Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/FD_mLBc27D6qlYKS70EsS-YrQiE.roa
File: FD_mLBc27D6qlYKS70EsS-YrQiE.roa (raw, json)
Hash identifier: Mj6C1rdnaU+9TZklwRSfAj2NvDpjlNLpfKzIYvi0q9o=
Subject key identifier: 14:3F:E6:2C:17:36:EC:3E:AA:95:82:92:EF:41:2C:4B:E6:2B:42:21
Certificate issuer: /CN=43e0a364131841056d48b2d788ea00ca4b91db56
Certificate serial: 0195BCE79A99DDF9964B95B6BC4291554E28
Authority key identifier: 43:E0:A3:64:13:18:41:05:6D:48:B2:D7:88:EA:00:CA:4B:91:DB:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q-CjZBMYQQVtSLLXiOoAykuR21Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/FD_mLBc27D6qlYKS70EsS-YrQiE.roa
Signing time: Sat 22 Mar 2025 08:10:49 +0000
ROA not before: Sat 22 Mar 2025 08:10:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48254
IP address blocks: 45.8.224.0/24 maxlen: 24
45.8.225.0/24 maxlen: 24
45.8.226.0/24 maxlen: 24
45.8.227.0/24 maxlen: 24
185.146.164.0/24 maxlen: 24
185.146.165.0/24 maxlen: 24
185.146.166.0/24 maxlen: 24
185.146.167.0/24 maxlen: 24
185.151.28.0/24 maxlen: 24
185.151.29.0/24 maxlen: 24
185.151.30.0/24 maxlen: 24
185.151.31.0/24 maxlen: 24
194.38.52.0/24 maxlen: 24
194.38.53.0/24 maxlen: 24
2a07:7800::/29 maxlen: 48
2a07:7800::/48 maxlen: 48
2a07:7800:1::/48 maxlen: 48
2a07:7800:2::/48 maxlen: 48
2a07:7800:3::/48 maxlen: 48
2a07:7800:4::/48 maxlen: 48
2a07:7800:5::/48 maxlen: 48
2a07:7800:6::/48 maxlen: 48
2a07:7800:7::/48 maxlen: 48
2a07:7800:8::/48 maxlen: 48
2a07:7800:9::/48 maxlen: 48
2a07:7800:10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:bc:e7:9a:99:dd:f9:96:4b:95:b6:bc:42:91:55:4e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43e0a364131841056d48b2d788ea00ca4b91db56
Validity
Not Before: Mar 22 08:10:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=143fe62c1736ec3eaa958292ef412c4be62b4221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:48:4b:7d:0f:a4:03:38:fb:5f:a9:d9:e3:70:
ac:85:4c:63:ba:63:d8:24:b9:08:f9:68:e9:13:16:
a0:f0:a4:1d:2a:6b:b3:c8:3c:8c:bb:20:0c:84:33:
36:2c:57:e7:32:db:da:75:a1:13:53:63:c6:6c:37:
ec:47:e2:5c:5b:36:43:f7:1c:bd:46:33:34:63:ef:
d3:6c:44:01:79:f2:15:80:0e:f9:97:03:d4:50:f8:
12:89:a5:59:0b:ea:ab:b6:df:04:ae:82:bb:24:c6:
07:fe:fd:35:df:c5:f4:20:4d:09:4f:0c:58:98:dc:
a5:b5:d2:57:67:79:f8:6b:37:59:f1:4f:8c:fd:95:
0e:69:0c:d2:40:f7:c3:27:f9:b5:09:39:9a:21:26:
22:ec:09:9a:97:92:0c:d4:01:c9:0a:54:e0:47:de:
46:41:26:bc:43:ec:3a:5a:05:c3:58:ee:91:40:8b:
b2:af:8d:8a:ba:66:d3:96:b2:90:0d:37:a3:c3:df:
a1:46:54:ef:47:66:18:1e:de:15:ce:83:80:5b:d1:
2c:c3:f0:ec:c1:28:25:c4:c7:8f:ad:16:df:af:30:
dd:c3:d4:da:2d:b7:83:5e:e1:fa:c9:2b:77:1e:ad:
7d:b6:c7:35:5c:5e:77:02:5b:4c:63:06:bd:72:38:
80:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3F:E6:2C:17:36:EC:3E:AA:95:82:92:EF:41:2C:4B:E6:2B:42:21
X509v3 Authority Key Identifier:
keyid:43:E0:A3:64:13:18:41:05:6D:48:B2:D7:88:EA:00:CA:4B:91:DB:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q-CjZBMYQQVtSLLXiOoAykuR21Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/FD_mLBc27D6qlYKS70EsS-YrQiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/Q-CjZBMYQQVtSLLXiOoAykuR21Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.224.0/22
185.146.164.0/22
185.151.28.0/22
194.38.52.0/23
IPv6:
2a07:7800::/29
Signature Algorithm: sha256WithRSAEncryption
b9:02:e5:20:c1:ab:e0:f2:7c:92:d8:5c:9e:41:64:18:cd:ae:
e6:23:d8:53:77:e2:c1:5e:da:c5:85:47:8d:e8:9b:de:1f:ae:
40:bb:b2:7a:dc:13:10:22:ad:1e:6e:8f:75:89:51:9e:5a:d5:
b7:e6:fb:69:ae:40:0a:db:46:68:0c:42:7d:cd:1d:a7:7f:4c:
e2:98:a2:ee:d5:38:37:9b:79:f8:b5:ad:b5:1c:da:6a:ff:74:
72:cf:90:8f:f8:2f:03:d4:33:e6:82:93:f8:c9:14:ae:ae:f7:
6b:d3:8b:fe:15:b7:24:8c:b6:03:2f:e0:8a:5f:6a:32:08:75:
a5:88:77:66:2a:de:b5:2c:65:80:e3:79:7f:72:71:57:bf:8b:
f1:19:35:04:40:44:6e:58:c1:7f:69:18:8b:c7:20:54:65:1d:
b8:86:3e:4a:a2:e3:f8:33:0e:4a:9b:77:f0:fd:39:2f:fb:ea:
44:06:29:05:c4:f3:91:79:d3:72:4e:30:ba:6e:47:84:40:77:
7e:a6:1f:60:0a:01:2a:4c:b4:3f:4c:fa:2d:36:d1:c2:cd:e4:
ae:68:4c:14:32:3c:98:9f:bc:24:4f:c1:57:89:cb:03:c4:e6:
db:8b:9c:4c:4b:64:54:85:f8:69:a9:8d:d9:a1:d0:4e:28:b3:
42:5f:32:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:54:49 2025 by rpki-client on console.sobornost.net