Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/dQFzxDl8wpWYm4T2jJSs9WUCcAY.roa
File: dQFzxDl8wpWYm4T2jJSs9WUCcAY.roa (raw, json)
Hash identifier: r2kQ53HaLn0AeVHSBwXCWWUEat4nqLZvUWPyfBVscGQ=
Subject key identifier: 75:01:73:C4:39:7C:C2:95:98:9B:84:F6:8C:94:AC:F5:65:02:70:06
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 01960F3EB48C7A5CE67B85F4371A7A2BC2CC
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/dQFzxDl8wpWYm4T2jJSs9WUCcAY.roa
Signing time: Mon 07 Apr 2025 07:54:49 +0000
ROA not before: Mon 07 Apr 2025 07:54:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6134
IP address blocks: 45.128.146.0/24 maxlen: 24
45.128.147.0/24 maxlen: 24
45.131.179.0/24 maxlen: 24
45.132.238.0/23 maxlen: 24
45.133.238.0/23 maxlen: 24
45.134.82.0/23 maxlen: 24
45.135.118.0/23 maxlen: 24
45.137.10.0/23 maxlen: 24
45.140.90.0/23 maxlen: 24
45.153.128.0/24 maxlen: 24
91.238.203.0/24 maxlen: 24
91.238.207.0/24 maxlen: 24
185.106.176.0/22 maxlen: 24
193.200.130.0/24 maxlen: 24
193.200.134.0/24 maxlen: 24
193.200.149.0/24 maxlen: 24
193.200.152.0/24 maxlen: 24
193.227.103.0/24 maxlen: 24
193.227.109.0/24 maxlen: 24
193.227.114.0/24 maxlen: 24
2a06:5040:21::/48 maxlen: 48
2a06:5040:22::/48 maxlen: 48
2a06:5040:23::/48 maxlen: 48
2a06:5040:24::/48 maxlen: 48
2a06:5040:25::/48 maxlen: 48
2a06:5040:30::/45 maxlen: 45
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:3e:b4:8c:7a:5c:e6:7b:85:f4:37:1a:7a:2b:c2:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Apr 7 07:54:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=750173c4397cc295989b84f68c94acf565027006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8a:00:25:9b:ce:d8:14:51:6f:90:5f:c0:34:
3a:5b:de:8e:95:45:83:4c:7f:37:c0:13:89:4a:46:
5d:fb:2a:72:81:e1:f2:9f:26:63:c3:87:e8:6e:ee:
76:b0:11:cb:01:c0:ba:52:01:61:b7:fa:fd:65:ba:
56:77:99:2d:26:30:7b:99:44:59:2e:46:a4:b8:fc:
ee:eb:e3:83:39:f7:22:3a:6a:10:e9:03:21:b2:11:
3b:da:24:e1:b9:93:65:1c:fe:d2:d1:d1:da:37:ca:
27:72:6e:92:1e:ad:89:5b:2f:b7:52:b3:e2:01:4e:
75:19:ce:da:40:8a:bf:83:5c:9f:00:be:1d:5b:d5:
4c:f2:c5:55:44:77:78:03:4a:34:78:97:d2:bf:6e:
a3:f8:56:19:a0:96:97:5f:4c:99:22:30:42:4a:cc:
7a:79:75:57:f1:56:18:c9:5c:5c:48:f5:76:e9:92:
bd:a4:f8:60:03:9a:c9:6e:15:77:2d:77:3e:2f:30:
a4:7a:ee:87:c6:29:f0:7b:0a:1d:28:16:c8:21:8e:
83:44:e9:0e:85:33:a4:d0:b2:40:af:2b:d0:c5:bb:
cc:31:5c:27:1c:45:15:cb:7b:f6:96:28:9d:6e:87:
3d:c7:b3:cd:1b:de:18:f1:0a:0a:a5:f7:78:36:41:
17:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:01:73:C4:39:7C:C2:95:98:9B:84:F6:8C:94:AC:F5:65:02:70:06
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/dQFzxDl8wpWYm4T2jJSs9WUCcAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.146.0/23
45.131.179.0/24
45.132.238.0/23
45.133.238.0/23
45.134.82.0/23
45.135.118.0/23
45.137.10.0/23
45.140.90.0/23
45.153.128.0/24
91.238.203.0/24
91.238.207.0/24
185.106.176.0/22
193.200.130.0/24
193.200.134.0/24
193.200.149.0/24
193.200.152.0/24
193.227.103.0/24
193.227.109.0/24
193.227.114.0/24
IPv6:
2a06:5040:21::-2a06:5040:25:ffff:ffff:ffff:ffff:ffff
2a06:5040:30::/45
Signature Algorithm: sha256WithRSAEncryption
5f:63:36:e3:8e:8c:21:d1:08:ff:38:8e:6f:2c:f3:5b:f2:24:
fd:dd:7e:21:4e:7b:85:8b:b4:2c:48:29:2a:0a:45:ae:f7:8f:
bc:84:e1:e6:41:fb:ca:43:68:80:3a:3c:0d:47:ca:75:64:fb:
b5:bc:2e:fa:1b:14:ef:1b:bb:78:36:bf:f2:93:21:97:91:93:
81:f8:36:1e:92:21:c9:b5:be:c8:c6:3e:4d:87:a4:32:61:79:
d4:bb:09:62:fd:1f:ad:f5:ba:f0:47:7f:8a:1c:e6:89:94:23:
69:4f:ca:91:40:6a:be:71:f6:ef:50:b9:c8:05:7b:d1:c3:27:
aa:d0:26:bb:e1:b6:1b:66:db:a4:37:37:2d:f3:c5:ca:17:e6:
50:f7:24:4c:2c:b1:8a:4b:a7:79:28:78:63:4a:55:6f:0d:7b:
61:4f:77:76:f4:32:17:b1:d4:11:79:02:ce:f4:af:6c:2d:35:
2a:73:18:90:e5:af:0a:a0:b8:87:17:8a:31:b8:7b:7d:92:78:
91:a7:b7:c1:c9:a8:ab:29:2e:1d:5c:85:62:c4:ff:b6:bd:b3:
9b:12:f6:bb:d1:d9:5e:1a:02:2f:06:8b:f1:66:01:04:05:b0:
97:c0:67:24:40:24:c3:f7:2a:f9:d7:e5:f5:9f:3c:e2:1e:45:
44:3a:e8:fc
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgISAZYPPrSMelzme4X0Nxp6K8LMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMzcxODMzNDFhMmFiNmRmM2M1OWVjODI3ZWQ3MTIwMGI1
YTYyNDQwHhcNMjUwNDA3MDc1NDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTAxNzNjNDM5N2NjMjk1OTg5Yjg0ZjY4Yzk0YWNmNTY1MDI3MDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIoAJZvO2BRRb5BfwDQ6W96OlUWD
TH83wBOJSkZd+ypygeHynyZjw4fobu52sBHLAcC6UgFht/r9ZbpWd5ktJjB7mURZ
LkakuPzu6+ODOfciOmoQ6QMhshE72iThuZNlHP7S0dHaN8oncm6SHq2JWy+3UrPi
AU51Gc7aQIq/g1yfAL4dW9VM8sVVRHd4A0o0eJfSv26j+FYZoJaXX0yZIjBCSsx6
eXVX8VYYyVxcSPV26ZK9pPhgA5rJbhV3LXc+LzCkeu6HxinwewodKBbIIY6DROkO
hTOk0LJAryvQxbvMMVwnHEUVy3v2liidboc9x7PNG94Y8QoKpfd4NkEXbwIDAQAB
o4ICnTCCApkwHQYDVR0OBBYEFHUBc8Q5fMKVmJuE9oyUrPVlAnAGMB8GA1UdIwQY
MBaAFIs3GDNBoqtt88WeyCftcSALWmJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXpjWU0wR2lxMjN6eFo3SUotMXhJQXRhWWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8xYzc4ZTMtNjdkNi00ZTkwLWFlYjUt
MDg1MmNiMzUzMjkzLzEvZFFGenhEbDh3cFdZbTRUMmpKU3M5V1VDY0FZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi8xYzc4ZTMtNjdkNi00ZTkwLWFlYjUtMDg1MmNiMzUzMjkz
LzEvaXpjWU0wR2lxMjN6eFo3SUotMXhJQXRhWWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGyBggrBgEFBQcBBwEB/wSBojCBnzB4BAIAATByAwQBLYCS
AwQALYOzAwQBLYTuAwQBLYXuAwQBLYZSAwQBLYd2AwQBLYkKAwQBLYxaAwQALZmA
AwQAW+7LAwQAW+7PAwQCuWqwAwQAwciCAwQAwciGAwQAwciVAwQAwciYAwQAweNn
AwQAweNtAwQAweNyMCMEAgACMB0wEgMHACoGUEAAIQMHASoGUEAAJAMHAyoGUEAA
MDANBgkqhkiG9w0BAQsFAAOCAQEAX2M2446MIdEI/ziObyzzW/Ik/d1+IU57hYu0
LEgpKgpFrvePvITh5kH7ykNogDo8DUfKdWT7tbwu+hsU7xu7eDa/8pMhl5GTgfg2
HpIhybW+yMY+TYekMmF51LsJYv0frfW68Ed/ihzmiZQjaU/KkUBqvnH271C5yAV7
0cMnqtAmu+G2G2bbpDc3LfPFyhfmUPckTCyxikuneSh4Y0pVbw17YU93dvQyF7HU
EXkCzvSvbC01KnMYkOWvCqC4hxeKMbh7fZJ4kae3wcmoqykuHVyFYsT/tr2zmxL2
u9HZXhoCLwaL8WYBBAWwl8BnJEAkw/cq+dfl9Z884h5FRDro/A==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net