Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/74sMNIujYQ-5Lm-zSORga15VjJ0.roa
File: 74sMNIujYQ-5Lm-zSORga15VjJ0.roa (raw, json)
Hash identifier: oaMCxCS040iJvnKhiXgsK0LJJBoQS0MuRWCOhxdKq0Y=
Subject key identifier: EF:8B:0C:34:8B:A3:61:0F:B9:2E:6F:B3:48:E4:60:6B:5E:55:8C:9D
Certificate issuer: /CN=63082d6d3a1dc501795737537ca74d27a80265a2
Certificate serial: 019426D95C5DEFEA64CA66DB64F4038E49EF
Authority key identifier: 63:08:2D:6D:3A:1D:C5:01:79:57:37:53:7C:A7:4D:27:A8:02:65:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YwgtbTodxQF5VzdTfKdNJ6gCZaI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/74sMNIujYQ-5Lm-zSORga15VjJ0.roa
Signing time: Thu 02 Jan 2025 11:49:26 +0000
ROA not before: Thu 02 Jan 2025 11:49:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62205
IP address blocks: 79.174.184.0/21 maxlen: 21
91.209.128.0/23 maxlen: 23
91.209.130.0/24 maxlen: 24
139.28.180.0/22 maxlen: 22
139.28.180.0/23 maxlen: 23
139.28.182.0/23 maxlen: 23
185.44.164.0/22 maxlen: 24
185.77.228.0/22 maxlen: 22
185.77.240.0/22 maxlen: 22
2a01:72a0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:5c:5d:ef:ea:64:ca:66:db:64:f4:03:8e:49:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63082d6d3a1dc501795737537ca74d27a80265a2
Validity
Not Before: Jan 2 11:49:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef8b0c348ba3610fb92e6fb348e4606b5e558c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c8:60:45:99:61:34:3a:5a:bc:1f:a1:49:b4:
bb:b8:26:d0:dc:90:0d:9b:4d:67:b5:78:4e:d6:f7:
ad:0d:52:f8:66:8d:a9:33:54:15:d6:40:2f:df:06:
c1:c2:bb:a9:5b:7e:5b:6d:0c:ae:a1:6a:45:f1:a5:
93:da:17:46:7a:26:13:6f:b5:8d:db:f9:25:12:bb:
5b:7c:63:42:0f:9d:e5:a6:2f:78:a9:33:5e:1b:bb:
a3:bd:71:e3:0e:2e:6e:ad:bd:79:4c:51:c2:1d:2d:
99:18:90:a2:80:fc:c7:ad:af:c4:34:c6:f7:93:47:
12:e1:23:e6:02:4e:b7:5b:f6:28:3d:41:bd:c7:9f:
b8:87:cc:5e:83:a7:49:7b:29:45:9b:f4:2c:49:dc:
5e:8b:08:d6:d9:ff:55:96:17:98:79:60:17:f5:15:
bd:d4:f0:84:4f:c2:a9:b9:ca:da:6d:13:fb:fa:06:
2c:f1:52:f0:78:b2:2a:8c:c4:37:9e:48:d8:e5:c3:
6e:4b:b5:b9:1f:bc:c0:39:1c:6d:9d:7d:bb:4b:5d:
a3:a3:b6:ce:b1:18:42:c0:a8:87:7c:ff:92:75:c7:
05:10:f8:d1:f7:91:26:e0:94:8a:3d:e0:47:6b:35:
e0:dd:56:72:b5:7a:71:cb:40:19:d8:61:e2:6b:59:
00:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8B:0C:34:8B:A3:61:0F:B9:2E:6F:B3:48:E4:60:6B:5E:55:8C:9D
X509v3 Authority Key Identifier:
keyid:63:08:2D:6D:3A:1D:C5:01:79:57:37:53:7C:A7:4D:27:A8:02:65:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YwgtbTodxQF5VzdTfKdNJ6gCZaI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/74sMNIujYQ-5Lm-zSORga15VjJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/YwgtbTodxQF5VzdTfKdNJ6gCZaI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.184.0/21
91.209.128.0-91.209.130.255
139.28.180.0/22
185.44.164.0/22
185.77.228.0/22
185.77.240.0/22
IPv6:
2a01:72a0::/32
Signature Algorithm: sha256WithRSAEncryption
01:12:09:f5:f7:6d:13:ff:d5:70:ea:e2:c1:0c:de:f2:67:a6:
95:18:51:82:8f:2d:96:18:15:85:08:0b:6c:93:15:70:ce:59:
df:66:dd:56:f8:37:e7:2d:7b:6c:28:01:f3:c2:dd:9e:70:f7:
ec:ae:b1:60:bf:bc:38:ee:b3:18:e4:67:1d:97:06:27:6e:ea:
34:25:01:2a:bb:bc:60:27:24:75:06:bc:0f:2a:c3:37:b5:b7:
78:d4:7b:c1:a5:ed:c9:77:5e:3f:1f:32:22:f0:c6:67:a2:0f:
36:ff:02:e9:0b:42:cd:23:f1:a0:a3:e9:9f:ba:95:d2:7e:e7:
e1:43:59:50:65:81:77:f5:a9:f3:c0:35:f1:c0:47:d7:f9:d0:
ce:fe:b4:07:1c:9f:bd:36:06:14:45:32:45:5d:58:6a:92:0b:
25:f1:9c:a7:c5:b7:b8:1d:f8:31:ba:65:5e:ad:ff:ac:1f:da:
f7:2a:73:8b:47:d1:6c:86:07:e5:a1:9f:08:39:46:41:49:23:
1e:5f:80:63:32:8b:4a:5d:b6:36:d8:28:26:d1:6c:85:cd:15:
ae:91:1c:f9:f8:59:0f:54:8c:8b:97:32:53:d0:ce:13:39:ee:
55:ba:d1:25:a1:45:72:9c:e2:77:02:83:5a:21:b4:33:90:5b:
ff:5b:10:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:56:45 2025 by rpki-client