Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/pRiOuP5ZVMbih8_UbkXq1OLRH1c.roa
File: pRiOuP5ZVMbih8_UbkXq1OLRH1c.roa (raw, json)
Hash identifier: TjkUGx8VVF7JIz25EEx+I/z8EyX0AiRRScQg07c6hKc=
Subject key identifier: A5:18:8E:B8:FE:59:54:C6:E2:87:CF:D4:6E:45:EA:D4:E2:D1:1F:57
Certificate issuer: /CN=2e481909559480d248490d8e1d71c3c093b05fe5
Certificate serial: 019617B2BD69AC97250B3FCA82B49383A552
Authority key identifier: 2E:48:19:09:55:94:80:D2:48:49:0D:8E:1D:71:C3:C0:93:B0:5F:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LkgZCVWUgNJISQ2OHXHDwJOwX-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/pRiOuP5ZVMbih8_UbkXq1OLRH1c.roa
Signing time: Tue 08 Apr 2025 23:18:31 +0000
ROA not before: Tue 08 Apr 2025 23:18:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201714
IP address blocks: 45.85.100.0/24 maxlen: 24
45.85.101.0/24 maxlen: 24
185.66.4.0/22 maxlen: 24
185.66.4.0/24 maxlen: 24
185.66.5.0/24 maxlen: 24
185.66.6.0/24 maxlen: 24
185.66.7.0/24 maxlen: 24
2a03:1ea0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:17:b2:bd:69:ac:97:25:0b:3f:ca:82:b4:93:83:a5:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e481909559480d248490d8e1d71c3c093b05fe5
Validity
Not Before: Apr 8 23:18:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a5188eb8fe5954c6e287cfd46e45ead4e2d11f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:8d:4f:9b:70:1a:00:8f:73:4c:8e:ab:f3:
1f:d1:6b:9a:c7:2e:bf:17:c4:a5:07:5d:29:70:e9:
91:75:36:73:0b:50:d7:cc:bb:76:11:fd:a2:40:bd:
13:db:10:5a:be:03:4d:4d:6d:f3:7a:7e:ef:33:f9:
31:14:92:88:7d:bd:b3:29:96:4a:8c:aa:e3:27:b8:
f5:87:4a:b1:c5:eb:43:f1:4b:d3:1f:84:32:b0:e6:
c9:2d:27:6d:16:b3:02:cb:4f:a9:d0:5e:51:89:23:
19:5e:b5:7e:af:06:9b:31:89:c3:b5:97:2d:35:20:
e4:4c:ec:03:6c:6e:22:dd:4d:0f:5c:cc:b5:f9:f7:
97:26:43:78:37:fa:35:da:71:fe:7c:c1:70:c1:8f:
93:19:84:fa:9b:2a:21:0d:ff:f7:e8:55:d3:8c:e9:
12:20:dd:e2:7a:eb:a5:d7:18:5c:9d:78:14:ee:14:
e6:48:c8:c5:24:96:29:d9:fe:67:02:e4:5b:1d:a7:
66:7c:bf:19:8e:31:e7:12:5e:f8:76:52:f2:f8:90:
cb:89:68:31:69:5c:5e:94:b9:c6:d2:fa:0b:ac:94:
8b:8e:7a:36:b9:27:41:d5:7c:5d:19:a2:1f:f8:f9:
80:65:3d:bc:ee:4b:f9:dd:02:d7:57:29:b1:33:72:
e6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:18:8E:B8:FE:59:54:C6:E2:87:CF:D4:6E:45:EA:D4:E2:D1:1F:57
X509v3 Authority Key Identifier:
keyid:2E:48:19:09:55:94:80:D2:48:49:0D:8E:1D:71:C3:C0:93:B0:5F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LkgZCVWUgNJISQ2OHXHDwJOwX-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/pRiOuP5ZVMbih8_UbkXq1OLRH1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/LkgZCVWUgNJISQ2OHXHDwJOwX-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.100.0/23
185.66.4.0/22
IPv6:
2a03:1ea0::/32
Signature Algorithm: sha256WithRSAEncryption
a0:33:7f:56:1c:4f:68:fe:d5:0e:42:ea:08:6f:06:7b:2c:f5:
3c:d1:b7:a2:e2:85:da:15:45:b7:de:ca:79:9a:74:84:49:51:
b2:cf:1c:83:b1:8a:6e:c4:44:c7:5e:9f:5e:d5:ae:12:f5:de:
44:05:18:ca:89:39:f5:5a:43:cf:eb:0a:45:2b:04:17:4b:b0:
8c:24:0b:ee:cb:3f:fc:43:aa:76:f9:52:41:dc:d0:ac:0e:dd:
75:c9:45:52:8d:b5:fd:7e:fe:c3:16:c8:78:8f:c5:40:93:63:
8f:93:cf:26:f2:30:cf:b1:63:76:e3:7f:41:40:04:cb:7d:9a:
f3:85:6d:72:63:6a:82:ea:11:46:2a:9d:dc:a2:85:76:2e:00:
28:66:52:a2:ad:66:38:29:4c:87:c7:89:3e:23:4c:42:a4:ce:
09:1e:56:d1:aa:45:1b:2d:76:72:5c:d3:c5:61:d8:bc:f1:50:
d1:52:1f:a8:13:b0:70:4e:cb:69:b3:76:1f:bf:92:fd:dc:b0:
b4:d4:0c:af:af:9b:1d:55:f9:7b:23:c4:c8:18:a4:77:51:e1:
8d:10:01:b5:36:66:e6:1f:60:e9:5d:1c:cc:78:6a:80:b3:55:
33:30:9e:42:e0:94:2f:aa:52:2a:49:35:90:03:30:55:aa:4f:
36:e0:0f:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:31 2025 by rpki-client on console.sobornost.net