:d2:b9:
ba:40:ff:ca:b3:9f:70:17:dd:71:01:28:c3:d8:5e:42:97:6f:
32:ae:bc:1e:67:ee:32:8f:b0:63:29:f8:c9:72:4b:18:2b:46:
6b:c1:72:21:95:66:75:0d:e5:9b:f3:c9:91:bb:11:39:71:3d:
b0:19:50:ac:00:e8:64:1c:25:63:3c:26:67:67:2b:c9:ee:74:
23:68:03:1c:db:36:cf:4f:2d:2a:ad:53:da:d6:8f:3e:3d:d7:
7f:fe:13:a5:96:dd:ab:b1:f1:12:ca:03:c2:44:f9:49:3b:11:
f1:7c:d0:6b:33:ed:71:ea:0f:09:97:b0:64:e9:7a:fb:c1:51:
72:85:63:21:1e:bb:05:91:de:de:08:d2:07:51:63:ac:38:64:
5e:b2:98:56:ce:11:25:ac:b4:bb:54:92:06:aa:58:dc:5a:8a:
cb:65:5c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net