Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/VzEuM4wQpuwbT-xJ7bC1xNm7YDc.roa
File: VzEuM4wQpuwbT-xJ7bC1xNm7YDc.roa (raw, json)
Hash identifier: Pz1SZUH98WHk5LHtbhA9Ppfrk48GkT05UG0eFHMTuIU=
Subject key identifier: 57:31:2E:33:8C:10:A6:EC:1B:4F:EC:49:ED:B0:B5:C4:D9:BB:60:37
Certificate issuer: /CN=5188dedacdc240b4b2f786f12342e0a83d8ae80f
Certificate serial: 01942B0868F663666286BB54364CAABCF5DC
Authority key identifier: 51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYje2s3CQLSy94bxI0LgqD2K6A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/VzEuM4wQpuwbT-xJ7bC1xNm7YDc.roa
Signing time: Fri 03 Jan 2025 07:19:18 +0000
ROA not before: Fri 03 Jan 2025 07:19:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208366
IP address blocks: 45.142.220.0/22 maxlen: 22
45.142.220.0/24 maxlen: 24
45.142.221.0/24 maxlen: 24
45.142.222.0/24 maxlen: 24
45.142.223.0/24 maxlen: 24
2a0e:dbc0::/29 maxlen: 29
2a0e:dbc0::/48 maxlen: 48
2a0e:dbc0:1::/48 maxlen: 48
2a0e:dbc0:2::/48 maxlen: 48
2a0e:dbc0:3::/48 maxlen: 48
2a0e:dbc0:4::/48 maxlen: 48
2a0e:dbc0:5::/48 maxlen: 48
2a0e:dbc0:6::/48 maxlen: 48
2a0e:dbc0:7::/48 maxlen: 48
2a0e:dbc0:8::/48 maxlen: 48
2a0e:dbc0:9::/48 maxlen: 48
2a0e:dbc0:a::/48 maxlen: 48
2a0e:dbc0:b::/48 maxlen: 48
2a0e:dbc0:c::/48 maxlen: 48
2a0e:dbc0:d::/48 maxlen: 48
2a0e:dbc0:e::/48 maxlen: 48
2a0e:dbc0:f::/48 maxlen: 48
2a0e:dbc0:1000::/48 maxlen: 48
2a0e:dbc0:1001::/48 maxlen: 48
2a0e:dbc0:1002::/48 maxlen: 48
2a0e:dbc0:1003::/48 maxlen: 48
2a0e:dbc0:1004::/48 maxlen: 48
2a0e:dbc0:1005::/48 maxlen: 48
2a0e:dbc0:1006::/48 maxlen: 48
2a0e:dbc0:1007::/48 maxlen: 48
2a0e:dbc0:1008::/48 maxlen: 48
2a0e:dbc0:1009::/48 maxlen: 48
2a0e:dbc0:100a::/48 maxlen: 48
2a0e:dbc0:100b::/48 maxlen: 48
2a0e:dbc0:100c::/48 maxlen: 48
2a0e:dbc0:100d::/48 maxlen: 48
2a0e:dbc0:100e::/48 maxlen: 48
2a0e:dbc0:100f::/48 maxlen: 48
2a0e:dbc0:2000::/48 maxlen: 48
2a0e:dbc0:2001::/48 maxlen: 48
2a0e:dbc0:2002::/48 maxlen: 48
2a0e:dbc0:2003::/48 maxlen: 48
2a0e:dbc0:2004::/48 maxlen: 48
2a0e:dbc0:2005::/48 maxlen: 48
2a0e:dbc0:2006::/48 maxlen: 48
2a0e:dbc0:2007::/48 maxlen: 48
2a0e:dbc0:2008::/48 maxlen: 48
2a0e:dbc0:2009::/48 maxlen: 48
2a0e:dbc0:200a::/48 maxlen: 48
2a0e:dbc0:200b::/48 maxlen: 48
2a0e:dbc0:200c::/48 maxlen: 48
2a0e:dbc0:200d::/48 maxlen: 48
2a0e:dbc0:200e::/48 maxlen: 48
2a0e:dbc0:200f::/48 maxlen: 48
2a0e:dbc0:3000::/48 maxlen: 48
2a0e:dbc0:3001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:2b:08:68:f6:63:66:62:86:bb:54:36:4c:aa:bc:f5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5188dedacdc240b4b2f786f12342e0a83d8ae80f
Validity
Not Before: Jan 3 07:19:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57312e338c10a6ec1b4fec49edb0b5c4d9bb6037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:af:18:d7:54:5b:7c:af:2e:8e:1b:a6:90:40:
10:1b:64:8a:f5:b2:d5:5b:2c:2a:ad:86:98:25:bc:
c0:1a:29:42:c6:32:b6:d2:5e:86:f2:78:18:1f:c8:
42:7e:5e:b9:e7:f6:c9:80:b0:e7:49:f1:53:e1:42:
88:aa:16:67:d9:2a:ea:e0:66:ba:01:32:39:a1:a8:
22:2f:68:75:b2:dc:d2:9d:af:56:0d:2e:65:59:6f:
6e:ef:23:5d:db:0d:6f:a6:49:b6:d6:b3:a5:c4:4a:
28:3d:e6:80:47:60:35:59:6b:74:b1:fd:c8:74:ed:
dc:07:46:19:3b:26:05:57:eb:ed:a1:61:69:11:02:
5a:fc:b3:41:6d:fe:2d:f6:74:57:03:53:dd:c2:b1:
82:41:13:59:e7:cd:fa:e4:e5:50:77:ab:fe:6a:05:
0b:8f:97:ed:79:a2:fc:68:8e:a5:15:13:b6:ad:32:
37:4b:fa:1a:06:2d:bf:ca:68:32:09:1c:ff:da:e3:
42:6b:8c:f3:f2:b2:bf:f6:1f:81:cd:bc:35:bb:3a:
e3:c7:f1:db:39:96:7c:94:39:d9:d3:bc:dc:94:97:
45:e6:46:78:e7:66:df:6f:2a:74:56:fd:a4:c4:5d:
0e:bc:d1:f8:3c:88:ec:ec:90:cd:f8:26:c2:e6:5c:
26:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:31:2E:33:8C:10:A6:EC:1B:4F:EC:49:ED:B0:B5:C4:D9:BB:60:37
X509v3 Authority Key Identifier:
keyid:51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYje2s3CQLSy94bxI0LgqD2K6A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/VzEuM4wQpuwbT-xJ7bC1xNm7YDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/UYje2s3CQLSy94bxI0LgqD2K6A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.220.0/22
IPv6:
2a0e:dbc0::/29
Signature Algorithm: sha256WithRSAEncryption
8e:3d:be:5a:d1:74:ba:82:0d:0b:db:25:a8:56:d8:f9:b3:79:
bd:45:2e:22:7f:99:b2:12:91:68:75:e5:57:42:a1:2f:bd:b5:
54:f2:02:be:67:46:9f:71:d0:6f:a0:f8:b7:4f:33:27:3b:db:
43:10:07:51:09:d2:83:51:42:83:5d:69:a2:b0:06:76:21:b7:
e6:e2:71:b7:2a:ef:bc:7a:9f:7d:53:b6:68:38:1e:f8:8c:80:
7b:93:ae:d7:ae:99:81:70:ac:b4:1f:12:7d:0c:16:57:34:ef:
e6:38:69:a7:fd:a1:a2:7f:74:87:be:ba:c0:b3:31:9f:d9:45:
82:29:ec:ec:c9:0b:03:2d:5b:0d:9f:62:cf:3b:a6:30:e6:6c:
19:e7:29:cf:7e:91:26:5b:df:86:7b:4b:da:8b:c8:90:ae:a2:
d3:8e:6e:9a:11:3f:68:3f:e3:c8:93:e6:55:0b:c8:36:ba:ee:
87:b4:c3:00:a9:84:da:82:7f:50:8a:2d:41:c3:7c:6e:be:41:
10:49:ef:bb:c3:14:f1:32:4c:5a:52:9e:7f:02:ac:97:67:ae:
8a:c3:cd:89:d6:e2:70:b7:8a:8a:ae:e4:50:63:be:86:9c:57:
16:de:ea:25:47:a8:51:23:48:ff:5a:af:62:c9:1d:07:97:cd:
4b:f0:f5:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:21 2025 by rpki-client on console.sobornost.net