Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/l6tvZzQAPNzM7mCDxyNnonaXE5w.roa
File: l6tvZzQAPNzM7mCDxyNnonaXE5w.roa (raw, json)
Hash identifier: kC+dW9ZrWVp4Mbfrpvmu3bZk6pVYGNAluv8yUO3y6v0=
Subject key identifier: 97:AB:6F:67:34:00:3C:DC:CC:EE:60:83:C7:23:67:A2:76:97:13:9C
Certificate issuer: /CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Certificate serial: 0193AA95C7B8709C852A920ADBB9460A8D0C
Authority key identifier: 3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/l6tvZzQAPNzM7mCDxyNnonaXE5w.roa
Signing time: Mon 09 Dec 2024 08:42:42 +0000
ROA not before: Mon 09 Dec 2024 08:42:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35444
IP address blocks: 45.93.220.0/22 maxlen: 22
80.90.80.0/20 maxlen: 20
80.90.80.0/24 maxlen: 24
80.90.83.0/24 maxlen: 24
80.90.87.0/24 maxlen: 24
80.90.89.0/24 maxlen: 24
80.90.90.0/24 maxlen: 24
80.90.91.0/24 maxlen: 24
80.90.92.0/24 maxlen: 24
81.26.200.0/21 maxlen: 21
81.26.200.0/24 maxlen: 24
81.26.201.0/24 maxlen: 24
81.26.202.0/24 maxlen: 24
81.26.203.0/24 maxlen: 24
81.26.204.0/24 maxlen: 24
81.26.205.0/24 maxlen: 24
81.26.206.0/23 maxlen: 24
93.93.168.0/22 maxlen: 22
93.93.168.0/23 maxlen: 23
93.93.168.0/24 maxlen: 24
93.93.169.0/24 maxlen: 24
93.93.170.0/23 maxlen: 23
93.93.170.0/24 maxlen: 24
93.93.171.0/24 maxlen: 24
185.132.92.0/23 maxlen: 23
185.132.92.0/24 maxlen: 24
185.132.93.0/24 maxlen: 24
185.132.94.0/24 maxlen: 24
185.132.95.0/24 maxlen: 24
185.158.0.0/22 maxlen: 22
185.158.0.0/23 maxlen: 23
185.158.0.0/24 maxlen: 24
185.158.1.0/24 maxlen: 24
185.158.2.0/23 maxlen: 23
185.158.2.0/24 maxlen: 24
185.158.3.0/24 maxlen: 24
185.175.252.0/22 maxlen: 22
185.187.0.0/22 maxlen: 23
185.187.0.0/23 maxlen: 23
185.187.0.0/24 maxlen: 24
185.187.1.0/24 maxlen: 24
185.187.2.0/23 maxlen: 23
185.187.2.0/24 maxlen: 24
185.187.3.0/24 maxlen: 24
185.212.188.0/22 maxlen: 22
185.212.188.0/23 maxlen: 23
185.212.188.0/24 maxlen: 24
185.212.189.0/24 maxlen: 24
185.212.190.0/23 maxlen: 23
185.212.190.0/24 maxlen: 24
185.212.191.0/24 maxlen: 24
185.239.8.0/22 maxlen: 22
185.239.8.0/23 maxlen: 23
185.239.8.0/24 maxlen: 24
185.239.9.0/24 maxlen: 24
185.239.10.0/23 maxlen: 23
185.239.10.0/24 maxlen: 24
185.239.11.0/24 maxlen: 24
2a03:2de0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:aa:95:c7:b8:70:9c:85:2a:92:0a:db:b9:46:0a:8d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Validity
Not Before: Dec 9 08:42:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97ab6f6734003cdcccee6083c72367a27697139c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:52:5b:ec:ba:c5:46:b8:77:85:7a:ef:0b:7f:
ea:72:c2:18:dd:4a:eb:2c:44:2b:82:d3:89:10:09:
b5:9a:ab:a1:3a:73:b8:54:e8:df:0e:c5:fd:80:99:
93:c5:1d:e0:2b:b8:ff:b9:d4:e3:39:c9:7f:8e:79:
e8:56:c4:7f:67:ba:31:3c:6a:9c:a6:0d:e8:ab:ca:
79:78:a3:73:b3:99:5f:f1:e8:64:8d:90:38:d0:a7:
59:95:37:77:24:ec:e8:a2:12:f9:b5:c1:40:25:59:
0d:57:49:d1:cf:41:90:7a:96:9d:9d:e2:f1:f7:5c:
01:ee:f5:07:97:fd:21:0e:de:c3:c1:93:be:6c:eb:
8a:6e:5a:45:a6:0b:bc:8c:3f:d6:13:f8:97:17:fa:
70:b0:6b:7e:d9:d0:94:ad:1e:94:9d:8a:39:91:37:
6c:1d:83:3e:7e:c1:8c:60:40:f2:b0:76:ac:d7:b9:
f4:c0:4f:af:fd:50:86:3a:9d:ec:49:36:8c:fa:9a:
5b:d5:72:a9:1d:36:d1:7b:9f:2d:cb:e9:e9:a1:55:
d3:92:40:a8:9c:e8:66:a4:2e:3b:d9:6b:e9:03:76:
6f:e7:31:6a:38:b4:c5:b0:09:70:fd:00:34:3c:91:
91:55:e0:a5:03:f3:21:5c:e2:9e:8a:ef:da:20:f8:
a7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AB:6F:67:34:00:3C:DC:CC:EE:60:83:C7:23:67:A2:76:97:13:9C
X509v3 Authority Key Identifier:
keyid:3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/l6tvZzQAPNzM7mCDxyNnonaXE5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.220.0/22
80.90.80.0/20
81.26.200.0/21
93.93.168.0/22
185.132.92.0/22
185.158.0.0/22
185.175.252.0/22
185.187.0.0/22
185.212.188.0/22
185.239.8.0/22
IPv6:
2a03:2de0::/32
Signature Algorithm: sha256WithRSAEncryption
16:70:2b:73:8f:4a:5c:4c:ba:ed:8e:d1:83:cf:9b:72:83:7e:
2e:c1:4c:cc:17:f1:e3:a4:92:3e:8c:e4:db:c2:b7:a3:de:5b:
2b:68:2a:55:aa:95:72:06:d7:8f:55:bc:4e:fc:0e:60:b4:05:
64:34:f1:b0:a6:9e:de:07:80:52:da:1f:26:7c:9b:60:43:45:
a2:07:f3:77:b0:75:cb:21:15:ef:b0:d3:62:ea:bb:2e:6c:89:
95:10:2e:d9:55:bd:1b:80:ce:ae:f0:52:db:60:5c:cd:da:7e:
21:75:1c:e7:be:8d:41:55:a1:3e:f1:90:57:0d:2d:75:97:65:
71:6b:4e:4a:a5:61:9d:b0:0c:91:fd:3c:8a:a8:76:d6:03:75:
0b:89:21:dc:0a:93:2f:fb:6e:a0:2b:ff:30:28:4e:80:b5:ac:
92:19:39:89:c1:51:1e:36:e2:ef:a1:80:0b:48:f4:66:73:ed:
71:13:c4:e2:eb:19:71:b5:28:0b:39:2a:cc:32:93:49:15:e0:
7b:73:89:3e:01:5a:2d:d8:ca:a5:87:21:0c:7b:8d:04:2f:08:
f0:91:ea:7f:f8:79:21:85:2d:65:61:b7:fa:d4:f6:e9:f8:99:
8d:a0:15:94:75:7e:6a:9a:c3:69:b9:d2:49:56:23:0c:87:5d:
3b:8a:be:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:22 2024 by rpki-client on console.sobornost.net