Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/L9Pl17zWKblG0Neut33hMgnvNwg.roa
File: L9Pl17zWKblG0Neut33hMgnvNwg.roa (raw, json)
Hash identifier: KjUxc5uZUEZddoMKFPfgxm4nuEI/U5FS/VZwNLhDnYw=
Subject key identifier: 2F:D3:E5:D7:BC:D6:29:B9:46:D0:D7:AE:B7:7D:E1:32:09:EF:37:08
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 01942825B1E11A84661EC82E20DC17D10B5B
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/L9Pl17zWKblG0Neut33hMgnvNwg.roa
Signing time: Thu 02 Jan 2025 17:52:26 +0000
ROA not before: Thu 02 Jan 2025 17:52:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31029
IP address blocks: 77.76.128.0/21 maxlen: 21
77.76.137.0/24 maxlen: 24
77.76.138.0/24 maxlen: 24
77.76.139.0/24 maxlen: 24
77.76.140.0/24 maxlen: 24
77.76.141.0/24 maxlen: 24
77.76.142.0/24 maxlen: 24
77.76.143.0/24 maxlen: 24
77.76.152.0/21 maxlen: 21
77.76.152.0/24 maxlen: 24
77.76.153.0/24 maxlen: 24
77.76.154.0/24 maxlen: 24
77.76.155.0/24 maxlen: 24
77.76.156.0/24 maxlen: 24
77.76.157.0/24 maxlen: 24
77.76.158.0/24 maxlen: 24
77.76.159.0/24 maxlen: 24
77.76.184.0/21 maxlen: 21
94.139.208.0/21 maxlen: 21
109.107.72.0/21 maxlen: 21
109.107.88.0/21 maxlen: 21
2a03:2c0:e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:b1:e1:1a:84:66:1e:c8:2e:20:dc:17:d1:0b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 2 17:52:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fd3e5d7bcd629b946d0d7aeb77de13209ef3708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:06:b0:54:5f:fa:a9:2d:d9:ad:11:52:b2:
a9:7f:ec:f9:57:36:29:da:93:97:fd:0d:1d:2b:45:
c1:0d:73:4a:b2:dc:57:85:9c:3c:f0:16:5c:42:b8:
f2:ca:2f:2f:f0:b7:7d:6d:46:35:cb:ae:df:47:34:
44:5e:73:b1:67:a4:c7:7b:62:a4:fb:8a:3d:4e:57:
d3:03:0d:84:58:13:ef:ef:ac:41:d0:43:79:59:b1:
74:4d:b3:94:f1:10:8f:3e:d2:68:3a:39:5f:f1:c4:
4d:59:92:59:72:b9:29:8a:d7:ad:66:0c:e1:7b:57:
a2:6a:58:ed:76:46:09:ce:f3:54:8f:7d:12:3a:8b:
05:28:85:61:3c:b2:99:bc:ee:7d:0c:b4:6c:4d:af:
0b:29:6a:54:08:3c:69:69:a9:cc:1c:21:4a:3f:5e:
b0:74:89:f4:e2:4a:b4:e6:2f:98:79:fa:99:85:7e:
aa:60:ff:7e:32:cd:1d:bc:52:47:c0:9c:e5:ee:2d:
85:16:f9:b9:0a:23:dc:0f:1b:1b:f6:c3:96:9f:7c:
6a:35:30:18:60:7a:6d:56:94:6a:0b:5e:91:8b:37:
b9:37:e5:a9:28:2f:be:63:60:dd:65:2a:6b:12:4f:
a3:46:2b:83:85:3a:43:c2:42:ea:3e:a3:69:eb:08:
a6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D3:E5:D7:BC:D6:29:B9:46:D0:D7:AE:B7:7D:E1:32:09:EF:37:08
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/L9Pl17zWKblG0Neut33hMgnvNwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.128.0/21
77.76.137.0-77.76.143.255
77.76.152.0/21
77.76.184.0/21
94.139.208.0/21
109.107.72.0/21
109.107.88.0/21
IPv6:
2a03:2c0:e::/48
Signature Algorithm: sha256WithRSAEncryption
20:87:8b:2a:5b:e1:9d:d4:d2:3f:2a:67:c3:61:c0:b5:ac:33:
bf:c3:c2:8f:9d:0f:89:ad:a4:49:7b:a9:40:29:ac:7b:af:71:
78:28:bc:3b:24:fa:ca:1f:d8:b2:1e:22:71:46:cd:75:82:7a:
96:10:8d:a1:72:be:10:a0:d9:fe:25:63:06:3d:d1:2f:ec:55:
e0:3e:f7:72:b3:26:26:b0:67:c3:04:02:4f:2c:88:7c:c2:df:
cd:c4:d6:37:a0:2c:09:eb:e3:55:f0:e9:36:62:3d:56:33:2b:
89:99:b9:56:2b:1d:96:0f:37:97:81:c3:63:1c:8f:06:33:0f:
35:b7:9f:02:bb:8f:45:85:f6:a2:65:87:be:0f:85:95:b1:2c:
90:41:a4:57:51:83:b1:d8:24:29:da:6d:7d:fd:d5:1a:32:60:
72:d7:35:80:4a:72:84:c3:74:3b:13:a6:72:99:4d:45:e9:1a:
96:91:e1:1b:28:56:33:0a:a5:1b:c9:21:0a:ec:85:39:e5:bb:
75:f9:2a:c6:67:c4:73:2f:1f:31:dd:2c:ba:69:b1:fa:fa:57:
59:70:29:f0:40:50:5f:58:ae:32:50:a8:b2:19:f7:00:5b:d9:
79:71:24:60:7f:a5:77:ad:57:5d:67:e0:37:02:2e:c6:8e:bb:
7e:d1:06:f9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 25 05:27:16 2025 by rpki-client