Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/dbxrBkyZ0tq0ud2dYJnpzRMQOb8.roa
File: dbxrBkyZ0tq0ud2dYJnpzRMQOb8.roa (raw, json)
Hash identifier: DiDC1vRDYZKV7MhR9bmWUC8CTeGvGisDjrMVDZIxj4c=
Subject key identifier: 75:BC:6B:06:4C:99:D2:DA:B4:B9:DD:9D:60:99:E9:CD:13:10:39:BF
Certificate issuer: /CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Certificate serial: 0196154A9683CD74449E5069BCA5C6C52A7D
Authority key identifier: 21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/dbxrBkyZ0tq0ud2dYJnpzRMQOb8.roa
Signing time: Tue 08 Apr 2025 12:05:31 +0000
ROA not before: Tue 08 Apr 2025 12:05:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210976
IP address blocks: 78.40.216.0/24 maxlen: 24
85.193.92.0/24 maxlen: 24
85.193.93.0/24 maxlen: 24
85.193.95.0/24 maxlen: 24
87.249.50.0/24 maxlen: 24
89.191.228.0/24 maxlen: 24
90.156.228.0/24 maxlen: 24
90.156.231.0/24 maxlen: 24
94.228.122.0/24 maxlen: 24
176.57.212.0/24 maxlen: 24
176.57.221.0/24 maxlen: 24
185.104.112.0/24 maxlen: 24
185.104.115.0/24 maxlen: 24
185.247.16.0/24 maxlen: 24
185.247.18.0/24 maxlen: 24
185.247.19.0/24 maxlen: 24
188.225.14.0/24 maxlen: 24
188.225.60.0/24 maxlen: 24
193.201.115.0/24 maxlen: 24
194.35.116.0/24 maxlen: 24
194.35.117.0/24 maxlen: 24
194.35.118.0/24 maxlen: 24
194.35.119.0/24 maxlen: 24
217.25.91.0/24 maxlen: 24
217.25.95.0/24 maxlen: 24
217.151.229.0/24 maxlen: 24
217.151.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:4a:96:83:cd:74:44:9e:50:69:bc:a5:c6:c5:2a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Validity
Not Before: Apr 8 12:05:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=75bc6b064c99d2dab4b9dd9d6099e9cd131039bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c9:97:18:3c:a7:61:58:45:e1:48:1a:00:85:
b0:cb:29:9a:ac:25:5c:e2:b5:5d:71:11:2a:c0:2f:
f5:d3:7d:21:87:72:d7:18:c3:90:84:29:f0:50:90:
9f:58:e7:42:36:8c:59:90:19:28:50:9a:c5:98:a7:
b0:8f:9e:d3:e2:ad:5d:e4:0d:2b:06:c2:7d:24:9f:
ad:14:56:23:d2:a0:7d:69:1c:84:59:e8:40:44:fa:
25:fd:66:a2:98:24:e0:ae:30:24:18:fb:c8:05:84:
9d:79:15:ca:92:3f:1d:25:48:f8:39:41:b2:c4:4d:
65:16:e7:af:08:4d:52:42:fd:18:cc:9a:70:a9:cd:
1e:5a:45:ea:36:92:9b:52:68:0c:0d:7d:c5:a0:50:
93:be:66:23:3c:d1:8e:f8:73:af:dc:3d:70:a2:83:
05:d6:45:c2:5f:9a:80:ac:a1:7b:e4:b2:81:7d:34:
3b:59:1b:55:0a:a0:b6:94:b3:4b:b9:f5:41:bf:5d:
f7:80:6b:ff:45:57:10:06:a6:43:23:1c:f6:78:fb:
0b:8b:18:f9:4e:14:91:6a:3e:70:11:40:e0:c8:30:
f8:16:85:33:b1:d1:60:ca:9b:70:d3:fc:c5:bd:50:
cc:45:a7:f6:08:c4:99:e1:31:c4:a0:fd:a0:a7:e1:
5e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BC:6B:06:4C:99:D2:DA:B4:B9:DD:9D:60:99:E9:CD:13:10:39:BF
X509v3 Authority Key Identifier:
keyid:21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/dbxrBkyZ0tq0ud2dYJnpzRMQOb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/IWCyscgp2Ik2sa2u7Jf90bQNQeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.40.216.0/24
85.193.92.0/23
85.193.95.0/24
87.249.50.0/24
89.191.228.0/24
90.156.228.0/24
90.156.231.0/24
94.228.122.0/24
176.57.212.0/24
176.57.221.0/24
185.104.112.0/24
185.104.115.0/24
185.247.16.0/24
185.247.18.0/23
188.225.14.0/24
188.225.60.0/24
193.201.115.0/24
194.35.116.0/22
217.25.91.0/24
217.25.95.0/24
217.151.229.0/24
217.151.231.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:19:63:b2:e7:2e:58:01:2b:2e:d7:41:dc:19:6f:fc:2e:bc:
be:0a:4d:61:3a:92:19:b9:9e:26:4f:6a:1e:a0:81:23:ae:66:
3e:1e:78:75:10:27:06:82:c0:7f:8d:48:46:d1:0c:5f:dc:68:
e9:86:df:88:f8:10:f5:ce:ca:3c:f8:d7:42:81:32:65:83:3e:
d7:40:a3:94:ad:8b:a2:65:11:8f:ad:af:ca:bc:76:06:94:5b:
52:bf:95:36:a3:34:4d:c1:51:99:ee:4b:74:ff:84:4b:99:4f:
68:f7:ad:ab:45:02:7e:f0:ee:10:65:bb:36:25:7b:25:cb:d4:
15:28:97:1c:c9:06:92:38:f1:51:e1:11:f6:f4:a8:26:38:cb:
21:05:87:61:be:e6:9a:5d:d8:2a:e6:d4:c1:4f:c3:20:02:73:
25:5c:a0:e0:c0:54:a7:a3:b8:6e:97:45:19:e7:5a:eb:e6:9d:
56:c8:69:11:a1:c6:81:83:7d:11:2f:ab:de:30:05:28:ac:9d:
0c:5d:5e:62:cf:9d:ba:67:f5:7a:4f:1d:92:7f:68:05:28:6d:
cc:3a:db:b9:f4:d2:63:07:12:93:79:48:75:06:fd:52:51:54:
58:2e:67:ea:44:6c:34:65:1a:06:a9:92:54:ee:ac:66:fb:87:
a8:a9:56:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:06 2025 by rpki-client on console.sobornost.net