Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/1Z1yWNgRSnqR3pt5WlApDelQe4o.roa
File: 1Z1yWNgRSnqR3pt5WlApDelQe4o.roa (raw, json)
Hash identifier: 7G52qXZFDFq0XDjJ+/lW8m4SCa70rkFS2r1Ec1zORA4=
Subject key identifier: D5:9D:72:58:D8:11:4A:7A:91:DE:9B:79:5A:50:29:0D:E9:50:7B:8A
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 019425FD3F1ED531F3B8A2A97EE2E837F63A
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/1Z1yWNgRSnqR3pt5WlApDelQe4o.roa
Signing time: Thu 02 Jan 2025 07:49:01 +0000
ROA not before: Thu 02 Jan 2025 07:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205555
IP address blocks: 5.182.156.0/22 maxlen: 22
5.182.156.0/24 maxlen: 24
5.182.157.0/24 maxlen: 24
5.182.158.0/24 maxlen: 24
5.182.159.0/24 maxlen: 24
185.214.52.0/24 maxlen: 24
185.214.53.0/24 maxlen: 24
185.214.54.0/24 maxlen: 24
185.214.55.0/24 maxlen: 24
2a0b:95c0::/32 maxlen: 32
2a0b:95c0::/48 maxlen: 48
2a0b:95c0:8000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:3f:1e:d5:31:f3:b8:a2:a9:7e:e2:e8:37:f6:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Jan 2 07:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d59d7258d8114a7a91de9b795a50290de9507b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:31:dd:b7:49:ff:91:96:df:b9:23:c8:7e:6c:
4d:02:86:0c:73:09:8d:45:13:0f:e8:d1:b9:b0:de:
07:4f:99:8e:d5:06:a6:37:61:aa:da:04:b9:bc:fa:
72:04:8b:9d:1f:38:28:a1:70:9b:c1:e3:8c:26:ad:
2d:9f:2e:55:bb:ae:86:5f:54:90:29:9f:ac:73:99:
fb:80:25:80:bf:66:ae:e7:51:ea:4f:59:c2:a2:17:
81:07:2c:84:7b:d0:f8:7d:67:0f:83:c3:ba:1f:5a:
17:a5:f5:27:a6:4e:37:18:80:8c:4e:68:ff:d6:72:
aa:dd:e7:c4:e4:46:59:3c:ca:46:f4:68:01:4f:d2:
56:3e:43:ce:e3:9f:50:3c:4c:b5:2c:80:15:9d:85:
c7:94:99:c1:71:cd:18:80:86:c3:0b:c0:28:2f:80:
8b:ae:7d:ba:0b:4c:63:a5:3f:30:64:25:00:1d:ab:
dc:e3:87:b3:e2:28:e5:60:a7:17:97:45:fb:28:46:
2b:53:51:3a:15:71:24:ba:af:84:a8:d0:46:9d:f4:
02:bc:21:97:84:4e:0e:b0:a1:72:e8:f8:e9:d4:7a:
80:73:11:f5:86:fc:ad:d8:47:eb:e2:81:45:c2:f8:
ad:be:82:b9:d9:04:4f:d8:71:d2:36:8b:18:1e:4a:
9c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9D:72:58:D8:11:4A:7A:91:DE:9B:79:5A:50:29:0D:E9:50:7B:8A
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/1Z1yWNgRSnqR3pt5WlApDelQe4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.156.0/22
185.214.52.0/22
IPv6:
2a0b:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
b4:3d:fe:ad:d3:f8:07:e6:89:16:51:b4:67:0e:71:fa:7b:9b:
45:df:db:95:71:5d:87:4d:81:2e:e0:d5:a3:f2:a2:cf:06:ee:
b6:b0:cb:ed:df:54:81:c6:c6:a3:30:f7:96:c3:86:3a:90:8c:
bf:e9:99:5e:ed:6e:2f:d2:71:61:4c:78:b4:fb:4f:59:ed:4c:
00:b5:9f:18:ac:9c:92:36:16:ee:29:17:83:f4:d2:8e:3e:f3:
41:f3:e8:c7:ac:ec:37:e5:85:17:37:e3:16:8c:9e:ab:0e:ec:
18:9b:19:56:04:7c:82:db:bd:b6:22:67:74:75:31:25:c6:f1:
09:e7:10:5c:20:c9:d4:37:58:f1:f4:c4:42:e7:1b:84:40:d3:
51:98:52:a4:f4:a7:7a:96:c9:2f:55:b7:9e:58:9c:2e:b5:6e:
84:f1:bf:b9:82:50:96:11:d8:d3:30:67:21:44:f3:b0:26:19:
89:aa:c1:3b:b3:b1:44:69:d4:de:3a:ab:30:60:2d:b1:9e:4a:
25:0f:72:ca:13:f9:9e:62:69:17:bd:83:1c:d9:51:a3:06:a2:
69:3c:4d:a7:21:c2:23:7f:c7:19:26:c7:0f:2f:a0:82:fc:b1:
2c:16:5b:f3:92:22:5f:54:2e:01:14:44:8b:4c:56:0a:fd:c8:
19:2f:d9:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net