Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/wUKEEBhcd6Wo2EvvgdKvd83E2yk.roa
File: wUKEEBhcd6Wo2EvvgdKvd83E2yk.roa (raw, json)
Hash identifier: d7ZYvsLRn0MHrjuGbJZLvgzBXdEm7D3EnDGgZUWMXjk=
Subject key identifier: C1:42:84:10:18:5C:77:A5:A8:D8:4B:EF:81:D2:AF:77:CD:C4:DB:29
Certificate issuer: /CN=c8d5e37178d8524c72660a1d796165999e586622
Certificate serial: 01960093368690C943076804E767B7DF6F2D
Authority key identifier: C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/wUKEEBhcd6Wo2EvvgdKvd83E2yk.roa
Signing time: Fri 04 Apr 2025 11:32:49 +0000
ROA not before: Fri 04 Apr 2025 11:32:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2.57.180.0/22 maxlen: 24
2.59.116.0/24 maxlen: 24
45.12.44.0/22 maxlen: 24
45.15.52.0/22 maxlen: 22
45.67.44.0/22 maxlen: 22
45.86.192.0/22 maxlen: 22
45.95.140.0/22 maxlen: 24
45.130.204.0/22 maxlen: 24
45.136.60.0/22 maxlen: 24
45.145.192.0/22 maxlen: 24
45.151.204.0/22 maxlen: 24
91.225.0.0/24 maxlen: 24
91.227.240.0/23 maxlen: 23
91.239.37.0/24 maxlen: 24
94.142.164.0/22 maxlen: 22
103.82.160.0/22 maxlen: 22
185.39.11.0/24 maxlen: 24
185.57.176.0/22 maxlen: 22
185.157.123.0/24 maxlen: 24
185.232.89.0/24 maxlen: 24
193.3.158.0/24 maxlen: 24
194.99.66.0/23 maxlen: 23
195.244.14.0/23 maxlen: 23
212.52.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:93:36:86:90:c9:43:07:68:04:e7:67:b7:df:6f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d5e37178d8524c72660a1d796165999e586622
Validity
Not Before: Apr 4 11:32:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c1428410185c77a5a8d84bef81d2af77cdc4db29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c6:00:31:6a:f7:de:78:58:43:d3:3e:15:42:
e4:03:6a:6a:ca:80:c8:3e:c0:0f:3d:02:36:08:50:
2e:89:e3:ad:36:59:4f:3f:5a:06:d1:10:e0:30:19:
40:de:f4:65:79:6e:28:47:86:a7:ba:55:0e:ed:09:
c2:3c:4c:db:30:73:8e:8f:ea:4d:77:5c:b7:91:11:
a0:96:6a:a3:16:95:ec:25:db:e2:04:d6:cc:dc:bc:
56:af:92:d6:eb:14:ce:40:85:40:06:01:b9:f6:7f:
9f:c9:4a:cf:dc:ff:97:1b:ae:0d:49:c1:32:48:0f:
24:a3:99:85:f2:38:28:a2:85:ff:c1:d2:e9:97:66:
3c:87:f2:b0:18:8d:73:6b:59:be:b2:15:2a:2d:5d:
bc:08:dd:8e:37:9f:3f:44:4e:b3:54:71:74:79:25:
09:82:ff:68:e8:36:62:aa:9c:d2:0c:4d:32:85:61:
cc:c0:cf:f3:91:5d:7b:cb:ef:22:4d:f5:a9:fa:6e:
3e:b7:6d:51:c6:7c:c1:0e:4e:59:48:95:35:ed:d6:
16:a1:83:78:9a:f5:a1:87:a8:27:e8:f4:3f:13:b3:
94:04:3b:fd:ba:8a:49:57:c0:49:d8:22:dc:3f:79:
62:bb:19:01:96:4b:6d:f8:fc:10:e5:9b:a5:79:a5:
e9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:42:84:10:18:5C:77:A5:A8:D8:4B:EF:81:D2:AF:77:CD:C4:DB:29
X509v3 Authority Key Identifier:
keyid:C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/wUKEEBhcd6Wo2EvvgdKvd83E2yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.180.0/22
2.59.116.0/24
45.12.44.0/22
45.15.52.0/22
45.67.44.0/22
45.86.192.0/22
45.95.140.0/22
45.130.204.0/22
45.136.60.0/22
45.145.192.0/22
45.151.204.0/22
91.225.0.0/24
91.227.240.0/23
91.239.37.0/24
94.142.164.0/22
103.82.160.0/22
185.39.11.0/24
185.57.176.0/22
185.157.123.0/24
185.232.89.0/24
193.3.158.0/24
194.99.66.0/23
195.244.14.0/23
212.52.3.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:16:64:af:1e:89:ce:07:b9:91:49:24:5e:f0:3e:94:55:95:
68:bb:c8:45:9c:60:14:23:b7:ae:7d:e5:95:d4:4d:63:8f:8f:
b2:3e:aa:5e:0d:3a:cb:64:df:f3:e9:69:21:2e:d5:7e:b6:3e:
98:40:7f:6b:8b:c1:5e:64:d7:53:0e:f3:9d:cf:fe:7d:a6:d5:
5a:f9:1b:48:28:d9:f4:37:68:20:42:df:ff:a6:2b:1b:b1:94:
57:d8:07:df:f7:72:3a:f8:80:00:f1:60:dd:30:7e:c1:7a:ba:
cf:0f:ee:d3:d5:d4:67:ae:f1:9e:77:71:44:79:81:9f:89:31:
24:1f:6c:60:47:f1:4a:c0:c0:bf:db:27:16:d1:ac:9b:40:71:
4d:f3:89:ca:6d:2b:16:e7:e8:2a:c8:73:89:d5:9f:a2:f2:37:
2c:a6:f6:61:bf:0a:20:c2:a8:2f:dc:26:3d:43:fe:88:8a:a3:
2d:a3:9c:ca:1b:69:8b:18:f1:6f:55:1b:4c:3b:26:07:2b:33:
a1:af:7d:c5:54:c5:d0:bb:32:d1:1c:f7:6a:f6:bc:84:78:8f:
d7:65:fa:03:65:bb:3e:cf:aa:59:fb:46:cd:94:0e:c6:56:c4:
b2:e1:81:b2:0d:86:b4:f3:8a:1b:39:b2:ee:3a:16:df:fa:12:
3b:f9:16:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net