Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/ATt1aqdGeZ5ixfMp8_Jy6L59z-k.roa
File: ATt1aqdGeZ5ixfMp8_Jy6L59z-k.roa (raw, json)
Hash identifier: 1oMcUF44dyNpkmaMAlxiex9uPcgAT7lFT4Xu+m6Gsb4=
Subject key identifier: 01:3B:75:6A:A7:46:79:9E:62:C5:F3:29:F3:F2:72:E8:BE:7D:CF:E9
Certificate issuer: /CN=fa56c7e660b1c74e3b0318b14338c3f00dd7bc72
Certificate serial: 01941FFAA05CF8D7230F3CB8CDEA446274CA
Authority key identifier: FA:56:C7:E6:60:B1:C7:4E:3B:03:18:B1:43:38:C3:F0:0D:D7:BC:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lbH5mCxx047AxixQzjD8A3XvHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/ATt1aqdGeZ5ixfMp8_Jy6L59z-k.roa
Signing time: Wed 01 Jan 2025 03:48:26 +0000
ROA not before: Wed 01 Jan 2025 03:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57704
IP address blocks: 45.130.96.0/24 maxlen: 24
45.130.97.0/24 maxlen: 24
45.130.98.0/24 maxlen: 24
45.130.99.0/24 maxlen: 24
45.158.156.0/24 maxlen: 24
45.158.157.0/24 maxlen: 24
45.158.158.0/24 maxlen: 24
45.158.159.0/24 maxlen: 24
152.89.40.0/24 maxlen: 24
152.89.41.0/24 maxlen: 24
152.89.42.0/24 maxlen: 24
152.89.43.0/24 maxlen: 24
176.106.40.0/21 maxlen: 24
185.5.220.0/22 maxlen: 22
185.5.220.0/24 maxlen: 24
185.5.221.0/24 maxlen: 24
185.5.222.0/24 maxlen: 24
185.5.223.0/24 maxlen: 24
192.145.120.0/22 maxlen: 22
192.145.120.0/24 maxlen: 24
192.145.121.0/24 maxlen: 24
192.145.122.0/24 maxlen: 24
192.145.123.0/24 maxlen: 24
2a03:7c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:a0:5c:f8:d7:23:0f:3c:b8:cd:ea:44:62:74:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa56c7e660b1c74e3b0318b14338c3f00dd7bc72
Validity
Not Before: Jan 1 03:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=013b756aa746799e62c5f329f3f272e8be7dcfe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a4:a4:9e:5d:a9:8c:08:8f:98:24:0c:71:65:
68:b8:e0:48:b1:f0:c3:55:c2:1d:4f:63:03:f2:fe:
2e:5e:28:4e:d1:45:b8:6b:3c:ff:40:09:01:ac:5f:
ab:06:f3:cb:bc:ce:fc:ac:ff:6b:11:84:8b:88:7f:
1d:e7:4b:b4:a5:a0:77:e4:5c:09:11:c1:ff:cd:df:
52:00:87:9d:45:ea:ed:9b:88:ea:38:cf:af:fb:19:
7a:d1:c7:c8:76:4a:66:1d:7c:d9:9d:4f:a0:2a:6e:
0f:43:25:0d:60:ac:76:b3:14:a4:6a:8d:fe:3f:7d:
a6:4e:99:ea:f7:cb:66:72:2d:75:3c:8d:f4:60:47:
bd:7e:cd:ab:dc:18:a4:3d:30:6a:26:f3:d0:1f:67:
d2:26:fd:16:bc:da:c0:fd:20:22:39:aa:d9:14:af:
30:7e:93:6f:84:2a:da:50:21:7c:53:61:05:d0:ef:
69:f6:68:02:39:26:2c:0c:a2:5b:a0:12:b7:4f:5e:
57:f1:e1:4e:63:37:05:1d:e6:83:2a:32:9f:e1:91:
a1:41:ef:2f:76:86:aa:2f:66:86:16:ed:9e:9f:c9:
74:df:fe:b8:1a:ed:3c:8f:03:af:69:51:12:7d:e6:
a8:56:fa:20:4b:77:f7:e3:fe:9b:cb:5c:19:ba:66:
ad:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3B:75:6A:A7:46:79:9E:62:C5:F3:29:F3:F2:72:E8:BE:7D:CF:E9
X509v3 Authority Key Identifier:
keyid:FA:56:C7:E6:60:B1:C7:4E:3B:03:18:B1:43:38:C3:F0:0D:D7:BC:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lbH5mCxx047AxixQzjD8A3XvHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/ATt1aqdGeZ5ixfMp8_Jy6L59z-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/1-lbH5mCxx047AxixQzjD8A3XvHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.96.0/22
45.158.156.0/22
152.89.40.0/22
176.106.40.0/21
185.5.220.0/22
192.145.120.0/22
IPv6:
2a03:7c0::/32
Signature Algorithm: sha256WithRSAEncryption
30:97:df:95:45:0c:03:d7:ab:06:27:a7:a2:85:f6:ac:b6:ee:
4b:b8:d5:d9:d4:92:4b:64:1b:0b:6c:49:72:19:44:88:ae:a6:
79:10:c1:31:4c:81:0e:7e:ee:29:87:2c:86:2c:4f:85:53:60:
82:11:ff:5c:02:a8:49:00:f4:5b:93:09:9a:ab:ae:56:1c:15:
5f:53:0b:19:e6:1b:42:6f:9a:23:29:ce:9e:85:2c:59:fb:ec:
72:e5:cd:f2:2c:90:96:08:82:c0:f5:3f:64:56:da:e0:ef:90:
ce:69:ac:a1:33:e9:7b:e1:45:a6:b7:c2:60:87:57:a8:e3:b6:
17:4c:6b:bf:dd:b8:76:58:21:d7:36:17:fc:31:e9:c9:7c:d4:
0e:52:d3:02:4e:e8:d0:f4:82:62:38:73:ef:22:6a:27:8c:c1:
cb:7d:52:93:98:ec:22:c6:91:75:6b:31:1c:ed:7a:e5:4b:e8:
20:fc:46:7c:59:ff:9c:7a:48:f9:ce:1a:6e:39:d2:8c:80:ed:
26:c4:36:d3:6e:29:54:41:9a:a6:fa:5a:a8:22:fb:0b:2e:86:
a2:a3:c9:c5:4c:f3:a3:35:3f:cb:65:e0:5c:56:76:a0:81:cb:
71:2a:25:4f:00:de:1b:93:3e:af:1d:38:1e:64:3a:09:6b:ab:
7b:c9:d2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:10 2025 by rpki-client on console.sobornost.net