Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/UzSEdJBP2Gqr1z-0qx79WTsLauw.roa
File: UzSEdJBP2Gqr1z-0qx79WTsLauw.roa (raw, json)
Hash identifier: vl1ow4mOIeKlrrAdbJAJQJmVxWS6mp39VC/9XaCz00U=
Subject key identifier: 53:34:84:74:90:4F:D8:6A:AB:D7:3F:B4:AB:1E:FD:59:3B:0B:6A:EC
Certificate issuer: /CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Certificate serial: 01956FE7D7AEC928C59AB55C92147DFAB36A
Authority key identifier: 84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/UzSEdJBP2Gqr1z-0qx79WTsLauw.roa
Signing time: Fri 07 Mar 2025 09:20:19 +0000
ROA not before: Fri 07 Mar 2025 09:20:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62000
IP address blocks: 45.147.96.0/23 maxlen: 24
45.147.98.0/24 maxlen: 24
45.147.99.0/24 maxlen: 24
45.155.168.0/22 maxlen: 24
45.155.168.0/24 maxlen: 24
185.157.244.0/24 maxlen: 24
185.157.245.0/24 maxlen: 24
185.216.24.0/24 maxlen: 24
185.216.25.0/24 maxlen: 24
185.216.26.0/24 maxlen: 24
185.216.27.0/24 maxlen: 24
193.168.144.0/24 maxlen: 24
193.168.145.0/24 maxlen: 24
193.168.146.0/24 maxlen: 24
193.168.147.0/24 maxlen: 24
2a07:abc0::/29 maxlen: 64
2a09:6382::/32 maxlen: 64
2a09:6383::/32 maxlen: 64
2a09:6384::/32 maxlen: 64
2a09:6385::/32 maxlen: 64
2a09:6386::/32 maxlen: 32
2a0b:b140::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6f:e7:d7:ae:c9:28:c5:9a:b5:5c:92:14:7d:fa:b3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Validity
Not Before: Mar 7 09:20:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53348474904fd86aabd73fb4ab1efd593b0b6aec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a7:28:8d:76:19:5b:fe:75:4e:41:92:24:b4:
fa:34:15:f5:1c:ea:a7:b3:8b:08:85:38:03:d8:94:
ce:b1:04:ea:e9:d7:ab:6d:05:55:a1:c2:a5:1b:c0:
14:ec:27:7f:c9:a1:30:6c:a8:e6:8e:d0:c0:d5:99:
92:ae:f6:21:4e:43:bf:f9:12:d6:92:4e:a2:a3:2d:
95:cf:11:7f:5a:6e:dd:87:21:08:db:c3:29:58:71:
d5:2b:92:6e:f0:08:19:f6:9a:4b:ae:91:11:b5:46:
7b:4c:64:54:30:2c:25:63:d4:df:40:f2:71:4b:20:
0f:c1:a3:46:75:36:66:09:77:10:30:a2:d0:7c:6b:
c5:f7:36:30:f1:f8:a8:14:18:7a:7d:8c:82:53:9b:
6e:0d:8d:41:d3:6c:ce:bf:2d:81:ad:3f:5f:3e:01:
fb:e1:ed:25:20:8d:b4:df:9f:3e:aa:2f:dd:1f:de:
13:20:e8:9e:af:e5:9c:93:ab:03:a3:9b:4d:aa:7d:
50:46:20:64:38:02:eb:96:34:bf:ab:71:7c:b8:2e:
46:2e:e9:3e:d1:ae:ec:e4:87:4f:b4:f9:38:b6:42:
c8:30:67:f5:a1:47:32:17:35:37:c7:87:9c:2a:98:
37:86:ae:60:9f:ff:1f:7b:ab:db:83:17:91:6d:1d:
d3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:34:84:74:90:4F:D8:6A:AB:D7:3F:B4:AB:1E:FD:59:3B:0B:6A:EC
X509v3 Authority Key Identifier:
keyid:84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/UzSEdJBP2Gqr1z-0qx79WTsLauw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.96.0/22
45.155.168.0/22
185.157.244.0/23
185.216.24.0/22
193.168.144.0/22
IPv6:
2a07:abc0::/29
2a09:6382::-2a09:6386:ffff:ffff:ffff:ffff:ffff:ffff
2a0b:b140::/29
Signature Algorithm: sha256WithRSAEncryption
6d:b5:e1:4f:f1:3e:59:64:7a:4c:d0:41:92:66:89:91:62:2b:
fe:a3:71:2d:c9:13:87:d6:5a:b9:72:7c:ae:94:09:cd:8e:95:
07:02:9a:79:66:12:1f:43:7d:4b:b0:f7:eb:1c:45:9e:c6:08:
18:cf:41:c9:51:63:96:b1:60:52:dc:e9:15:e3:db:45:d7:2a:
6d:21:e6:ec:e5:be:c4:ff:57:fc:02:ed:2e:b7:fd:1c:6c:f5:
68:3b:5e:bf:2a:4b:d6:c0:6f:f7:e8:b3:ef:58:15:ec:10:1e:
26:bb:a8:30:12:fd:bb:c7:c4:61:c8:fb:18:c5:2b:a5:be:8e:
7d:d3:ae:57:2d:e1:5e:e1:2b:e6:0e:20:85:83:fd:00:6f:66:
ba:29:f6:53:b8:a4:a2:0f:29:dc:02:19:7b:a2:c5:ee:b2:56:
bc:1b:fc:91:75:ef:c0:62:c2:f0:14:37:e5:c7:01:b4:5e:19:
0f:8e:fa:23:d4:34:d7:dd:8b:db:18:bd:c8:1e:6f:d8:14:5a:
ed:33:87:01:b4:84:cc:8f:d4:47:f1:7c:8f:81:03:e2:81:bf:
c9:58:22:7e:bd:62:c6:0f:05:fe:ed:bf:1e:8e:aa:08:15:92:
05:72:6f:6e:bf:69:ed:76:53:07:4b:fa:e0:0d:39:e9:85:0e:
01:50:75:79
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net