Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/90qeQZqwuh0oi-oH9Ho2Hr4JeqU.roa
File: 90qeQZqwuh0oi-oH9Ho2Hr4JeqU.roa (raw, json)
Hash identifier: yAfSfLIB/wlDkdhF0bN4I000INgGh/D9HhTP3okCxDk=
Subject key identifier: F7:4A:9E:41:9A:B0:BA:1D:28:8B:EA:07:F4:7A:36:1E:BE:09:7A:A5
Certificate issuer: /CN=d44820729a0f9abfb6cac3b5f96c27198d76391b
Certificate serial: 01942067F522296B5C4BFE898BC8F44C1C59
Authority key identifier: D4:48:20:72:9A:0F:9A:BF:B6:CA:C3:B5:F9:6C:27:19:8D:76:39:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EggcpoPmr-2ysO1-WwnGY12ORs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/90qeQZqwuh0oi-oH9Ho2Hr4JeqU.roa
Signing time: Wed 01 Jan 2025 05:47:51 +0000
ROA not before: Wed 01 Jan 2025 05:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42228
IP address blocks: 45.137.48.0/22 maxlen: 22
77.108.128.0/18 maxlen: 18
77.108.154.0/24 maxlen: 24
77.108.158.0/24 maxlen: 24
77.108.160.0/24 maxlen: 24
2a00:6300::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f5:22:29:6b:5c:4b:fe:89:8b:c8:f4:4c:1c:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44820729a0f9abfb6cac3b5f96c27198d76391b
Validity
Not Before: Jan 1 05:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f74a9e419ab0ba1d288bea07f47a361ebe097aa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:51:b9:79:4e:c8:9d:01:70:e9:55:57:16:
7a:20:ae:a7:6d:6f:af:bf:e3:c3:a5:ae:bc:83:4f:
b6:72:9d:1f:1f:f8:86:7f:5f:cc:91:0d:3b:dc:68:
85:fe:d5:28:0c:46:a2:a4:ae:bc:bf:7a:67:8c:3d:
ba:f4:e8:24:99:ad:8a:14:90:79:b7:79:db:8a:a9:
d8:c7:79:7c:ab:b4:9d:4c:ba:82:13:48:da:2c:e9:
71:1e:45:33:53:00:22:e6:fe:b6:11:2d:43:1a:0f:
2a:4a:33:2c:54:b3:01:42:93:0c:5f:c7:9c:df:5e:
98:05:9b:ef:97:33:58:4f:62:b6:2e:31:bf:78:c2:
12:d1:f6:ee:2a:9f:69:c8:a9:aa:3c:13:a5:7b:72:
46:b0:63:d9:4a:fd:02:5b:75:78:2b:03:f9:b0:c7:
63:0d:d8:4a:2c:d0:31:41:6f:be:ef:d8:bc:c8:16:
40:a4:a3:b7:ce:b7:2f:3f:67:d8:ae:7f:d3:0e:12:
5d:f5:6f:0e:5a:14:dc:ba:3b:8d:fd:b3:34:45:b3:
36:84:40:af:61:f5:2d:21:e6:df:17:fe:15:0d:cc:
af:a2:f9:81:ae:ba:e8:db:ce:7f:61:87:c0:e3:97:
f7:84:1e:76:58:da:a7:64:d4:04:23:e0:23:01:d4:
2a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:4A:9E:41:9A:B0:BA:1D:28:8B:EA:07:F4:7A:36:1E:BE:09:7A:A5
X509v3 Authority Key Identifier:
keyid:D4:48:20:72:9A:0F:9A:BF:B6:CA:C3:B5:F9:6C:27:19:8D:76:39:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EggcpoPmr-2ysO1-WwnGY12ORs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/90qeQZqwuh0oi-oH9Ho2Hr4JeqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/1EggcpoPmr-2ysO1-WwnGY12ORs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.48.0/22
77.108.128.0/18
IPv6:
2a00:6300::/32
Signature Algorithm: sha256WithRSAEncryption
44:bb:4c:0a:a6:75:c2:8e:44:08:44:29:5b:b6:ed:ed:79:fb:
e2:e0:4f:e6:95:1d:21:bf:3b:f0:c9:be:2d:2f:6f:2a:68:a7:
67:01:07:74:e9:70:6d:8d:4b:90:00:c1:3c:b2:1b:2d:62:e8:
2d:91:93:65:94:78:21:d9:aa:69:d8:d8:29:07:c0:9f:05:98:
73:b6:8b:02:20:ad:bb:04:90:7b:37:d3:3e:2f:31:64:2c:3d:
c0:d3:a9:77:30:eb:68:fb:1d:5b:dd:94:cf:19:a2:69:c5:f2:
39:ee:e2:bd:93:27:12:c0:3b:b0:94:da:22:ef:e9:2f:d9:b9:
f8:56:cb:ed:be:0c:df:bb:ed:cc:ea:c7:60:5a:6a:6c:93:60:
79:83:c5:14:e6:c6:db:fe:a2:8e:ef:14:b5:80:17:6a:1c:5a:
1b:e5:ba:c4:ea:ae:99:dd:bc:52:52:1f:8c:e4:34:8e:a6:f3:
b0:98:3e:fb:a9:4e:b2:88:1a:f5:24:d4:42:9b:f1:c6:97:6a:
c7:da:56:3b:30:a1:86:0c:ec:01:8a:f8:45:dc:e8:b1:18:78:
64:ff:47:f6:6e:36:f1:d3:37:f1:c9:e5:d6:32:24:f2:cd:1a:
7e:26:bc:da:54:a0:c8:e9:e8:34:e5:a9:c0:99:b8:56:8c:2a:
9a:cf:98:c4
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZQgZ/UiKWtcS/6Ji8j0TBxZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NDgyMDcyOWEwZjlhYmZiNmNhYzNiNWY5NmMyNzE5OGQ3
NjM5MWIwHhcNMjUwMTAxMDU0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzRhOWU0MTlhYjBiYTFkMjg4YmVhMDdmNDdhMzYxZWJlMDk3YWE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdpRuXlOyJ0BcOlVVxZ6IK6nbW+v
v+PDpa68g0+2cp0fH/iGf1/MkQ073GiF/tUoDEaipK68v3pnjD269Ogkma2KFJB5
t3nbiqnYx3l8q7SdTLqCE0jaLOlxHkUzUwAi5v62ES1DGg8qSjMsVLMBQpMMX8ec
316YBZvvlzNYT2K2LjG/eMIS0fbuKp9pyKmqPBOle3JGsGPZSv0CW3V4KwP5sMdj
DdhKLNAxQW++79i8yBZApKO3zrcvP2fYrn/TDhJd9W8OWhTcujuN/bM0RbM2hECv
YfUtIebfF/4VDcyvovmBrrro285/YYfA45f3hB52WNqnZNQEI+AjAdQqOwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFPdKnkGasLodKIvqB/R6Nh6+CXqlMB8GA1UdIwQY
MBaAFNRIIHKaD5q/tsrDtflsJxmNdjkbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUVnZ2Nwb1Btci0yeXNPMS1Xd25HWTEyT1JzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80YmE0NmYtMzQ2OS00MmIwLTliOWUt
NjE5NDkzNTZhOWEwLzEvOTBxZVFacXd1aDBvaS1vSDlIbzJIcjRKZXFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi80YmE0NmYtMzQ2OS00MmIwLTliOWUtNjE5NDkzNTZhOWEw
LzEvMUVnZ2Nwb1Btci0yeXNPMS1Xd25HWTEyT1JzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLYkwAwQG
TWyAMA0EAgACMAcDBQAqAGMAMA0GCSqGSIb3DQEBCwUAA4IBAQBEu0wKpnXCjkQI
RClbtu3tefvi4E/mlR0hvzvwyb4tL28qaKdnAQd06XBtjUuQAME8shstYugtkZNl
lHgh2app2NgpB8CfBZhztosCIK27BJB7N9M+LzFkLD3A06l3MOto+x1b3ZTPGaJp
xfI57uK9kycSwDuwlNoi7+kv2bn4Vsvtvgzfu+3M6sdgWmpsk2B5g8UU5sbb/qKO
7xS1gBdqHFob5brE6q6Z3bxSUh+M5DSOpvOwmD77qU6yiBr1JNRCm/HGl2rH2lY7
MKGGDOwBivhF3OixGHhk/0f2bjbx0zfxyeXWMiTyzRp+JrzaVKDI6eg05anAmbhW
jCqaz5jE
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:40 2025 by rpki-client on console.sobornost.net