Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/ZaGVuVXsRBNxP4dq86SPZaH0d2Y.roa
File: ZaGVuVXsRBNxP4dq86SPZaH0d2Y.roa (raw, json)
Hash identifier: ePG1AbpK3bZttwJyXTf9fJ1Yn9VK5Fh/mraSKmrNJ6g=
Subject key identifier: 65:A1:95:B9:55:EC:44:13:71:3F:87:6A:F3:A4:8F:65:A1:F4:77:66
Certificate issuer: /CN=b6c167dfa9882b2aa8f84595f58a97c305ca43c5
Certificate serial: 0194258FB6A67F98063F5976692DA70558D0
Authority key identifier: B6:C1:67:DF:A9:88:2B:2A:A8:F8:45:95:F5:8A:97:C3:05:CA:43:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tsFn36mIKyqo-EWV9YqXwwXKQ8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/ZaGVuVXsRBNxP4dq86SPZaH0d2Y.roa
Signing time: Thu 02 Jan 2025 05:49:22 +0000
ROA not before: Thu 02 Jan 2025 05:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57497
IP address blocks: 5.63.8.0/24 maxlen: 24
5.63.9.0/24 maxlen: 24
5.63.10.0/23 maxlen: 23
5.63.10.0/24 maxlen: 24
5.63.11.0/24 maxlen: 24
5.63.12.0/24 maxlen: 24
5.63.13.0/24 maxlen: 24
5.63.14.0/23 maxlen: 23
5.63.14.0/24 maxlen: 24
45.135.240.0/24 maxlen: 24
45.135.241.0/24 maxlen: 24
45.135.242.0/24 maxlen: 24
45.135.243.0/24 maxlen: 24
158.58.184.0/22 maxlen: 22
158.58.184.0/24 maxlen: 24
158.58.185.0/24 maxlen: 24
158.58.186.0/24 maxlen: 24
158.58.187.0/24 maxlen: 24
158.58.188.0/23 maxlen: 23
158.58.188.0/24 maxlen: 24
158.58.189.0/24 maxlen: 24
158.58.190.0/23 maxlen: 23
158.58.190.0/24 maxlen: 24
158.58.191.0/24 maxlen: 24
185.2.12.0/22 maxlen: 22
185.2.12.0/23 maxlen: 24
185.2.14.0/23 maxlen: 24
185.179.90.0/24 maxlen: 24
185.229.204.0/24 maxlen: 24
194.62.17.0/24 maxlen: 24
195.226.223.0/24 maxlen: 24
2a01:4ac0::/48 maxlen: 48
2a01:4ac0:1::/48 maxlen: 48
2a01:4ac0:2::/48 maxlen: 48
2a01:4ac0:3::/48 maxlen: 48
2a01:4ac0:4::/48 maxlen: 48
2a01:4ac0:5::/48 maxlen: 48
2a01:4ac0:6::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b6:a6:7f:98:06:3f:59:76:69:2d:a7:05:58:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6c167dfa9882b2aa8f84595f58a97c305ca43c5
Validity
Not Before: Jan 2 05:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=65a195b955ec4413713f876af3a48f65a1f47766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ab:be:bc:2d:40:7b:34:eb:82:b5:b8:a3:e9:
2a:0d:e2:56:b4:06:64:3c:f7:a6:e9:2c:29:2f:f2:
b4:c6:81:67:ee:77:06:25:bb:2b:49:64:07:18:6b:
17:db:26:94:c7:57:10:6d:4d:16:51:c7:3b:a1:17:
33:43:5f:8b:a1:fe:75:20:45:8c:23:0e:40:75:8d:
ed:de:61:aa:5b:7e:08:b3:8a:6e:78:ac:7a:66:af:
4e:83:32:9c:36:09:7f:62:6b:cb:14:ae:14:b3:ab:
30:4e:ac:e2:f5:6b:46:ea:8c:bf:e0:94:ab:ec:15:
24:ed:3c:2a:d6:ec:d8:e2:0e:c9:5c:ee:20:fd:ba:
d8:97:c5:e3:5f:f1:8e:e7:ea:45:16:36:ae:1c:a5:
80:b6:46:f8:eb:83:e8:50:fc:a2:28:8d:f9:84:d3:
51:d1:0b:c1:87:e6:80:4d:f8:3b:25:43:61:62:57:
ad:f6:97:c1:9a:1c:cb:6d:db:c4:d0:ee:9d:96:66:
2e:a3:c3:50:94:c6:9f:a9:06:30:b9:43:b7:7c:4c:
4f:46:a7:5b:a4:8c:a7:40:12:0e:0d:1e:4e:13:2e:
47:2d:88:79:60:c7:fc:8e:d2:3a:95:60:3f:6f:04:
5c:e2:4b:79:b0:07:76:ae:c2:2a:ce:3b:6e:6f:88:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A1:95:B9:55:EC:44:13:71:3F:87:6A:F3:A4:8F:65:A1:F4:77:66
X509v3 Authority Key Identifier:
keyid:B6:C1:67:DF:A9:88:2B:2A:A8:F8:45:95:F5:8A:97:C3:05:CA:43:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tsFn36mIKyqo-EWV9YqXwwXKQ8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/ZaGVuVXsRBNxP4dq86SPZaH0d2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/tsFn36mIKyqo-EWV9YqXwwXKQ8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.8.0/21
45.135.240.0/22
158.58.184.0/21
185.2.12.0/22
185.179.90.0/24
185.229.204.0/24
194.62.17.0/24
195.226.223.0/24
IPv6:
2a01:4ac0::-2a01:4ac0:6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a8:bd:f6:a1:95:87:e0:36:74:76:61:1b:fe:48:c4:79:46:1f:
15:07:8e:9f:71:cb:7b:ed:a7:6a:83:a6:1c:a5:fd:45:b2:d7:
d0:98:6f:23:ff:8f:91:c4:99:28:63:fe:ce:b4:a0:66:76:48:
a4:1e:cf:c0:47:dd:7c:02:dc:16:b3:f9:51:3c:79:ee:70:ee:
31:5e:3d:7c:91:9f:2e:e2:83:c8:50:63:1e:60:ab:04:e0:94:
51:3e:2a:1e:25:f6:c9:e5:1a:f9:55:4d:2a:54:fb:c3:8a:ad:
d8:f7:37:59:b7:a6:f3:9c:93:9a:5c:96:29:3d:55:e0:a1:de:
c3:34:ca:bc:8c:cc:e0:ba:a8:33:b9:fc:ba:57:6c:59:d7:cd:
b3:fe:e8:4a:fd:78:df:3e:4c:75:fc:14:1e:63:4a:3c:42:b5:
57:3a:d4:79:ff:89:27:70:ed:f1:cb:bd:ce:2d:37:76:f7:4d:
76:6a:19:db:c9:7f:7c:e8:c2:cf:bf:bb:a4:78:28:21:d0:17:
95:e3:59:a7:6d:bf:1c:1c:cf:34:e6:87:a9:19:01:95:ee:51:
95:57:a7:66:60:d1:48:27:4f:25:b9:b9:bc:4e:4f:3b:0b:72:
ad:03:e7:a8:75:1a:52:10:88:8e:a5:21:8e:dd:65:19:03:3e:
c7:ab:0c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net