Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/gsBIIA2HpWcODCizuY2KX18UG_g.roa
File: gsBIIA2HpWcODCizuY2KX18UG_g.roa (raw, json)
Hash identifier: mRlxnIyC58qBYGhyCIX8jRhGVStnCn6XnTRLnixgdUA=
Subject key identifier: 82:C0:48:20:0D:87:A5:67:0E:0C:28:B3:B9:8D:8A:5F:5F:14:1B:F8
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 0193C0595DB993E53C2096EA9B3F921812F9
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/gsBIIA2HpWcODCizuY2KX18UG_g.roa
Signing time: Fri 13 Dec 2024 14:08:22 +0000
ROA not before: Fri 13 Dec 2024 14:08:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205555
IP address blocks: 5.182.156.0/22 maxlen: 22
5.182.156.0/24 maxlen: 24
5.182.157.0/24 maxlen: 24
5.182.158.0/24 maxlen: 24
5.182.159.0/24 maxlen: 24
185.214.52.0/24 maxlen: 24
185.214.53.0/24 maxlen: 24
185.214.54.0/24 maxlen: 24
185.214.55.0/24 maxlen: 24
2a0b:95c0::/32 maxlen: 32
2a0b:95c0::/48 maxlen: 48
2a0b:95c0:8000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c0:59:5d:b9:93:e5:3c:20:96:ea:9b:3f:92:18:12:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Dec 13 14:08:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82c048200d87a5670e0c28b3b98d8a5f5f141bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:94:89:63:be:88:24:7a:dc:3c:c0:df:b1:2d:
85:8a:fe:ec:7d:69:c1:64:22:0f:ab:3e:49:7d:73:
52:c4:58:79:dd:39:d0:b7:2d:11:01:0d:e2:05:cd:
44:86:68:bb:2e:33:89:88:d2:db:58:f8:97:67:93:
9f:0f:63:49:cc:1c:e4:98:75:88:8a:d0:b2:d4:50:
c2:51:89:14:d3:58:6a:94:4c:6a:e1:45:9c:e2:81:
ce:36:5a:05:06:20:ae:8f:30:a3:5c:7d:21:0f:2f:
9e:c2:9a:b0:24:75:0e:fc:46:d1:66:f4:aa:7d:44:
c0:8b:6e:97:cf:7a:51:a1:00:cc:07:76:bc:25:11:
c5:6e:ec:38:54:93:38:24:3c:a4:74:ba:b9:3c:e7:
dc:00:00:fa:ce:d7:72:02:9b:1f:c1:0a:ad:69:34:
d1:e3:d2:34:38:17:1f:b3:2b:e8:75:7f:8b:78:c9:
03:68:52:6a:6c:cb:29:78:0d:a2:62:d8:ee:80:b4:
9e:7b:2b:c6:ca:54:9d:b1:52:33:ba:1f:ee:b8:0b:
bd:15:33:41:12:45:c9:1c:ef:33:a9:79:71:e1:15:
ab:9d:02:d1:75:6b:73:39:11:8e:22:20:5e:6a:3e:
0e:be:26:09:94:63:13:b4:95:4c:ba:59:fc:df:84:
4f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C0:48:20:0D:87:A5:67:0E:0C:28:B3:B9:8D:8A:5F:5F:14:1B:F8
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/gsBIIA2HpWcODCizuY2KX18UG_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.156.0/22
185.214.52.0/22
IPv6:
2a0b:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
3e:a4:60:6b:50:76:99:df:db:08:b3:14:25:b6:ba:f2:63:15:
de:de:f0:f5:ec:2c:36:7d:5a:95:06:12:f6:c9:b2:d6:aa:b1:
43:a9:df:a5:4d:94:c0:15:d1:22:46:54:3e:c8:b9:3d:f4:a8:
a7:6f:ad:e9:1e:55:4a:74:3b:ba:0c:66:5a:ea:87:8b:d2:a6:
22:e9:58:c1:b5:76:cd:99:b9:79:a3:8e:27:e9:2b:25:a3:a3:
27:5d:1d:9e:68:ba:33:de:ea:53:d7:35:cc:5b:15:cc:2f:9b:
fb:b9:c7:43:f4:49:65:37:c1:f4:84:0f:a3:21:c5:6d:e0:47:
f6:d3:a4:cb:a7:ed:44:b6:9f:4b:7f:64:be:d0:53:88:52:0d:
b0:f0:41:3e:b0:90:05:b6:42:8b:7f:22:1d:22:dc:2d:37:fc:
c3:da:74:ac:f9:c0:1c:37:ab:11:39:a0:e3:94:ab:9b:2f:08:
10:cf:36:02:93:2e:4a:8d:91:f8:e4:5a:b1:a0:7e:70:4c:c8:
c1:5d:a0:33:26:54:67:35:5c:fb:2f:d4:6f:f4:19:a0:3f:68:
2b:60:91:1f:29:c1:9c:3e:b7:6a:db:88:fb:c0:d3:4e:02:49:
59:0f:51:0d:02:88:e1:ba:0a:19:b6:90:5b:fe:30:1f:fe:62:
28:a9:4e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:58 2024 by rpki-client on console.sobornost.net