Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/4d5551-0330-43ea-80f1-bb433ba476f2/1/aIPJ4lm4ZyremkDprutiWRNEZ90.roa
File: aIPJ4lm4ZyremkDprutiWRNEZ90.roa (raw, json)
Hash identifier: Kp0nR22T2kDefAUNT5QJL0kBQwplOU/6USLq0OiGG/o=
Subject key identifier: 68:83:C9:E2:59:B8:67:2A:DE:9A:40:E9:AE:EB:62:59:13:44:67:DD
Certificate issuer: /CN=4044fa54400bc6cfc30cb8311a819d5bda421a72
Certificate serial: 019424B3916A56128B5AB0CCA8452A4C93F1
Authority key identifier: 40:44:FA:54:40:0B:C6:CF:C3:0C:B8:31:1A:81:9D:5B:DA:42:1A:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QET6VEALxs_DDLgxGoGdW9pCGnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/4d5551-0330-43ea-80f1-bb433ba476f2/1/aIPJ4lm4ZyremkDprutiWRNEZ90.roa
Signing time: Thu 02 Jan 2025 01:48:55 +0000
ROA not before: Thu 02 Jan 2025 01:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60627
IP address blocks: 185.113.56.0/22 maxlen: 22
185.124.112.0/22 maxlen: 22
185.140.56.0/22 maxlen: 22
185.143.204.0/22 maxlen: 22
185.145.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:91:6a:56:12:8b:5a:b0:cc:a8:45:2a:4c:93:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4044fa54400bc6cfc30cb8311a819d5bda421a72
Validity
Not Before: Jan 2 01:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6883c9e259b8672ade9a40e9aeeb6259134467dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:10:d2:54:be:e1:90:24:7d:06:bb:75:94:b7:
0d:88:82:f3:87:fd:ab:84:1e:3f:b1:70:8e:d6:f4:
37:8c:60:48:4e:a3:80:b8:c8:19:7c:1c:25:ff:aa:
ad:70:e9:21:23:00:93:bb:b2:af:c7:61:2a:bc:00:
e6:5e:83:73:7d:a2:4d:5a:60:8d:30:b8:3e:7d:bb:
07:99:cc:2d:7b:44:e3:0a:98:ea:ed:88:da:71:77:
18:2a:17:5a:80:09:60:11:a3:09:f8:6f:99:84:12:
03:d5:1b:be:f3:29:44:c3:dd:7a:55:c5:91:98:4f:
02:75:ed:8c:db:d0:1b:dc:c6:bf:1f:c2:ab:4f:9e:
11:35:12:cc:bc:6b:c7:97:b6:49:a2:b6:6a:e6:43:
ad:14:b7:18:23:d1:a3:94:1b:0e:85:4f:e1:c9:a0:
89:37:29:dd:46:b7:03:98:17:da:ab:59:4a:e7:a2:
5a:cd:97:6e:b7:2a:a8:34:93:89:1e:20:7b:6b:e7:
d4:a0:d7:2c:69:8d:a5:80:25:b3:d0:ed:80:56:e4:
e2:65:38:fc:c8:62:0e:66:ab:9b:69:e0:11:9e:1d:
de:1b:9f:59:ce:2a:94:79:03:2e:e7:ff:7f:39:b2:
c1:1b:9c:0e:d1:58:53:b2:52:14:69:82:27:cf:73:
da:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:83:C9:E2:59:B8:67:2A:DE:9A:40:E9:AE:EB:62:59:13:44:67:DD
X509v3 Authority Key Identifier:
keyid:40:44:FA:54:40:0B:C6:CF:C3:0C:B8:31:1A:81:9D:5B:DA:42:1A:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QET6VEALxs_DDLgxGoGdW9pCGnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4d5551-0330-43ea-80f1-bb433ba476f2/1/aIPJ4lm4ZyremkDprutiWRNEZ90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4d5551-0330-43ea-80f1-bb433ba476f2/1/QET6VEALxs_DDLgxGoGdW9pCGnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.56.0/22
185.124.112.0/22
185.140.56.0/22
185.143.204.0/22
185.145.8.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:ee:41:d3:b3:ff:5b:1b:8a:8c:54:1f:79:41:56:a9:42:d4:
f4:5c:37:5b:dd:7e:a4:c4:a7:87:3c:4e:4e:c3:18:ef:71:07:
a5:43:87:65:d5:03:98:26:72:d5:19:b1:e0:4b:47:7d:cb:bd:
e1:cf:30:18:16:d3:43:61:b4:91:fd:c9:57:0f:2f:35:1f:ef:
c7:6b:a5:4d:dd:4d:67:48:86:28:ea:b7:d2:b1:64:4e:a0:50:
b0:9c:b9:6f:ef:1d:67:66:29:7d:fd:88:53:64:b4:9f:af:f6:
70:85:fb:1c:cc:a2:f6:f6:95:70:b3:28:29:3a:77:5e:da:0b:
b2:4b:06:2b:16:8d:ce:0c:81:30:43:b4:c8:b4:a5:8f:39:c5:
7c:50:a2:41:a3:45:dc:ea:7d:16:37:4b:23:d7:b0:7d:43:13:
91:40:e4:e5:53:bb:5c:70:12:54:2e:cf:17:59:bf:b3:34:da:
2e:72:0b:d5:b3:0c:99:1e:2a:4d:fd:48:f7:7f:ee:06:5e:35:
b2:32:cb:5e:5b:31:a2:21:a6:af:7a:bb:02:09:cf:c3:08:25:
92:aa:34:23:6f:7b:62:09:b8:13:62:db:74:94:fa:d7:3c:b9:
5b:c0:fa:8c:28:ba:85:03:77:e1:96:56:20:45:5d:db:58:b9:
66:11:18:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net