Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/AmrDdDuWJP0EF9wYbJ8jZvtB8rE.roa
File: AmrDdDuWJP0EF9wYbJ8jZvtB8rE.roa (raw, json)
Hash identifier: hLhhSwmIMPDZ9avhL4tQ18Z0CcKloc5g5TWUxpiNjhE=
Subject key identifier: 02:6A:C3:74:3B:96:24:FD:04:17:DC:18:6C:9F:23:66:FB:41:F2:B1
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194266C68A9868F5F644B5F182998F2D45E
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/AmrDdDuWJP0EF9wYbJ8jZvtB8rE.roa
Signing time: Thu 02 Jan 2025 09:50:26 +0000
ROA not before: Thu 02 Jan 2025 09:50:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25515
IP address blocks: 77.51.0.0/16 maxlen: 16
77.51.176.0/21 maxlen: 21
77.51.184.0/21 maxlen: 21
77.51.192.0/21 maxlen: 21
77.51.200.0/21 maxlen: 21
77.51.208.0/21 maxlen: 21
77.51.216.0/21 maxlen: 21
77.51.224.0/21 maxlen: 21
85.94.0.0/19 maxlen: 19
89.109.192.0/18 maxlen: 18
90.154.120.0/21 maxlen: 21
91.188.223.0/24 maxlen: 24
95.72.0.0/15 maxlen: 15
146.19.98.0/24 maxlen: 24
185.141.236.0/23 maxlen: 23
185.202.109.0/24 maxlen: 24
193.3.188.0/24 maxlen: 24
213.140.224.0/19 maxlen: 19
217.107.96.0/21 maxlen: 21
217.107.104.0/23 maxlen: 23
2a00:56c0:40d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:68:a9:86:8f:5f:64:4b:5f:18:29:98:f2:d4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 09:50:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=026ac3743b9624fd0417dc186c9f2366fb41f2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:52:57:40:9b:33:8b:89:e3:46:92:c9:fa:59:
93:2b:c4:29:2c:3c:e5:65:33:12:8d:5f:5e:4a:c8:
d5:c5:af:50:cb:31:fe:7d:99:74:24:d1:0f:f6:a6:
74:a8:33:4c:a1:36:2e:ed:14:63:f0:eb:a7:0b:9d:
93:44:64:1f:7b:0a:e3:5c:88:51:31:56:f3:72:9b:
b3:c3:50:10:b8:fc:49:ea:84:8b:24:d7:5b:d9:69:
3c:a2:af:b7:56:69:00:77:82:cb:40:0b:37:7a:2c:
cb:00:0f:dd:21:5b:05:7c:b7:93:ec:73:08:96:e9:
97:f1:b1:71:af:c6:2f:b6:07:07:51:14:ff:77:ed:
57:3e:64:40:d1:da:92:d2:f5:ae:e9:c3:48:44:de:
ec:96:57:d7:de:a0:62:27:11:b1:82:8a:69:97:f3:
d7:0b:86:56:82:db:5b:ca:e3:e5:15:6b:be:5f:5d:
a6:cf:b1:b0:06:81:a9:1c:d6:f6:75:c3:96:6a:37:
8b:3c:bf:30:21:7d:bc:8c:55:d4:5c:82:d5:e0:ff:
85:24:86:bf:33:3c:d0:0a:63:35:9b:c4:0c:fd:57:
5f:b5:97:98:37:6e:5c:4f:72:55:16:13:eb:db:d2:
29:c7:ac:7d:bd:52:bd:bf:a4:fe:25:ec:2b:45:a5:
e3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6A:C3:74:3B:96:24:FD:04:17:DC:18:6C:9F:23:66:FB:41:F2:B1
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/AmrDdDuWJP0EF9wYbJ8jZvtB8rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.51.0.0/16
85.94.0.0/19
89.109.192.0/18
90.154.120.0/21
91.188.223.0/24
95.72.0.0/15
146.19.98.0/24
185.141.236.0/23
185.202.109.0/24
193.3.188.0/24
213.140.224.0/19
217.107.96.0-217.107.105.255
IPv6:
2a00:56c0:40d::/48
Signature Algorithm: sha256WithRSAEncryption
2b:70:c4:08:48:06:86:fb:e4:8d:e0:18:aa:07:35:9a:13:44:
e0:14:3a:5e:3f:ab:4d:1c:24:68:c4:73:5b:05:45:6e:23:60:
b3:d0:e6:e1:d2:3f:13:02:9a:b0:0e:bc:f7:e0:1c:a2:f4:f6:
9f:d6:20:7c:22:b0:93:5b:b4:03:1e:c3:f4:25:57:1d:c1:6e:
bd:08:51:f4:5c:32:4c:18:a4:21:49:ff:b6:79:21:49:9a:a9:
fb:1c:16:bc:b0:ba:17:ec:a5:02:b9:6f:71:08:8b:97:e6:0b:
fa:99:16:64:d0:c5:a2:92:7e:51:63:e6:a1:25:20:93:ba:09:
1d:a6:f2:3a:8d:0d:77:96:d4:90:2f:65:ff:20:16:bc:d4:71:
b3:ca:41:36:6e:58:20:a7:d8:dd:b2:70:4a:63:5b:87:27:d7:
95:ab:31:51:1e:ba:d1:04:97:96:19:ae:5a:e8:2f:78:f1:b4:
95:e5:ba:98:af:91:c1:db:71:91:40:c9:f4:bc:62:46:8b:a0:
24:b4:fb:3e:42:a8:e0:21:66:47:32:f0:28:c6:81:48:70:0d:
af:45:3a:b7:09:23:aa:c5:90:7b:b2:7c:35:69:28:4c:7b:ab:
df:af:43:b9:73:20:d4:e9:1f:4b:7d:57:8c:3d:09:39:7b:0c:
1e:64:1b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:12 2025 by rpki-client