Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/EJfhhxSKJku019QQkt99LIZFHTw.roa
File: EJfhhxSKJku019QQkt99LIZFHTw.roa (raw, json)
Hash identifier: SjUIL6Kbq6N31Fxq4qDA2LJmnHYs1GWAH6ODttxmcK8=
Subject key identifier: 10:97:E1:87:14:8A:26:4B:B4:D7:D4:10:92:DF:7D:2C:86:45:1D:3C
Certificate issuer: /CN=d6ce49255f406a725593c62e1c408779586d56ef
Certificate serial: 0194258F7E18CE38364C0E5410EABCF0B467
Authority key identifier: D6:CE:49:25:5F:40:6A:72:55:93:C6:2E:1C:40:87:79:58:6D:56:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1s5JJV9AanJVk8YuHECHeVhtVu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/EJfhhxSKJku019QQkt99LIZFHTw.roa
Signing time: Thu 02 Jan 2025 05:49:08 +0000
ROA not before: Thu 02 Jan 2025 05:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43372
IP address blocks: 45.158.4.0/23 maxlen: 23
45.158.6.0/23 maxlen: 23
185.186.152.0/23 maxlen: 23
185.186.154.0/23 maxlen: 23
185.236.96.0/23 maxlen: 23
185.236.98.0/23 maxlen: 23
185.236.108.0/23 maxlen: 23
185.236.110.0/23 maxlen: 23
2a0b:7e80::/29 maxlen: 29
2a0b:7e80:0:100::/56 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:7e:18:ce:38:36:4c:0e:54:10:ea:bc:f0:b4:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6ce49255f406a725593c62e1c408779586d56ef
Validity
Not Before: Jan 2 05:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1097e187148a264bb4d7d41092df7d2c86451d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d2:85:9e:71:18:1c:7a:e8:a0:12:48:ee:7b:
81:58:e2:86:2c:85:cc:55:fb:60:35:78:ff:4d:d1:
3c:5b:ce:c2:0d:66:d2:72:80:39:08:89:90:bd:f1:
7e:1f:67:f7:5c:5c:f7:3f:62:ad:1a:ac:6f:98:8b:
3b:38:ec:b3:a3:fa:0f:b9:9a:77:84:83:2b:22:c3:
6f:3d:84:fd:02:93:01:b8:fc:92:5d:b9:26:6c:c3:
c3:04:1e:da:19:97:ff:23:46:1d:9b:c3:91:67:88:
1b:1b:cb:ce:16:73:93:40:cf:c7:91:93:0a:98:61:
e1:fa:c1:1b:9f:ce:d1:0c:c4:38:ec:1a:ef:c1:9d:
36:8c:7f:ec:5c:8e:e1:db:6f:72:54:58:e4:6a:2c:
23:87:ba:f5:ec:6b:ea:6a:67:87:be:be:8b:fe:86:
2b:9d:03:8f:78:84:63:99:06:73:94:32:17:7a:ed:
70:22:a3:8b:b7:3c:56:32:bc:db:7c:97:48:a8:c8:
fc:a2:33:7f:4f:40:2a:5e:a0:f3:8a:49:2b:d8:75:
2b:ae:f5:3d:f3:f5:80:05:7e:2f:01:5f:d1:4a:78:
fd:24:35:89:81:dd:1a:be:9c:9d:f4:03:6b:9f:c9:
b0:de:30:a7:1b:69:cd:02:09:30:bc:37:82:a8:ec:
96:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:97:E1:87:14:8A:26:4B:B4:D7:D4:10:92:DF:7D:2C:86:45:1D:3C
X509v3 Authority Key Identifier:
keyid:D6:CE:49:25:5F:40:6A:72:55:93:C6:2E:1C:40:87:79:58:6D:56:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1s5JJV9AanJVk8YuHECHeVhtVu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/EJfhhxSKJku019QQkt99LIZFHTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/8b532f-6782-4044-9efb-6725d98196c6/1/1s5JJV9AanJVk8YuHECHeVhtVu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.4.0/22
185.186.152.0/22
185.236.96.0/22
185.236.108.0/22
IPv6:
2a0b:7e80::/29
Signature Algorithm: sha256WithRSAEncryption
21:38:75:b9:48:cc:76:38:7e:54:69:b5:ee:50:0d:b4:b0:09:
f0:a9:57:13:3c:43:be:78:45:1d:71:a5:ef:25:7b:f5:1f:87:
ba:d9:bf:fa:c5:5a:2d:e9:d4:ec:27:50:63:69:c4:a1:a7:b2:
60:59:48:09:8f:db:43:60:9d:40:ab:a7:78:8f:fb:34:a3:64:
53:82:38:20:2a:b6:9a:0a:d9:99:53:ff:a6:28:09:c9:70:c4:
1d:39:f4:8d:6c:59:17:8b:c3:49:eb:3d:66:29:a6:1a:ed:09:
f2:ef:6e:79:67:7b:ab:e4:e5:4f:0c:1c:dc:22:b5:a2:4a:44:
ae:5a:9c:ae:0c:b0:88:71:fe:83:df:3c:f8:0c:30:67:df:0c:
c4:39:27:e6:c9:ac:70:a0:11:9b:3f:18:18:7a:64:8b:1a:71:
a6:c4:15:6d:ba:5a:9f:60:2e:2c:96:70:cc:5e:98:7e:46:00:
80:21:b9:bb:3d:6f:66:e8:ba:15:9f:d6:a9:ad:fc:1c:dd:44:
48:ca:2f:40:3b:13:18:40:19:1e:60:64:94:9c:ee:99:dd:52:
43:0a:b8:54:8d:dd:b7:a2:8f:39:70:a1:a0:80:92:48:98:22:
e7:82:e3:f2:a1:4d:86:3d:3f:2f:4a:c5:33:51:5c:20:58:66:
6f:26:b2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net