Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/94dktPrePJ-RDuAQSxOcJsXmcC8.roa
File: 94dktPrePJ-RDuAQSxOcJsXmcC8.roa (raw, json)
Hash identifier: inLn06dvUW4ypQfw1flp+0VhiDfz1TXTmHsYboxrw8M=
Subject key identifier: F7:87:64:B4:FA:DE:3C:9F:91:0E:E0:10:4B:13:9C:26:C5:E6:70:2F
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019425218A402897288508F15E2160CB76A8
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/94dktPrePJ-RDuAQSxOcJsXmcC8.roa
Signing time: Thu 02 Jan 2025 03:49:02 +0000
ROA not before: Thu 02 Jan 2025 03:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206774
IP address blocks: 46.252.1.0/24 maxlen: 24
46.252.3.0/24 maxlen: 24
46.252.4.0/24 maxlen: 24
46.252.5.0/24 maxlen: 24
46.252.7.0/24 maxlen: 24
46.252.8.0/24 maxlen: 24
46.252.9.0/24 maxlen: 24
46.252.10.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:8a:40:28:97:28:85:08:f1:5e:21:60:cb:76:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Jan 2 03:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f78764b4fade3c9f910ee0104b139c26c5e6702f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fb:97:1e:49:74:e6:89:9f:35:69:d6:79:53:
60:fa:4e:53:26:65:6a:24:ea:bc:f1:3c:ed:83:7c:
82:99:ea:2b:a7:77:fb:ce:13:a5:89:ec:4a:52:4b:
d9:58:13:6c:a2:b2:18:b7:3a:5c:b3:93:8b:16:3a:
2e:fd:66:b5:24:67:ae:5b:5f:84:90:fa:8e:a3:96:
8f:c0:32:64:44:17:c6:15:5e:17:6c:92:d1:4b:9a:
10:82:0f:9b:98:3e:46:4c:00:68:f0:73:bf:85:ee:
31:cf:3d:c5:a1:55:41:4f:fc:44:eb:b9:bc:51:4d:
19:c0:0d:15:42:2e:ae:77:89:29:00:9f:e1:38:b3:
a3:a6:a7:ad:f7:3a:67:99:2f:97:2f:9e:24:fc:21:
7d:5b:4f:20:e6:83:dd:4e:67:d5:0a:9c:2f:66:aa:
84:a3:30:c2:84:69:41:dd:90:c1:2a:c0:5b:76:d1:
0a:ac:88:a0:67:10:c4:ab:08:5d:f0:1e:29:0e:46:
88:ea:44:fb:f9:53:77:0e:db:7f:03:ca:42:3b:86:
82:dc:37:0a:9e:22:51:c1:f5:80:93:ae:c4:9e:a7:
a6:5d:8d:1d:ca:99:0b:88:cb:80:9a:fc:ac:8e:fb:
6f:fe:91:5b:32:d6:56:b3:2a:eb:1f:a6:e2:c5:7e:
ae:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:87:64:B4:FA:DE:3C:9F:91:0E:E0:10:4B:13:9C:26:C5:E6:70:2F
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/94dktPrePJ-RDuAQSxOcJsXmcC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.1.0/24
46.252.3.0-46.252.5.255
46.252.7.0-46.252.10.255
Signature Algorithm: sha256WithRSAEncryption
a7:4c:1a:7d:8f:eb:69:40:08:05:a7:61:6c:94:fb:06:ac:ca:
bc:d9:5c:bd:eb:a3:e1:d9:f7:ea:59:09:26:fb:4a:c4:fe:48:
eb:c6:ef:eb:4f:b2:36:6c:8f:ba:31:05:e9:2c:88:f5:0a:80:
4e:3b:c1:63:96:11:2a:06:79:7c:7f:89:b7:a9:81:ab:e1:67:
95:45:48:96:ec:b7:cd:01:9e:85:70:cf:3c:03:4e:ec:fe:3d:
7c:d5:ba:f2:c9:79:25:4f:f3:82:eb:7a:e6:a1:98:ac:ab:fe:
04:ea:cb:bf:8d:39:89:ae:15:5a:c9:a3:c7:a0:56:56:c1:7e:
a8:75:60:47:21:09:40:be:63:06:e1:09:bc:3c:4a:9a:f9:12:
3b:d0:24:83:9d:cf:b8:ae:0b:eb:4c:df:3e:20:50:b7:84:bb:
28:53:fb:4c:8e:d9:e2:05:98:0c:af:de:6e:6b:ed:29:be:a0:
c7:39:ac:23:ab:e6:d8:24:7a:7e:19:1e:f3:a9:01:6b:1e:29:
f0:82:c0:4a:64:ab:95:f8:f1:fe:ac:d4:eb:31:aa:bb:fd:2c:
66:e9:59:36:f9:79:97:8a:9c:39:ba:53:ad:7e:23:a9:62:95:
0e:cb:22:13:05:28:71:1d:eb:bd:a0:db:03:8f:cf:1b:c7:73:
98:fa:f8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 17:26:06 2025 by rpki-client on console.sobornost.net