Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/880eb2-fa65-47ca-8a00-6480c3d1f4e4/1/9ZDRqSxOTF3aSbjhs8e0AlmIIM0.roa
File: 9ZDRqSxOTF3aSbjhs8e0AlmIIM0.roa (raw, json)
Hash identifier: BNxmQdN2BuReu+cj7bA+UCBhzNoTCd/s2l3DmDGpfjs=
Subject key identifier: F5:90:D1:A9:2C:4E:4C:5D:DA:49:B8:E1:B3:C7:B4:02:59:88:20:CD
Certificate issuer: /CN=b209308540c4df9b9bb7d6327fa7b5d49008068c
Certificate serial: 019368AD0639BF5E7B2DDD9D9CCD74516B11
Authority key identifier: B2:09:30:85:40:C4:DF:9B:9B:B7:D6:32:7F:A7:B5:D4:90:08:06:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgkwhUDE35ubt9Yyf6e11JAIBow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/880eb2-fa65-47ca-8a00-6480c3d1f4e4/1/9ZDRqSxOTF3aSbjhs8e0AlmIIM0.roa
Signing time: Tue 26 Nov 2024 13:33:09 +0000
ROA not before: Tue 26 Nov 2024 13:33:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50564
IP address blocks: 45.131.28.0/22 maxlen: 22
45.131.28.0/24 maxlen: 24
45.131.29.0/24 maxlen: 24
45.131.30.0/24 maxlen: 24
45.131.31.0/24 maxlen: 24
94.158.252.0/22 maxlen: 22
94.158.252.0/24 maxlen: 24
94.158.253.0/24 maxlen: 24
94.158.255.0/24 maxlen: 24
185.44.24.0/22 maxlen: 22
185.44.24.0/24 maxlen: 24
185.44.25.0/24 maxlen: 24
185.44.26.0/24 maxlen: 24
185.44.27.0/24 maxlen: 24
185.95.124.0/22 maxlen: 22
185.95.124.0/24 maxlen: 24
185.95.125.0/24 maxlen: 24
185.95.126.0/24 maxlen: 24
185.95.127.0/24 maxlen: 24
185.104.236.0/22 maxlen: 22
185.104.236.0/24 maxlen: 24
185.104.237.0/24 maxlen: 24
185.104.238.0/24 maxlen: 24
185.104.239.0/24 maxlen: 24
185.143.136.0/22 maxlen: 22
185.143.136.0/24 maxlen: 24
185.143.137.0/24 maxlen: 24
185.143.138.0/24 maxlen: 24
185.143.139.0/24 maxlen: 24
185.182.124.0/22 maxlen: 22
185.182.124.0/24 maxlen: 24
185.182.125.0/24 maxlen: 24
185.182.126.0/24 maxlen: 24
185.182.127.0/24 maxlen: 24
185.184.0.0/22 maxlen: 23
185.184.0.0/23 maxlen: 23
185.184.0.0/24 maxlen: 24
185.184.1.0/24 maxlen: 24
185.184.2.0/24 maxlen: 24
185.184.3.0/24 maxlen: 24
185.208.20.0/22 maxlen: 22
185.208.20.0/24 maxlen: 24
185.208.21.0/24 maxlen: 24
185.208.22.0/24 maxlen: 24
185.208.23.0/24 maxlen: 24
185.213.48.0/22 maxlen: 22
185.213.48.0/24 maxlen: 24
185.213.49.0/24 maxlen: 24
185.213.50.0/24 maxlen: 24
185.213.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ad:06:39:bf:5e:7b:2d:dd:9d:9c:cd:74:51:6b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b209308540c4df9b9bb7d6327fa7b5d49008068c
Validity
Not Before: Nov 26 13:33:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f590d1a92c4e4c5dda49b8e1b3c7b402598820cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a7:f6:41:b7:4a:ac:43:ba:84:c1:e1:10:07:
61:d7:17:44:f6:03:0e:e0:dc:2c:76:f2:47:b8:ba:
30:2e:64:93:78:14:49:94:dd:be:8b:77:c7:7a:7a:
94:39:fa:62:08:c2:17:52:6f:22:cd:3f:69:de:50:
a6:a3:5e:91:50:2d:13:cb:e2:05:9c:34:d4:9f:38:
0d:a7:fd:92:43:fc:fe:0b:77:54:59:8e:79:77:62:
ab:e1:4e:59:e3:77:ea:af:c0:10:2f:a5:d3:ef:8d:
96:b5:10:71:57:f9:89:66:92:01:c1:3c:52:9b:f8:
ff:77:70:22:d7:d6:41:8e:a6:55:26:48:33:7e:ef:
02:6f:31:2c:0a:1f:11:57:1d:0d:8f:ca:6f:84:04:
96:46:9f:6f:d5:22:d4:ba:8e:74:dd:09:b8:c5:41:
58:60:fe:ab:6a:ec:86:30:a4:72:ce:97:20:34:73:
a3:bd:3e:0c:c7:3b:0e:a5:6e:8f:74:87:d4:50:53:
95:79:57:38:d0:b2:38:74:fc:93:11:cb:24:9d:5a:
1b:ab:c8:50:62:80:06:99:3c:17:35:fd:40:17:d8:
71:ec:04:6e:1e:cd:3d:78:d3:39:5e:fa:07:23:b4:
c2:a1:6f:ca:3d:f6:54:45:98:f8:16:31:b8:b7:d8:
11:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:90:D1:A9:2C:4E:4C:5D:DA:49:B8:E1:B3:C7:B4:02:59:88:20:CD
X509v3 Authority Key Identifier:
keyid:B2:09:30:85:40:C4:DF:9B:9B:B7:D6:32:7F:A7:B5:D4:90:08:06:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgkwhUDE35ubt9Yyf6e11JAIBow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/880eb2-fa65-47ca-8a00-6480c3d1f4e4/1/9ZDRqSxOTF3aSbjhs8e0AlmIIM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/880eb2-fa65-47ca-8a00-6480c3d1f4e4/1/sgkwhUDE35ubt9Yyf6e11JAIBow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.28.0/22
94.158.252.0/22
185.44.24.0/22
185.95.124.0/22
185.104.236.0/22
185.143.136.0/22
185.182.124.0/22
185.184.0.0/22
185.208.20.0/22
185.213.48.0/22
Signature Algorithm: sha256WithRSAEncryption
94:08:71:f1:e3:13:df:14:13:a6:cf:b6:05:c1:74:00:69:21:
09:0c:9e:c6:d3:4b:94:d7:45:f6:30:8a:63:d7:e5:8c:77:c4:
a5:6f:4a:5f:ca:06:e0:ca:d1:c7:2c:ff:7b:c3:ff:9b:02:f1:
42:dd:1e:4c:76:27:05:28:ad:5b:b7:a8:71:0c:68:b1:cb:7b:
00:23:cd:5c:e3:98:cb:6a:0b:9f:ac:b8:82:c9:62:94:bb:18:
ba:55:ed:9a:f0:d5:ea:78:9c:3e:b5:63:7e:ef:98:c4:15:19:
1c:d8:01:76:cf:a7:91:f2:ee:c6:1b:e9:07:6b:46:2f:cf:51:
1d:c7:d3:04:7a:6e:56:10:d8:21:3b:7b:a6:60:d0:a7:64:ec:
bc:63:bc:d3:11:ff:56:fa:ea:9e:e9:05:e6:19:88:c6:d3:4a:
83:be:56:a5:96:85:a7:df:55:53:73:49:15:14:9b:14:65:29:
19:cf:98:fb:00:b3:30:e6:94:82:03:e4:61:30:38:67:1d:02:
e8:b3:de:57:97:95:9f:d0:f1:5a:aa:46:9b:e1:03:95:bb:53:
97:88:ae:c0:c6:ff:73:31:87:90:3f:4e:62:66:c9:c9:57:83:
67:2f:53:2c:54:e8:68:42:9b:ff:80:61:81:3e:45:b5:f9:aa:
ae:93:fe:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:15 2024 by rpki-client on console.sobornost.net