Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/nnbxQ8tDPz9a0vLR7ITFF8A_VlE.roa
File: nnbxQ8tDPz9a0vLR7ITFF8A_VlE.roa (raw, json)
Hash identifier: halDO4C/H1OfIMQSoqT7EneEPBECnw5N2tq5Tmmkcww=
Subject key identifier: 9E:76:F1:43:CB:43:3F:3F:5A:D2:F2:D1:EC:84:C5:17:C0:3F:56:51
Certificate issuer: /CN=6d42cff18334b2ff76b15ad944a8a9135e90568c
Certificate serial: 019426D94048CE4117B44838143CEA8234A0
Authority key identifier: 6D:42:CF:F1:83:34:B2:FF:76:B1:5A:D9:44:A8:A9:13:5E:90:56:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bULP8YM0sv92sVrZRKipE16QVow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/nnbxQ8tDPz9a0vLR7ITFF8A_VlE.roa
Signing time: Thu 02 Jan 2025 11:49:19 +0000
ROA not before: Thu 02 Jan 2025 11:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198507
IP address blocks: 37.143.52.0/22 maxlen: 22
37.143.52.0/24 maxlen: 24
37.143.53.0/24 maxlen: 24
37.143.54.0/24 maxlen: 24
37.143.55.0/24 maxlen: 24
45.9.196.0/22 maxlen: 24
45.14.176.0/22 maxlen: 24
45.81.192.0/22 maxlen: 24
45.81.195.0/24 maxlen: 24
185.132.72.0/22 maxlen: 24
185.132.72.0/24 maxlen: 24
185.132.73.0/24 maxlen: 24
185.132.74.0/24 maxlen: 24
185.132.75.0/24 maxlen: 24
2a06:e040::/32 maxlen: 32
2a06:e040:3501::/48 maxlen: 48
2a06:e040:3502::/48 maxlen: 48
2a06:e040:5901::/48 maxlen: 48
2a06:e040:6900::/40 maxlen: 40
2a06:e040:7601::/48 maxlen: 48
2a06:e040:7603::/48 maxlen: 48
2a06:e043::/32 maxlen: 32
2a06:e044:10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:40:48:ce:41:17:b4:48:38:14:3c:ea:82:34:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d42cff18334b2ff76b15ad944a8a9135e90568c
Validity
Not Before: Jan 2 11:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9e76f143cb433f3f5ad2f2d1ec84c517c03f5651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c5:6c:36:91:34:9d:7b:23:fb:63:6d:b4:af:
96:4f:95:73:37:6b:8a:c1:d3:8c:f7:00:9f:5c:f8:
fe:c1:3e:51:f0:4a:1c:3a:dc:bf:1e:b4:ff:af:36:
75:92:8c:3c:55:fc:c6:a8:f0:17:79:1c:4a:c3:0c:
86:35:fe:bc:34:be:e7:fa:83:7a:6e:a2:f7:a9:97:
03:29:7b:cd:98:e2:fb:aa:22:cb:b8:df:11:f8:6b:
92:78:2c:97:f7:f3:51:42:40:96:04:ec:df:67:b9:
31:a8:7c:34:42:58:d4:da:cd:fa:94:8f:1a:97:4d:
4f:c8:3f:6d:79:19:19:7b:cb:e4:6a:84:d4:b0:c8:
b9:01:a3:7d:33:af:d0:8e:95:ff:d3:6b:57:ae:be:
b4:ef:62:f5:8d:af:1b:7a:59:c4:fe:ad:4a:3e:18:
96:91:8d:31:7c:c6:62:1e:4f:40:9e:9a:de:7a:d4:
38:6b:52:b0:4e:69:b5:58:7e:b7:5d:c8:0a:e9:60:
a4:63:05:e2:10:4b:6b:16:e6:ec:25:e3:bc:fc:b8:
07:95:f4:a5:31:58:c7:7b:a2:f8:e4:90:46:58:62:
d4:82:45:61:08:b8:ff:e1:a2:be:6b:39:bd:d8:92:
12:61:e1:71:26:9f:c2:00:de:07:9a:03:0a:7c:de:
ae:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:76:F1:43:CB:43:3F:3F:5A:D2:F2:D1:EC:84:C5:17:C0:3F:56:51
X509v3 Authority Key Identifier:
keyid:6D:42:CF:F1:83:34:B2:FF:76:B1:5A:D9:44:A8:A9:13:5E:90:56:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bULP8YM0sv92sVrZRKipE16QVow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/nnbxQ8tDPz9a0vLR7ITFF8A_VlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/bULP8YM0sv92sVrZRKipE16QVow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.52.0/22
45.9.196.0/22
45.14.176.0/22
45.81.192.0/22
185.132.72.0/22
IPv6:
2a06:e040::/32
2a06:e043::/32
2a06:e044:10::/48
Signature Algorithm: sha256WithRSAEncryption
08:91:18:f0:a8:91:51:25:8b:0e:50:eb:c2:0f:a2:78:60:87:
e2:27:d3:b4:f4:d5:2f:e1:3f:ae:1a:71:6b:08:cc:3d:ba:b1:
82:50:bd:ec:c5:29:03:db:bd:cb:1d:91:fb:3c:96:5f:c7:62:
77:8d:77:55:89:a6:4d:1a:d8:f1:ad:dd:6e:7c:ba:3b:15:bc:
8f:b7:6f:9b:74:87:97:0c:da:d2:e4:da:09:3f:75:47:da:6a:
80:37:45:4e:4e:e4:ec:29:4d:18:c0:85:dc:f7:9e:4b:7e:70:
5f:59:2d:1c:11:4b:f2:ed:c8:8f:44:46:6d:f4:e9:10:04:38:
58:83:91:35:fd:0e:9d:3a:1a:d2:f8:8e:3a:3b:04:0d:1c:76:
ba:ca:85:2f:ea:14:94:5b:55:aa:b0:3b:df:a9:44:87:97:37:
59:99:2e:8f:1c:7c:43:c9:00:c7:5a:4f:57:e2:26:90:d8:ce:
ed:1a:3f:c3:e1:6c:cf:61:0e:ef:47:81:62:90:dc:4c:36:74:
e6:91:af:82:4c:e8:1a:5f:a5:78:42:46:99:cc:55:25:3c:de:
51:61:0f:19:11:0b:36:e7:02:77:54:42:2e:33:fe:e1:40:75:
cd:37:76:48:ba:96:d6:54:ea:62:7e:bb:97:5c:0c:93:38:81:
5e:e0:19:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net