Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-taUYURiuevgQ8VSjJyU7XAnR1A.roa
File: 1-taUYURiuevgQ8VSjJyU7XAnR1A.roa (raw, json)
Hash identifier: /M9r+ltgMNJqqbIzdEgC5JV4PzUjpSFJu4a9eTCQOhA=
Subject key identifier: FA:D6:94:61:44:62:B9:EB:E0:43:C5:52:8C:9C:94:ED:70:27:47:50
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019605C9233BF7277C9B40355C7ECB2011D7
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-taUYURiuevgQ8VSjJyU7XAnR1A.roa
Signing time: Sat 05 Apr 2025 11:49:49 +0000
ROA not before: Sat 05 Apr 2025 11:49:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 151.240.43.0/24 maxlen: 24
151.240.44.0/24 maxlen: 24
151.240.46.0/24 maxlen: 24
151.240.47.0/24 maxlen: 24
151.240.48.0/24 maxlen: 24
151.240.49.0/24 maxlen: 24
151.240.50.0/24 maxlen: 24
151.240.51.0/24 maxlen: 24
151.240.52.0/24 maxlen: 24
151.240.53.0/24 maxlen: 24
151.240.54.0/24 maxlen: 24
151.240.55.0/24 maxlen: 24
151.240.56.0/24 maxlen: 24
151.240.57.0/24 maxlen: 24
151.240.58.0/24 maxlen: 24
151.240.59.0/24 maxlen: 24
151.240.62.0/24 maxlen: 24
151.240.63.0/24 maxlen: 24
151.240.64.0/24 maxlen: 24
151.240.65.0/24 maxlen: 24
151.240.66.0/24 maxlen: 24
151.240.67.0/24 maxlen: 24
151.240.91.0/24 maxlen: 24
151.240.92.0/24 maxlen: 24
151.240.93.0/24 maxlen: 24
151.240.94.0/24 maxlen: 24
151.240.95.0/24 maxlen: 24
151.240.101.0/24 maxlen: 24
151.240.102.0/24 maxlen: 24
151.240.103.0/24 maxlen: 24
151.240.104.0/24 maxlen: 24
151.240.105.0/24 maxlen: 24
151.240.106.0/24 maxlen: 24
151.240.107.0/24 maxlen: 24
151.240.108.0/24 maxlen: 24
151.240.109.0/24 maxlen: 24
151.240.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:05:c9:23:3b:f7:27:7c:9b:40:35:5c:7e:cb:20:11:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 5 11:49:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fad694614462b9ebe043c5528c9c94ed70274750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:66:37:42:6e:80:28:76:7b:4d:10:d1:b4:
90:26:ed:8b:ad:84:0b:36:d1:0a:4d:68:26:ed:6e:
5b:37:26:29:1b:0c:34:58:08:f0:0b:01:12:1d:00:
2b:47:58:5c:b8:b3:5d:8b:d7:2f:8c:1d:89:63:44:
e9:70:95:db:59:d7:36:f5:73:0c:2d:ea:10:a2:64:
8a:d2:1c:d0:c9:62:3a:4c:5c:b9:4c:05:db:0c:74:
fa:b5:70:eb:61:60:69:b7:9b:b6:83:5e:c2:b3:3a:
4d:fd:3c:8e:91:79:2e:36:b1:71:cc:b9:05:81:23:
32:36:f4:4d:d5:07:b8:d8:e3:ea:07:2f:a1:18:b6:
ee:9a:82:21:9f:25:b8:3c:d2:ed:43:8d:a6:34:eb:
1f:4e:81:3d:70:e5:18:e1:6b:52:d1:2e:21:07:34:
7e:5c:4d:dd:47:01:c7:6a:2b:51:4e:10:cd:16:b0:
da:49:25:09:c8:76:87:e9:8e:ff:fd:9d:4c:e1:3a:
03:8a:a0:51:2c:21:a4:27:0d:b0:9e:dd:61:5b:20:
74:6a:19:54:eb:66:5a:e3:2d:10:7e:3a:51:47:35:
21:2b:78:d4:d6:8d:12:d8:53:8a:46:9e:7a:85:b8:
82:8d:85:10:bd:9d:be:6f:d4:ec:15:13:70:ea:28:
95:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D6:94:61:44:62:B9:EB:E0:43:C5:52:8C:9C:94:ED:70:27:47:50
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-taUYURiuevgQ8VSjJyU7XAnR1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.240.43.0-151.240.44.255
151.240.46.0-151.240.59.255
151.240.62.0-151.240.67.255
151.240.91.0-151.240.95.255
151.240.101.0-151.240.109.255
151.240.111.0/24
Signature Algorithm: sha256WithRSAEncryption
32:c3:f6:e6:bb:f5:2e:f4:5f:b9:13:b8:40:4a:2b:30:b9:90:
7a:53:7f:04:fd:8e:32:be:f4:bc:fa:d8:8c:a3:fc:ac:28:76:
2c:7e:76:b1:d8:8c:02:46:fa:00:63:c9:e8:d4:ba:e2:94:59:
a3:f8:ec:3c:95:35:ba:90:1c:3d:ec:1a:54:00:8e:08:b4:ef:
65:64:e0:aa:ba:08:12:fd:40:3b:72:bc:31:a1:36:ad:bb:82:
e1:b2:99:e6:27:e9:5c:e6:05:73:73:e4:51:d7:db:7c:a8:ea:
4a:a8:48:60:9b:da:db:90:02:18:32:81:2e:d9:86:e7:93:79:
d8:d8:92:96:c9:56:cb:ac:af:b0:0b:1a:f7:ca:f3:42:ee:e7:
ca:ac:ee:54:af:8c:0e:c6:c7:c3:9b:42:b8:65:ad:d7:ac:e6:
13:3c:aa:8f:ca:7d:16:d6:c3:f9:aa:a7:c5:12:9e:d7:0a:75:
55:40:f0:b5:86:4d:d7:a1:c9:6a:d2:a9:65:d1:93:4a:00:51:
22:1e:fc:4c:4a:30:6a:02:d5:48:97:ea:94:4d:2a:87:94:9c:
ca:9a:ff:ff:6f:62:75:28:27:8f:c6:71:fd:11:96:5c:52:25:
2d:52:e5:ad:33:de:9c:61:e5:55:86:19:45:bf:66:ff:80:98:
30:90:29:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net