Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/CEKF3MXHpQR2CGHCMQpTxxuuRIY.roa
File: CEKF3MXHpQR2CGHCMQpTxxuuRIY.roa (raw, json)
Hash identifier: Rh5DOeHi5/pgsxZpTOekiFMDHUB1zlvv4XKyE6PrDFE=
Subject key identifier: 08:42:85:DC:C5:C7:A5:04:76:08:61:C2:31:0A:53:C7:1B:AE:44:86
Certificate issuer: /CN=935f53f5e407e55a2330d9d523a804c0722ca565
Certificate serial: 0194282667322C45077078F426BA609F41C4
Authority key identifier: 93:5F:53:F5:E4:07:E5:5A:23:30:D9:D5:23:A8:04:C0:72:2C:A5:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k19T9eQH5VojMNnVI6gEwHIspWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/CEKF3MXHpQR2CGHCMQpTxxuuRIY.roa
Signing time: Thu 02 Jan 2025 17:53:12 +0000
ROA not before: Thu 02 Jan 2025 17:53:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208550
IP address blocks: 45.158.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:67:32:2c:45:07:70:78:f4:26:ba:60:9f:41:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=935f53f5e407e55a2330d9d523a804c0722ca565
Validity
Not Before: Jan 2 17:53:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=084285dcc5c7a504760861c2310a53c71bae4486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:65:ac:bd:ce:9d:d5:e8:86:9e:47:90:99:e9:
a6:a7:2e:a8:ae:f7:89:af:a1:55:4a:f6:da:02:a8:
be:1a:69:be:e6:02:a8:7b:14:95:0e:bc:d8:12:b4:
12:5e:d4:d0:a1:a7:c3:cf:5b:c6:6b:45:b4:a0:79:
1d:34:28:76:4b:a1:06:3e:ed:b7:c5:d6:54:74:13:
82:e5:f0:78:b7:b0:94:29:e8:a1:f4:83:04:60:e7:
1a:43:be:15:d6:13:cf:70:bd:e0:b4:8d:41:90:39:
06:65:52:a1:45:be:2e:b4:43:d8:8f:4e:2f:34:fe:
d1:82:36:ea:fb:59:fc:2b:8d:9a:2f:f4:bc:67:48:
00:5e:d9:4d:30:f9:c0:43:ff:52:97:1c:72:92:15:
ee:4c:d9:da:75:16:1c:5f:13:29:74:73:b7:f3:2d:
e0:be:e6:eb:40:51:5e:86:03:49:88:44:ae:28:6f:
7b:e4:9a:7c:2f:37:ef:d1:24:3f:ff:6c:4e:01:68:
be:5f:1b:9b:fb:59:b7:fc:49:e5:d9:c5:c5:4f:e0:
cc:aa:d2:6c:55:dc:69:a3:b2:60:8b:0f:39:72:dd:
a5:f9:0e:af:c6:55:49:e6:7e:f0:b5:17:94:85:8a:
a9:02:be:54:3e:de:fb:91:a2:32:b2:f3:06:2a:e3:
33:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:42:85:DC:C5:C7:A5:04:76:08:61:C2:31:0A:53:C7:1B:AE:44:86
X509v3 Authority Key Identifier:
keyid:93:5F:53:F5:E4:07:E5:5A:23:30:D9:D5:23:A8:04:C0:72:2C:A5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k19T9eQH5VojMNnVI6gEwHIspWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/CEKF3MXHpQR2CGHCMQpTxxuuRIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8b554c-0cef-41b3-ba3b-2d5d6884173f/1/k19T9eQH5VojMNnVI6gEwHIspWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.52.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:fe:bc:fd:cb:28:95:ce:bd:80:ea:3d:da:a6:8a:ee:61:95:
a8:1a:d5:6a:ad:75:f4:8a:54:59:ce:41:7b:98:31:df:7a:e6:
2c:6e:47:2a:4c:b8:f4:56:3b:4c:e3:7e:1f:34:47:21:54:61:
be:0d:c9:97:5c:1d:18:de:da:e1:b6:cb:e3:57:9c:f0:91:7d:
45:7c:9b:c3:89:dc:84:7c:06:0a:f8:9f:15:71:f5:f9:3e:74:
13:af:61:f4:69:db:29:21:cb:25:4e:5d:f5:8e:7d:dd:fb:ec:
e1:03:ac:df:c6:6e:28:f8:2b:46:f7:1e:9d:f4:52:63:8a:57:
24:af:ba:9d:81:c9:a4:48:69:73:e5:ac:b1:ef:15:77:be:0a:
b2:b1:c0:02:a8:da:da:41:a1:51:ac:50:73:c8:f1:80:ad:48:
7e:a3:ae:6c:cf:d1:aa:c3:9a:ee:9c:1d:07:80:7f:b5:45:b0:
02:6f:1f:d9:d4:81:01:14:03:74:64:ff:47:8f:8e:5e:f8:af:
1e:90:64:4f:76:82:df:70:01:5c:66:49:6c:52:af:70:12:fe:
5f:25:ac:52:f0:0a:1a:51:19:55:56:07:68:10:1b:55:e5:d9:
29:bd:54:15:58:98:53:ad:da:0f:7d:2b:6f:e3:1e:88:bc:34:
2f:a5:d6:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJmcyLEUHcHj0Jrpgn0HEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNWY1M2Y1ZTQwN2U1NWEyMzMwZDlkNTIzYTgwNGMwNzIy
Y2E1NjUwHhcNMjUwMTAyMTc1MzEyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODQyODVkY2M1YzdhNTA0NzYwODYxYzIzMTBhNTNjNzFiYWU0NDg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2Wsvc6d1eiGnkeQmemmpy6orveJ
r6FVSvbaAqi+Gmm+5gKoexSVDrzYErQSXtTQoafDz1vGa0W0oHkdNCh2S6EGPu23
xdZUdBOC5fB4t7CUKeih9IMEYOcaQ74V1hPPcL3gtI1BkDkGZVKhRb4utEPYj04v
NP7Rgjbq+1n8K42aL/S8Z0gAXtlNMPnAQ/9SlxxykhXuTNnadRYcXxMpdHO38y3g
vubrQFFehgNJiESuKG975Jp8Lzfv0SQ//2xOAWi+Xxub+1m3/Enl2cXFT+DMqtJs
Vdxpo7Jgiw85ct2l+Q6vxlVJ5n7wtReUhYqpAr5UPt77kaIysvMGKuMzCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAhChdzFx6UEdghhwjEKU8cbrkSGMB8GA1UdIwQY
MBaAFJNfU/XkB+VaIzDZ1SOoBMByLKVlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazE5VDllUUg1Vm9qTU5uVkk2Z0V3SElzcFdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi84YjU1NGMtMGNlZi00MWIzLWJhM2It
MmQ1ZDY4ODQxNzNmLzEvQ0VLRjNNWEhwUVIyQ0dIQ01RcFR4eHV1UklZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi84YjU1NGMtMGNlZi00MWIzLWJhM2ItMmQ1ZDY4ODQxNzNm
LzEvazE5VDllUUg1Vm9qTU5uVkk2Z0V3SElzcFdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ40MA0G
CSqGSIb3DQEBCwUAA4IBAQB+/rz9yyiVzr2A6j3aporuYZWoGtVqrXX0ilRZzkF7
mDHfeuYsbkcqTLj0VjtM434fNEchVGG+DcmXXB0Y3trhtsvjV5zwkX1FfJvDidyE
fAYK+J8VcfX5PnQTr2H0adspIcslTl31jn3d++zhA6zfxm4o+CtG9x6d9FJjilck
r7qdgcmkSGlz5ayx7xV3vgqyscACqNraQaFRrFBzyPGArUh+o65sz9Gqw5runB0H
gH+1RbACbx/Z1IEBFAN0ZP9Hj45e+K8ekGRPdoLfcAFcZklsUq9wEv5fJaxS8Aoa
URlVVgdoEBtV5dkpvVQVWJhTrdoPfStv4x6IvDQvpdbd
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net