Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/VGpF_n1XPkcrX19VIZfEe9zTBfU.roa
File: VGpF_n1XPkcrX19VIZfEe9zTBfU.roa (raw, json)
Hash identifier: ZCWW25MvdyoXZn5hf+wK4mNxI/epLix5Iz9z1Fs5NMw=
Subject key identifier: 54:6A:45:FE:7D:57:3E:47:2B:5F:5F:55:21:97:C4:7B:DC:D3:05:F5
Certificate issuer: /CN=27280cc534516d1c1d9ea024eaafbd01fdc68c97
Certificate serial: 0194DABA3F7BDC9DABD9266CB01A3BEEDCD3
Authority key identifier: 27:28:0C:C5:34:51:6D:1C:1D:9E:A0:24:EA:AF:BD:01:FD:C6:8C:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JygMxTRRbRwdnqAk6q-9Af3GjJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/VGpF_n1XPkcrX19VIZfEe9zTBfU.roa
Signing time: Thu 06 Feb 2025 10:07:06 +0000
ROA not before: Thu 06 Feb 2025 10:07:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39238
IP address blocks: 79.143.64.0/22 maxlen: 32
79.143.64.0/24 maxlen: 24
79.143.65.0/24 maxlen: 24
79.143.66.0/24 maxlen: 24
79.143.67.0/24 maxlen: 24
79.143.76.0/22 maxlen: 32
79.143.77.0/24 maxlen: 24
79.143.78.0/24 maxlen: 24
79.143.79.0/24 maxlen: 24
185.38.160.0/22 maxlen: 32
185.38.160.0/24 maxlen: 24
185.38.161.0/24 maxlen: 24
185.38.162.0/24 maxlen: 24
185.38.163.0/24 maxlen: 24
194.36.148.0/22 maxlen: 32
194.36.149.0/24 maxlen: 24
194.36.150.0/24 maxlen: 24
194.36.151.0/24 maxlen: 24
217.29.50.0/23 maxlen: 32
217.29.51.0/24 maxlen: 24
217.29.52.0/22 maxlen: 32
217.29.52.0/24 maxlen: 24
217.29.53.0/24 maxlen: 24
217.29.54.0/24 maxlen: 24
217.29.55.0/24 maxlen: 24
217.29.56.0/21 maxlen: 32
217.29.56.0/24 maxlen: 24
217.29.57.0/24 maxlen: 24
217.29.58.0/24 maxlen: 24
217.29.59.0/24 maxlen: 24
217.29.60.0/24 maxlen: 24
217.29.61.0/24 maxlen: 24
217.29.62.0/24 maxlen: 24
217.29.63.0/24 maxlen: 24
2a0c:f540::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:da:ba:3f:7b:dc:9d:ab:d9:26:6c:b0:1a:3b:ee:dc:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27280cc534516d1c1d9ea024eaafbd01fdc68c97
Validity
Not Before: Feb 6 10:07:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=546a45fe7d573e472b5f5f552197c47bdcd305f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6e:a3:fc:1f:68:0b:88:ca:5a:50:cf:a9:3b:
e5:53:7a:8a:9c:57:81:bc:85:58:56:d7:65:e8:f7:
ee:16:9f:8f:d1:1f:d6:2c:72:89:fe:a8:bf:e4:1d:
ea:c4:6f:a1:e1:6f:18:3d:ff:19:1d:e0:86:87:23:
29:1c:89:c1:9f:e3:9e:99:16:a4:08:b0:93:5b:c7:
9e:cb:20:90:20:f9:74:6e:c9:86:09:47:75:a9:68:
25:1b:0e:2f:47:cc:1a:fc:e4:e4:e9:c8:1a:f9:a9:
ce:88:b8:dd:e7:32:af:95:86:21:a3:e0:53:62:a7:
3b:4a:36:94:55:bc:e9:90:df:56:65:a5:1c:97:c2:
a5:51:58:36:14:89:8b:a0:da:c9:f8:0a:14:d4:78:
6b:07:de:b3:fe:c0:56:d4:99:28:18:f9:0a:6b:ac:
d6:da:c0:56:4a:68:6c:89:f8:4d:81:51:d8:64:9c:
63:3b:b4:39:a4:71:7f:16:4f:6f:c1:84:f4:94:f7:
82:94:20:85:80:91:5a:da:8a:a6:90:b3:f0:bf:49:
3c:f4:84:54:25:62:65:85:de:8a:57:6d:76:2c:83:
8f:00:f8:5a:10:d3:45:df:d7:84:58:6b:96:24:d6:
ef:88:b2:5b:80:73:2f:ba:3a:a1:52:0f:93:7f:2f:
6d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6A:45:FE:7D:57:3E:47:2B:5F:5F:55:21:97:C4:7B:DC:D3:05:F5
X509v3 Authority Key Identifier:
keyid:27:28:0C:C5:34:51:6D:1C:1D:9E:A0:24:EA:AF:BD:01:FD:C6:8C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JygMxTRRbRwdnqAk6q-9Af3GjJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/VGpF_n1XPkcrX19VIZfEe9zTBfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/JygMxTRRbRwdnqAk6q-9Af3GjJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.64.0/22
79.143.76.0/22
185.38.160.0/22
194.36.148.0/22
217.29.50.0-217.29.63.255
IPv6:
2a0c:f540::/29
Signature Algorithm: sha256WithRSAEncryption
17:b1:a8:c2:e1:e6:a0:50:d2:36:64:f4:ae:61:29:7c:27:53:
95:62:f9:ea:91:11:38:d9:f2:81:0e:07:97:a9:0d:1d:02:5f:
55:b4:8c:21:88:7f:ca:62:94:03:e3:63:32:bf:01:0b:10:c7:
48:f2:6b:a3:44:91:9d:b9:56:f7:38:b7:f6:9d:b1:f0:2f:6e:
db:36:98:44:3d:eb:ad:07:0f:1f:07:9b:50:cc:97:20:8c:a8:
03:9a:e9:ac:53:52:57:15:75:c3:4d:a4:8e:d3:51:5f:70:7e:
30:ba:04:f8:e1:fe:c0:30:71:49:97:f7:72:e8:f7:41:ba:50:
ad:13:57:77:68:63:a9:14:fd:f4:90:d6:64:aa:7d:9f:5f:32:
60:65:07:fc:55:d6:7a:ce:cd:1f:c3:24:17:59:d5:e0:4c:25:
ce:51:c2:81:23:99:02:c7:0c:65:00:15:30:4c:1b:28:18:68:
bf:67:fe:1c:20:06:db:12:6d:72:28:59:48:14:36:e6:76:c7:
49:9f:08:3b:f6:46:10:a1:00:29:0d:60:cf:78:15:fe:ed:24:
90:5d:64:09:f4:2b:79:2d:57:dd:82:e1:3a:7e:2c:71:03:83:
e3:30:2c:0a:f6:60:aa:46:d7:d1:1d:d5:55:51:f2:1a:ce:b6:
82:f4:13:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:51:55 2025 by rpki-client