Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/XojmUogRpOxwpHoxTW2yf_FinGQ.roa
File: XojmUogRpOxwpHoxTW2yf_FinGQ.roa (raw, json)
Hash identifier: eqBnP/r/dOjAjBcN6pqYn8vdlh/mRf0pBr7FreIsEVk=
Subject key identifier: 5E:88:E6:52:88:11:A4:EC:70:A4:7A:31:4D:6D:B2:7F:F1:62:9C:64
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 019425FD173D65F40BF785A3BF84E117E2B4
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/XojmUogRpOxwpHoxTW2yf_FinGQ.roa
Signing time: Thu 02 Jan 2025 07:48:50 +0000
ROA not before: Thu 02 Jan 2025 07:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8100
IP address blocks: 45.43.147.0/24 maxlen: 24
45.43.152.0/24 maxlen: 24
64.137.54.0/24 maxlen: 24
64.137.110.0/23 maxlen: 23
104.222.191.0/24 maxlen: 24
104.233.56.0/24 maxlen: 24
104.233.58.0/24 maxlen: 24
104.238.21.0/24 maxlen: 24
104.238.24.0/24 maxlen: 24
104.238.28.0/24 maxlen: 24
104.238.30.0/24 maxlen: 24
104.239.15.0/24 maxlen: 24
104.239.47.0/24 maxlen: 24
104.239.66.0/24 maxlen: 24
104.239.74.0/24 maxlen: 24
104.239.79.0/24 maxlen: 24
104.239.83.0/24 maxlen: 24
104.239.89.0/24 maxlen: 24
104.239.100.0/24 maxlen: 24
104.239.102.0/24 maxlen: 24
104.239.109.0/24 maxlen: 24
104.239.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:17:3d:65:f4:0b:f7:85:a3:bf:84:e1:17:e2:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 2 07:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e88e6528811a4ec70a47a314d6db27ff1629c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:67:b7:ce:0d:de:6c:eb:35:58:df:9f:5c:c4:
58:f3:de:96:f5:8e:80:17:df:8b:e3:10:64:cd:cc:
71:6c:8c:bf:db:ea:d1:c7:61:98:8a:a5:09:ec:7b:
a1:62:47:37:d4:76:b9:4d:9a:88:36:49:46:0a:f6:
b6:dd:8a:e6:05:d9:5e:09:4f:36:0e:d4:f5:12:a8:
41:a7:47:ed:a6:97:e3:4c:17:3b:53:6c:6b:f3:f7:
f4:f8:a3:50:5a:1c:c4:be:41:78:b6:ca:3e:61:de:
ec:da:27:65:76:6a:0d:e7:dc:74:fb:a7:6d:ba:4c:
da:85:6a:c1:e0:a3:f0:fb:81:6a:42:c6:a9:65:d3:
6c:40:c0:0e:92:ac:ad:8f:e5:0a:1a:59:a9:61:f9:
f2:05:dd:94:e6:d3:13:32:68:06:9d:6f:13:33:16:
a6:42:05:3c:d6:43:9d:62:9c:77:63:69:8c:94:22:
60:0a:35:5d:23:f3:64:2d:c9:ca:1e:24:98:72:ba:
fa:c1:d3:9e:43:17:05:26:18:2b:0d:6b:17:e4:c7:
c0:25:2b:b3:ad:d8:a5:0c:29:2e:45:c8:c3:cf:a2:
5a:25:51:c9:74:d3:05:ec:7d:e3:16:d4:b8:95:49:
55:16:ac:a8:80:22:c4:c5:c4:66:b2:62:b7:e8:db:
a0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:88:E6:52:88:11:A4:EC:70:A4:7A:31:4D:6D:B2:7F:F1:62:9C:64
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/XojmUogRpOxwpHoxTW2yf_FinGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.147.0/24
45.43.152.0/24
64.137.54.0/24
64.137.110.0/23
104.222.191.0/24
104.233.56.0/24
104.233.58.0/24
104.238.21.0/24
104.238.24.0/24
104.238.28.0/24
104.238.30.0/24
104.239.15.0/24
104.239.47.0/24
104.239.66.0/24
104.239.74.0/24
104.239.79.0/24
104.239.83.0/24
104.239.89.0/24
104.239.100.0/24
104.239.102.0/24
104.239.109.0/24
104.239.127.0/24
Signature Algorithm: sha256WithRSAEncryption
58:2c:ed:b1:61:2c:05:1d:3d:89:79:aa:50:fc:da:c7:37:4e:
21:b9:55:89:f9:da:15:64:b4:d4:74:cf:74:b5:ac:3e:4d:a8:
f8:e6:5b:f9:f8:4e:22:dc:9f:b2:fc:6a:96:09:13:ba:17:6b:
dd:ce:f6:f4:cf:c0:9b:ae:e2:78:4d:ca:83:01:e3:f5:53:65:
47:9e:34:ca:34:85:9c:ae:66:e2:35:d3:75:fd:4a:ae:d5:83:
18:5a:62:dc:0e:2f:c0:af:00:05:83:b0:c5:00:cb:d4:d8:aa:
36:2e:76:f3:d6:da:35:9b:9e:97:bc:56:08:dc:ef:20:66:fc:
70:de:6f:9c:97:19:d5:19:ff:d0:69:9c:66:cd:d6:8b:1f:7b:
e6:bf:d4:5b:fb:59:88:d0:fc:89:5d:f4:79:78:01:6c:d3:5e:
8f:41:4c:b0:13:57:39:3c:cd:14:f5:54:b5:d1:aa:c6:1a:8d:
53:16:f8:3b:79:45:4d:2e:af:84:7a:14:6e:4b:98:30:91:2b:
97:cc:65:8d:e9:ac:bd:cc:5c:7b:a2:38:1a:7c:38:8b:1e:ab:
5c:76:41:f9:54:a3:34:56:10:32:b2:e6:9e:0b:bd:58:cf:54:
41:71:66:c9:24:23:60:8f:4e:fc:21:95:db:c7:81:99:ca:bb:
1b:37:a7:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:22 2025 by rpki-client on console.sobornost.net