Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Q8w54BJk5ZEYzVRDpG3_GvYMhcU.roa
File: Q8w54BJk5ZEYzVRDpG3_GvYMhcU.roa (raw, json)
Hash identifier: WQE6SNo8La326dp4ELFBgoEFokKY4uMsL+wWdpRkVMs=
Subject key identifier: 43:CC:39:E0:12:64:E5:91:18:CD:54:43:A4:6D:FF:1A:F6:0C:85:C5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0195F0AA0977C7304D0384A1517D1649E608
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Q8w54BJk5ZEYzVRDpG3_GvYMhcU.roa
Signing time: Tue 01 Apr 2025 09:23:50 +0000
ROA not before: Tue 01 Apr 2025 09:23:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41745
IP address blocks: 45.12.254.0/24 maxlen: 24
45.14.165.0/24 maxlen: 24
45.81.243.0/24 maxlen: 24
45.88.67.0/24 maxlen: 24
84.21.172.0/24 maxlen: 24
85.31.45.0/24 maxlen: 24
85.209.132.0/24 maxlen: 24
85.209.134.0/24 maxlen: 24
93.123.30.0/24 maxlen: 24
94.125.100.0/24 maxlen: 24
94.125.101.0/24 maxlen: 24
109.206.241.0/24 maxlen: 24
192.145.28.0/24 maxlen: 24
192.145.29.0/24 maxlen: 24
192.145.30.0/24 maxlen: 24
192.145.31.0/24 maxlen: 24
212.87.220.0/24 maxlen: 24
212.87.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f0:aa:09:77:c7:30:4d:03:84:a1:51:7d:16:49:e6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 1 09:23:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43cc39e01264e59118cd5443a46dff1af60c85c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2a:fa:6c:aa:67:02:13:57:49:14:a1:b4:96:
a5:53:33:a2:56:bb:5c:df:fd:53:8a:cb:6b:63:f0:
1b:45:bd:79:ce:e8:80:77:51:ec:08:8f:f2:b6:a4:
b2:ae:27:0e:68:02:d5:4a:bb:02:8e:8a:e0:ad:a0:
6e:18:e6:26:c3:18:23:61:19:65:9e:80:36:7e:ec:
ba:49:39:30:23:7d:d3:7d:e1:56:3b:ef:35:83:12:
c8:34:e1:8d:c1:37:c2:9d:75:55:8a:6f:ea:74:5f:
43:08:7f:2f:cc:1e:53:71:a8:71:6a:4a:df:ec:6a:
59:ab:4f:70:00:cd:1e:3b:09:13:b6:03:8f:a3:0e:
6a:9e:fb:7a:ce:36:03:99:c8:fe:4c:96:8d:64:24:
dc:77:c6:8f:43:50:2b:f1:b3:95:d9:b3:aa:fb:ed:
2c:39:d9:eb:ce:51:7a:4a:6a:8d:ba:62:e7:d5:d4:
db:f0:82:a8:92:f3:28:d4:2f:50:1a:f4:e5:2a:78:
92:9a:88:85:89:af:c1:d6:54:fb:d8:bf:3e:e9:3c:
b9:ff:ee:2a:0f:a8:4d:4c:ec:17:9c:c9:04:01:db:
b0:dd:9e:67:b2:70:dd:84:bc:22:84:d9:df:58:5d:
86:26:82:19:6c:70:3a:32:e6:53:3b:5c:b9:29:66:
e3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:CC:39:E0:12:64:E5:91:18:CD:54:43:A4:6D:FF:1A:F6:0C:85:C5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Q8w54BJk5ZEYzVRDpG3_GvYMhcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.254.0/24
45.14.165.0/24
45.81.243.0/24
45.88.67.0/24
84.21.172.0/24
85.31.45.0/24
85.209.132.0/24
85.209.134.0/24
93.123.30.0/24
94.125.100.0/23
109.206.241.0/24
192.145.28.0/22
212.87.220.0/24
212.87.223.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f8:a7:86:9f:27:5e:20:61:76:d4:72:21:98:71:9b:02:e9:
23:0a:28:3a:b5:73:dd:e5:a5:0a:7e:0f:1d:36:7c:bd:7b:d6:
1c:23:29:26:0b:3a:1d:56:97:8d:8d:7e:8b:7b:6b:d4:1a:72:
7a:ff:c8:10:d3:99:d5:af:ff:70:3c:15:4b:e0:07:54:9b:4e:
7d:1f:c7:8f:d6:58:fe:01:61:27:b0:3f:18:bd:d5:fb:01:27:
5d:5d:e2:ce:10:ea:ca:06:35:c6:d8:8b:65:c3:a9:e1:5c:19:
b4:34:b8:07:41:97:c1:c5:fc:43:c5:8c:e5:49:2b:13:ea:85:
af:88:f8:7e:a5:e2:4e:26:98:3c:87:a9:60:99:b9:6b:e2:3c:
04:db:03:61:93:79:27:33:12:e2:33:f9:5c:69:4b:64:b2:17:
d1:90:75:16:99:18:a2:26:9a:05:6b:ab:bb:e8:4f:60:2d:06:
a7:46:8f:bf:c1:b6:fd:4c:d1:f0:f6:d4:63:97:f0:09:30:07:
8b:01:77:89:c1:4e:59:8a:75:65:b9:bb:2d:cb:f6:66:49:f0:
75:85:a8:a3:ad:b5:74:4b:7c:03:b3:01:fb:b3:c0:d2:75:e3:
fb:72:42:9d:fe:a4:f6:0f:e3:61:94:a7:6d:5d:51:40:42:c4:
38:e5:30:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:44 2025 by rpki-client on console.sobornost.net