Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/513e8a-ad5b-42be-9b6e-b4269463bce8/1/sN71VdE_vP-brkQYYHxei4Ctk7k.roa
File: sN71VdE_vP-brkQYYHxei4Ctk7k.roa (raw, json)
Hash identifier: Ng80yhJSUZ9ywzwtEcf5TCIYC5bSHVuPL+nXnqyIEIk=
Subject key identifier: B0:DE:F5:55:D1:3F:BC:FF:9B:AE:44:18:60:7C:5E:8B:80:AD:93:B9
Certificate issuer: /CN=4a83ee7dcc32837b0ba5b891d8f145435ab3b60a
Certificate serial: 019420683DE0996E57C67A35499FC2CC69B9
Authority key identifier: 4A:83:EE:7D:CC:32:83:7B:0B:A5:B8:91:D8:F1:45:43:5A:B3:B6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SoPufcwyg3sLpbiR2PFFQ1qztgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/513e8a-ad5b-42be-9b6e-b4269463bce8/1/sN71VdE_vP-brkQYYHxei4Ctk7k.roa
Signing time: Wed 01 Jan 2025 05:48:09 +0000
ROA not before: Wed 01 Jan 2025 05:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199860
IP address blocks: 5.188.104.0/22 maxlen: 22
5.188.104.0/23 maxlen: 23
5.188.106.0/23 maxlen: 23
185.44.12.0/22 maxlen: 22
185.44.12.0/23 maxlen: 23
185.44.14.0/23 maxlen: 23
193.43.41.0/24 maxlen: 24
2a01:6520::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:3d:e0:99:6e:57:c6:7a:35:49:9f:c2:cc:69:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a83ee7dcc32837b0ba5b891d8f145435ab3b60a
Validity
Not Before: Jan 1 05:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0def555d13fbcff9bae4418607c5e8b80ad93b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:99:d4:c0:ad:d4:e1:d9:61:66:ab:a8:b2:eb:
7c:a9:ff:bc:0f:ec:d1:9e:ec:f7:01:8a:2e:7e:84:
a5:be:4e:77:3e:de:db:ae:df:7d:6a:62:14:8f:42:
dd:ad:74:e3:84:95:24:f2:a0:5d:ad:03:3f:09:cb:
45:92:8e:28:93:cd:38:16:50:e2:ca:dc:bd:81:c0:
90:30:72:24:7b:b6:8b:57:4c:02:41:35:9c:d0:78:
c7:08:a4:d5:58:3e:53:a8:fc:8a:5d:45:86:95:8e:
98:07:c9:ac:17:32:b9:31:c5:45:9e:8c:91:f0:d7:
b2:c6:cc:3e:7b:2e:94:dc:28:14:ed:f8:e0:d0:6f:
90:4c:fd:b3:f5:b0:39:b4:87:1e:6a:db:c2:9e:9f:
17:7a:d5:ab:b6:36:ad:3a:5d:23:f5:1e:33:01:ef:
e1:87:42:95:7f:4a:ac:14:16:1c:2d:7a:2a:cd:24:
05:26:a0:79:40:a5:0d:a8:06:1f:3c:44:4f:c2:9c:
32:02:8d:e8:78:8a:d5:13:29:d7:ea:e1:9b:c9:12:
69:81:12:82:07:44:68:74:75:06:36:ef:7b:82:a9:
99:07:5a:08:e5:e5:08:66:ae:ac:a9:8a:a1:d2:fb:
b4:1f:57:10:c1:8f:c6:0d:ce:1a:c7:11:97:d2:10:
96:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DE:F5:55:D1:3F:BC:FF:9B:AE:44:18:60:7C:5E:8B:80:AD:93:B9
X509v3 Authority Key Identifier:
keyid:4A:83:EE:7D:CC:32:83:7B:0B:A5:B8:91:D8:F1:45:43:5A:B3:B6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SoPufcwyg3sLpbiR2PFFQ1qztgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/513e8a-ad5b-42be-9b6e-b4269463bce8/1/sN71VdE_vP-brkQYYHxei4Ctk7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/513e8a-ad5b-42be-9b6e-b4269463bce8/1/SoPufcwyg3sLpbiR2PFFQ1qztgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.104.0/22
185.44.12.0/22
193.43.41.0/24
IPv6:
2a01:6520::/32
Signature Algorithm: sha256WithRSAEncryption
97:62:a5:c1:00:45:1c:bf:98:77:65:46:29:a8:14:cd:cc:99:
0e:97:52:91:44:d7:9f:88:d8:d7:e9:9e:2c:6f:a7:67:91:22:
27:9c:f1:da:64:eb:f4:32:0b:2e:b9:d1:aa:b9:78:9b:62:5c:
15:96:cb:fc:a4:35:00:01:0e:4c:1d:9f:0f:16:f6:7b:7e:ae:
f7:9c:09:94:97:74:dd:cb:e3:19:ed:09:50:a3:44:34:2f:25:
0c:4c:e5:ea:f2:e8:cc:1a:a2:46:95:f5:99:af:47:fe:af:60:
c4:19:a1:3c:3d:f5:48:b6:55:c8:6a:d7:f4:70:e7:e1:2b:3e:
88:47:60:40:a9:91:e6:3b:92:ec:58:c5:fd:95:cb:e0:5f:eb:
05:94:a8:cd:10:ba:0d:e7:08:cd:b8:f6:a6:b1:1c:80:37:59:
98:08:06:ef:8b:4b:dc:dc:1e:92:c5:b8:6b:56:86:42:d0:ef:
e2:7a:02:de:5c:25:9e:48:c5:c0:fa:0c:0c:f6:3d:d0:c2:95:
1c:31:5e:4e:27:a6:35:30:3c:75:65:f8:2a:ad:bd:74:d7:60:
e1:a5:7d:0f:85:6d:1b:52:55:89:46:9e:2f:78:9f:2e:cf:47:
62:32:f8:bb:e7:43:9d:52:42:3c:7a:d6:73:39:6f:97:6a:c0:
17:58:5d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net