Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/I2Um-BptLNwnopUXCKyaHVD-kHY.roa
File: I2Um-BptLNwnopUXCKyaHVD-kHY.roa (raw, json)
Hash identifier: oaTE3K1HG85ox8sjIAMWSASmDZ12fR3RjImb2V3uqGk=
Subject key identifier: 23:65:26:F8:1A:6D:2C:DC:27:A2:95:17:08:AC:9A:1D:50:FE:90:76
Certificate issuer: /CN=1c6c48cccce321ec18702957b396381a1f1a0410
Certificate serial: 019425FC0A89A5F872427057EF4556720C54
Authority key identifier: 1C:6C:48:CC:CC:E3:21:EC:18:70:29:57:B3:96:38:1A:1F:1A:04:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HGxIzMzjIewYcClXs5Y4Gh8aBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/I2Um-BptLNwnopUXCKyaHVD-kHY.roa
Signing time: Thu 02 Jan 2025 07:47:42 +0000
ROA not before: Thu 02 Jan 2025 07:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204144
IP address blocks: 45.80.240.0/22 maxlen: 22
45.85.212.0/22 maxlen: 22
45.88.252.0/22 maxlen: 22
193.108.183.0/24 maxlen: 24
193.108.198.0/24 maxlen: 24
193.108.208.0/24 maxlen: 24
193.108.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:0a:89:a5:f8:72:42:70:57:ef:45:56:72:0c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c6c48cccce321ec18702957b396381a1f1a0410
Validity
Not Before: Jan 2 07:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=236526f81a6d2cdc27a2951708ac9a1d50fe9076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:78:b9:36:ab:58:36:39:b8:bd:45:07:52:12:
67:25:9a:cb:03:de:3d:ee:85:ec:c0:3f:41:16:7d:
07:1c:70:34:5a:d2:26:0a:2d:c7:95:f1:3f:0c:4e:
13:11:02:e6:d9:2b:16:4b:81:fb:e6:1b:40:d5:0e:
1f:3a:70:2a:1f:ce:d3:f0:e7:d0:2a:a7:55:55:b2:
d9:21:b5:ff:39:63:d2:19:fe:45:25:ed:27:c0:22:
6a:fa:15:4f:08:80:37:a2:77:f4:22:67:84:a4:6f:
55:b3:1f:d0:33:fc:87:c5:af:53:45:50:e5:38:c7:
80:04:50:09:67:a6:03:67:eb:06:87:85:40:df:2c:
c6:07:ef:46:29:5e:29:f0:1a:90:6d:8c:65:ae:fb:
99:e5:cb:04:37:a4:83:49:f6:51:61:f1:93:d2:a0:
05:cf:f6:9b:42:1a:1d:24:cf:7a:97:4b:b7:79:55:
0b:69:f2:f6:44:c6:3f:60:59:2b:01:e9:16:9c:5e:
dd:23:13:e9:ce:00:5f:48:77:42:a2:d3:ea:44:3d:
d0:06:69:6d:c6:9b:df:0f:e5:48:1c:f4:b7:ee:96:
bc:ec:69:39:cc:dd:d1:88:4d:da:0c:7e:19:ff:4b:
6f:cb:cf:ed:3a:7c:e9:1f:45:45:1c:a9:1b:06:ab:
a9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:65:26:F8:1A:6D:2C:DC:27:A2:95:17:08:AC:9A:1D:50:FE:90:76
X509v3 Authority Key Identifier:
keyid:1C:6C:48:CC:CC:E3:21:EC:18:70:29:57:B3:96:38:1A:1F:1A:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGxIzMzjIewYcClXs5Y4Gh8aBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/I2Um-BptLNwnopUXCKyaHVD-kHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/HGxIzMzjIewYcClXs5Y4Gh8aBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.240.0/22
45.85.212.0/22
45.88.252.0/22
193.108.183.0/24
193.108.198.0/24
193.108.208.0/24
193.108.211.0/24
Signature Algorithm: sha256WithRSAEncryption
30:21:8f:21:85:9a:ec:e1:02:e2:48:53:29:f0:12:30:c7:12:
b7:81:3c:30:fe:7a:45:9a:47:96:f2:de:fd:8b:b0:10:f9:03:
6b:4d:85:b8:5e:f0:42:49:a4:fe:25:e5:e7:af:d4:bf:eb:5e:
16:ea:7e:56:a4:03:b6:0d:44:7c:c6:5d:dc:a6:9b:1f:41:e0:
d7:5c:92:0d:62:fd:3c:5e:eb:1e:8a:b7:50:0f:58:4c:3a:e6:
a4:fb:73:12:07:d0:f6:7c:89:1b:fc:7e:68:78:13:3e:81:be:
8b:53:c1:40:92:32:09:cd:a4:92:27:f3:dc:a8:c1:45:7f:d6:
83:72:b8:50:95:a8:14:a1:e4:50:b7:da:fa:1e:33:37:76:1a:
08:c1:5a:a4:22:35:00:dd:ad:ea:36:53:b0:41:d2:5a:8d:7e:
f3:35:e8:1b:a5:56:9f:bd:72:8b:07:6b:54:9c:0b:93:f7:a2:
55:e0:42:60:4f:27:fc:3f:17:98:16:0d:8a:34:3b:57:c0:76:
14:70:64:46:a4:c5:05:b1:81:25:6d:3c:a6:d2:db:e8:b9:90:
05:11:eb:96:13:24:63:60:30:95:19:3c:5a:f0:c1:1b:a6:f9:
1a:40:5f:69:87:96:d3:37:44:de:45:9b:8d:15:b4:cc:6d:a1:
ce:a0:76:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net