Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/Rp_msz1sKXospi7oXq9Ephc77qY.roa
File: Rp_msz1sKXospi7oXq9Ephc77qY.roa (raw, json)
Hash identifier: 62qZ7LL8c9IYZnsBXvNbfGkN5Rp0kCxvzgl0G0a3B3E=
Subject key identifier: 46:9F:E6:B3:3D:6C:29:7A:2C:A6:2E:E8:5E:AF:44:A6:17:3B:EE:A6
Certificate issuer: /CN=bbca3f25d54620b50ef8520657634d3b096bac57
Certificate serial: 019624D6CF8149C9F343387066520658F681
Authority key identifier: BB:CA:3F:25:D5:46:20:B5:0E:F8:52:06:57:63:4D:3B:09:6B:AC:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u8o_JdVGILUO-FIGV2NNOwlrrFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/Rp_msz1sKXospi7oXq9Ephc77qY.roa
Signing time: Fri 11 Apr 2025 12:32:59 +0000
ROA not before: Fri 11 Apr 2025 12:32:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 2.59.132.0/22 maxlen: 24
45.145.40.0/22 maxlen: 24
45.157.232.0/22 maxlen: 24
62.192.153.0/24 maxlen: 24
94.143.231.0/24 maxlen: 24
104.167.24.0/24 maxlen: 24
176.96.136.0/22 maxlen: 24
185.94.29.0/24 maxlen: 24
185.219.84.0/24 maxlen: 24
185.254.96.0/22 maxlen: 24
193.41.226.0/24 maxlen: 24
193.41.237.0/24 maxlen: 24
193.42.11.0/24 maxlen: 24
193.42.12.0/24 maxlen: 24
194.48.217.0/24 maxlen: 24
2a0c:4ac0::/29 maxlen: 40
2a0d:1180::/29 maxlen: 29
2a0d:5940::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:d6:cf:81:49:c9:f3:43:38:70:66:52:06:58:f6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbca3f25d54620b50ef8520657634d3b096bac57
Validity
Not Before: Apr 11 12:32:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=469fe6b33d6c297a2ca62ee85eaf44a6173beea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:14:59:28:f5:d2:06:70:30:c8:20:e7:9d:c2:
b2:aa:7c:ad:4a:50:55:f7:f0:f5:94:46:fd:35:bd:
40:91:93:f0:a2:42:4a:f5:45:36:bd:f8:d6:c6:5f:
5d:88:d9:10:74:a9:e5:5c:2d:74:67:ad:a4:a1:a8:
aa:98:40:a1:79:40:79:be:1c:0a:98:1a:ee:aa:0c:
47:cd:76:b1:34:9b:d9:49:57:0d:fd:25:d0:bc:8f:
0b:d1:9e:83:5c:fe:a0:57:f0:da:d8:4a:38:b7:98:
08:57:5d:66:94:67:94:09:03:38:6c:69:dc:f2:4c:
a8:59:95:82:5f:4c:2c:f0:4c:91:e9:21:43:47:9f:
81:9a:8c:c1:b4:26:1f:e2:38:34:57:f3:6c:d6:1c:
22:ac:a8:f1:64:ed:ff:21:d5:6a:3b:c3:36:91:47:
8a:23:2a:5b:07:ed:9e:e3:80:ed:36:1c:cb:42:5b:
12:ef:96:a6:f2:d3:c3:32:d5:bb:88:7d:76:db:bd:
4c:17:d3:9d:e9:fd:b1:21:58:bf:a7:4f:87:16:2d:
79:c9:cd:5c:e6:16:a0:c7:77:d3:c2:b0:9d:0b:d9:
ab:5b:8a:dc:38:a4:32:4a:89:15:34:ac:7e:01:0e:
8d:29:29:70:42:b8:d1:b7:78:27:26:19:77:c3:92:
25:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:9F:E6:B3:3D:6C:29:7A:2C:A6:2E:E8:5E:AF:44:A6:17:3B:EE:A6
X509v3 Authority Key Identifier:
keyid:BB:CA:3F:25:D5:46:20:B5:0E:F8:52:06:57:63:4D:3B:09:6B:AC:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u8o_JdVGILUO-FIGV2NNOwlrrFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/Rp_msz1sKXospi7oXq9Ephc77qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/561d24-e921-4ec8-a611-4dc20c5b6268/1/u8o_JdVGILUO-FIGV2NNOwlrrFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.132.0/22
45.145.40.0/22
45.157.232.0/22
62.192.153.0/24
94.143.231.0/24
104.167.24.0/24
176.96.136.0/22
185.94.29.0/24
185.219.84.0/24
185.254.96.0/22
193.41.226.0/24
193.41.237.0/24
193.42.11.0-193.42.12.255
194.48.217.0/24
IPv6:
2a0c:4ac0::/29
2a0d:1180::/29
2a0d:5940::/29
Signature Algorithm: sha256WithRSAEncryption
72:42:06:c9:c0:c5:8a:d5:01:90:80:6f:96:72:e5:87:1e:42:
9e:56:9d:4b:90:3d:69:4d:65:63:25:f1:c3:4f:53:cf:02:3e:
05:6f:f1:86:f8:e9:3b:4f:2c:9b:3f:c5:1f:2d:b0:22:08:ed:
2f:4d:c2:d1:4e:46:10:df:52:fd:50:e1:f9:e0:77:9a:2a:30:
d3:49:e6:ba:5e:39:fa:9d:fb:c8:bf:10:8c:a6:eb:6a:f3:be:
c3:cd:a6:7c:78:54:b9:49:2d:51:bf:e3:0f:a7:90:fb:7d:de:
85:eb:d3:0c:4b:aa:d6:31:b7:e8:46:4f:dc:bd:94:c4:4d:89:
33:0a:2e:81:ec:99:d7:73:8f:bf:01:01:92:c4:89:e4:61:00:
95:24:9d:89:23:dd:d1:3e:b5:40:7e:24:3c:76:bd:31:22:ad:
3c:b3:d2:7f:68:e8:98:43:ac:5e:4a:47:cf:06:13:9f:41:e0:
42:03:08:fb:f8:25:6d:90:67:5d:01:b1:22:e6:9e:a9:c4:1b:
94:c4:ba:3a:b9:ba:16:04:fb:0a:9f:4f:b5:52:1a:0b:d1:ab:
64:eb:94:cd:8e:ee:72:ba:c8:aa:62:6a:80:25:12:d1:54:7e:
07:83:e6:95:a0:14:f0:24:77:39:00:be:7d:25:56:a0:08:9c:
08:d8:43:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net