Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/pSa6Cl1GXo7foAyFrHXmLJZlt1c.roa
File: pSa6Cl1GXo7foAyFrHXmLJZlt1c.roa (raw, json)
Hash identifier: UNi09k+Bt5G9PMcC124mrj3Hl9EaVAVyKXxcinPAiXY=
Subject key identifier: A5:26:BA:0A:5D:46:5E:8E:DF:A0:0C:85:AC:75:E6:2C:96:65:B7:57
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 019614914495BDA5D55DCFA851AC873B94F1
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/pSa6Cl1GXo7foAyFrHXmLJZlt1c.roa
Signing time: Tue 08 Apr 2025 08:43:06 +0000
ROA not before: Tue 08 Apr 2025 08:43:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212192
IP address blocks: 5.157.164.0/22 maxlen: 24
37.35.32.0/22 maxlen: 22
37.35.38.0/24 maxlen: 24
146.66.211.0/24 maxlen: 24
188.74.153.0/24 maxlen: 24
188.74.154.0/24 maxlen: 24
188.74.156.0/22 maxlen: 22
188.74.191.0/24 maxlen: 24
188.74.244.0/24 maxlen: 24
188.119.164.0/24 maxlen: 24
188.119.167.0/24 maxlen: 24
188.119.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:91:44:95:bd:a5:d5:5d:cf:a8:51:ac:87:3b:94:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Apr 8 08:43:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a526ba0a5d465e8edfa00c85ac75e62c9665b757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bb:c7:7b:c4:3c:7e:a2:e9:be:df:e0:4d:f5:
e5:5a:25:e2:15:15:19:e8:af:8d:84:e0:f1:5b:34:
41:84:da:36:c1:b6:9c:27:a4:f5:16:b1:ea:cf:38:
99:60:84:07:1e:29:72:69:f6:79:6e:75:4e:20:c7:
cf:23:ae:fc:46:ac:ec:54:b2:99:34:b5:fd:88:05:
74:2f:3c:3b:30:ec:f8:b3:63:90:cd:28:e2:7b:08:
e7:9a:f5:5f:3b:23:89:05:37:8e:59:10:f1:b7:04:
d2:e3:73:7c:3f:b6:2e:f0:e4:34:db:b5:05:61:fd:
38:a4:e1:b9:38:38:05:3c:ed:0b:8c:37:f6:2a:e6:
01:3c:66:f5:1d:c4:55:7a:82:33:ad:43:24:f9:56:
38:57:fe:bf:fb:73:63:b7:41:35:b4:75:82:2e:67:
d1:4f:c3:19:8c:8c:9b:3a:40:b1:20:a5:6e:a9:d6:
c9:ea:77:42:66:1d:37:b9:4c:d1:93:06:5b:71:fc:
ae:57:ac:2c:2b:f6:38:33:cd:e3:76:2d:0a:56:c0:
66:cd:34:7a:54:98:c7:a6:b4:8e:59:6c:68:72:3c:
5d:0c:05:9f:a6:bc:51:50:d1:de:8c:3f:81:23:44:
35:a1:10:c7:6d:04:46:6a:4b:97:d1:2b:6f:85:50:
d5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:26:BA:0A:5D:46:5E:8E:DF:A0:0C:85:AC:75:E6:2C:96:65:B7:57
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/pSa6Cl1GXo7foAyFrHXmLJZlt1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.164.0/22
37.35.32.0/22
37.35.38.0/24
146.66.211.0/24
188.74.153.0-188.74.154.255
188.74.156.0/22
188.74.191.0/24
188.74.244.0/24
188.119.164.0/24
188.119.167.0/24
188.119.189.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:8d:d5:48:c0:eb:76:8c:6f:6b:52:d2:30:3e:d0:52:6e:d0:
a3:db:83:2c:e3:fd:81:fc:76:57:08:3f:2f:7b:b3:f8:77:6f:
82:87:e1:07:f1:fc:fc:ba:0c:e5:fe:e2:84:65:2a:65:98:18:
be:96:2b:7f:70:f5:39:1b:e5:8f:bb:0a:f4:2c:0f:8e:fc:f9:
ea:51:02:f9:d6:33:15:19:de:e6:3f:47:fc:c3:aa:01:09:28:
e9:db:fa:53:9d:df:a3:7a:a5:dc:c2:e2:ff:e0:61:6a:08:d7:
c5:ca:2a:3e:63:7e:18:b1:5c:12:8a:8e:3a:46:6e:46:17:f6:
d3:8b:d0:9a:61:84:a4:83:ec:1b:10:ef:61:11:b4:45:18:45:
2d:94:dc:b6:cb:f7:cc:f3:07:50:6c:1a:e1:4c:f1:c7:77:4f:
aa:25:f2:e8:cc:d0:1d:00:85:f1:fd:f3:d5:29:a9:5d:de:39:
81:de:0b:8e:96:ec:66:50:9e:c8:0f:aa:6d:53:9a:e4:71:b9:
e2:db:94:f1:0f:c0:6a:b9:df:99:8f:a9:b8:63:21:86:9b:b6:
85:2c:05:a3:b7:11:d1:2f:81:b9:41:16:53:41:25:f2:ae:c6:
db:bd:4c:f2:2b:fb:88:e2:34:3c:73:b5:20:b6:9b:f2:92:88:
08:de:79:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net