Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/aNefWas-v_WpGI-_669JeJcpGCE.roa
File: aNefWas-v_WpGI-_669JeJcpGCE.roa (raw, json)
Hash identifier: AyqK/NRp/xUAyry2Wae2nQWK8xpykIL1yZ7NXpMhO2U=
Subject key identifier: 68:D7:9F:59:AB:3E:BF:F5:A9:18:8F:BF:EB:AF:49:78:97:29:18:21
Certificate issuer: /CN=97de85c684fcff83ec4148ab5f6f67cd1504f93d
Certificate serial: 01941F8C72E1AFDCC7DAF083E511DB44EEC8
Authority key identifier: 97:DE:85:C6:84:FC:FF:83:EC:41:48:AB:5F:6F:67:CD:15:04:F9:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l96FxoT8_4PsQUirX29nzRUE-T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/aNefWas-v_WpGI-_669JeJcpGCE.roa
Signing time: Wed 01 Jan 2025 01:48:05 +0000
ROA not before: Wed 01 Jan 2025 01:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200698
IP address blocks: 45.156.248.0/22 maxlen: 22
45.156.248.0/24 maxlen: 24
45.156.249.0/24 maxlen: 24
45.156.250.0/24 maxlen: 24
45.156.251.0/24 maxlen: 24
185.99.0.0/22 maxlen: 22
185.99.0.0/24 maxlen: 24
185.99.1.0/24 maxlen: 24
185.99.2.0/24 maxlen: 24
185.99.3.0/24 maxlen: 24
185.164.32.0/22 maxlen: 22
185.164.32.0/24 maxlen: 24
185.164.33.0/24 maxlen: 24
185.164.34.0/24 maxlen: 24
185.164.35.0/24 maxlen: 24
185.212.108.0/22 maxlen: 22
185.212.108.0/24 maxlen: 24
185.212.109.0/24 maxlen: 24
185.212.110.0/24 maxlen: 24
185.212.111.0/24 maxlen: 24
2a00:8620::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:72:e1:af:dc:c7:da:f0:83:e5:11:db:44:ee:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97de85c684fcff83ec4148ab5f6f67cd1504f93d
Validity
Not Before: Jan 1 01:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68d79f59ab3ebff5a9188fbfebaf497897291821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cb:61:35:0f:f7:db:5f:37:00:3a:f0:9b:80:
bc:8b:c1:61:69:56:7c:ee:e9:c0:4b:4c:40:ff:70:
04:a5:59:59:a4:cd:7e:40:c4:a5:57:64:a0:10:9f:
27:56:93:5d:ae:db:be:c5:cc:47:f2:3f:35:27:1a:
7b:4a:47:b3:87:ff:bf:bb:11:7e:c8:3c:c4:f7:20:
33:b5:ed:64:68:9a:1d:22:37:04:8f:13:8a:6a:ed:
10:aa:75:88:ba:cf:ca:f5:d8:66:a3:2e:8d:49:cd:
87:5d:b1:39:27:ef:2d:3f:07:26:9f:eb:8c:43:9c:
49:ea:06:b0:3d:b0:09:e1:88:2d:85:d9:78:95:27:
fc:1d:1a:4c:69:54:fe:45:a8:c8:74:94:a4:d4:39:
61:10:2a:b4:ed:53:9a:f1:85:15:d3:c9:62:ee:9b:
ed:df:b7:8e:87:c7:47:ac:94:e3:ea:f4:cc:bf:77:
32:bf:36:66:c8:f6:7e:e0:6e:a6:4b:49:db:d6:00:
d1:75:8e:42:2a:62:58:f4:88:22:e0:e6:44:4f:5c:
d0:89:f6:29:41:28:30:2b:79:97:76:4c:68:78:1a:
fe:74:5c:c7:b7:9d:78:c1:3b:6d:eb:42:f1:2b:7e:
5b:f6:2e:52:56:b7:36:72:d4:68:d6:23:9f:c3:65:
e4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D7:9F:59:AB:3E:BF:F5:A9:18:8F:BF:EB:AF:49:78:97:29:18:21
X509v3 Authority Key Identifier:
keyid:97:DE:85:C6:84:FC:FF:83:EC:41:48:AB:5F:6F:67:CD:15:04:F9:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l96FxoT8_4PsQUirX29nzRUE-T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/aNefWas-v_WpGI-_669JeJcpGCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/db4526-e0ef-4e22-8ff9-5030d0ae6ebc/1/l96FxoT8_4PsQUirX29nzRUE-T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.248.0/22
185.99.0.0/22
185.164.32.0/22
185.212.108.0/22
IPv6:
2a00:8620::/32
Signature Algorithm: sha256WithRSAEncryption
5c:33:36:ad:17:c2:c6:f3:41:55:d6:81:ac:18:6c:90:c4:a0:
0d:0a:3e:5c:98:0e:24:0c:ed:2c:72:dc:37:c5:bc:17:f8:fb:
df:d1:79:d0:e7:cc:6c:cc:1d:46:ba:fe:d5:55:d6:2f:2b:dc:
82:1c:ff:3b:d1:66:7f:3e:94:1f:97:71:9e:a7:de:80:72:6d:
f0:79:b9:d8:c0:82:ee:ff:4b:68:02:e6:9a:a8:80:16:f8:f2:
8d:ef:9b:53:f3:cc:91:e3:60:df:9a:dd:fa:27:5b:c4:1d:16:
64:2c:55:f0:db:47:4c:dd:3c:ea:37:73:76:c8:1e:7f:84:c2:
7c:af:4c:ed:3a:a1:18:9c:d6:fc:bd:19:cd:e0:68:c9:15:bb:
e9:6e:70:75:9c:98:7e:e4:8d:74:66:2c:90:2f:bb:fb:aa:22:
dc:48:ac:3a:34:4c:bf:11:b1:f1:4b:02:24:34:2d:e5:07:d8:
e2:b5:90:17:08:70:0f:b3:be:ce:db:07:e3:bf:e8:c7:e4:02:
ea:30:84:0c:b6:4d:ae:60:f0:56:fc:c9:c4:74:bc:e1:70:ad:
cc:66:59:d7:bb:96:30:f4:22:d6:9d:5c:0b:9f:e3:c4:73:68:
50:04:44:3c:32:c9:3c:7a:b5:c8:2a:e1:74:70:2d:18:55:80:
10:87:61:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net