Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/C8L1z84_2r_lzc2Lk6eIdrAoayw.roa
File: C8L1z84_2r_lzc2Lk6eIdrAoayw.roa (raw, json)
Hash identifier: phPZynXPFJJG35B8r3oO6DnbXPe6XC6xJ8y/JrqkIqE=
Subject key identifier: 0B:C2:F5:CF:CE:3F:DA:BF:E5:CD:CD:8B:93:A7:88:76:B0:28:6B:2C
Certificate issuer: /CN=c8acf59abd4abbfbf830a060225a96a2179a2694
Certificate serial: 01942826CFD51160CDBF175D6B997CD9DDF1
Authority key identifier: C8:AC:F5:9A:BD:4A:BB:FB:F8:30:A0:60:22:5A:96:A2:17:9A:26:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKz1mr1Ku_v4MKBgIlqWoheaJpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/C8L1z84_2r_lzc2Lk6eIdrAoayw.roa
Signing time: Thu 02 Jan 2025 17:53:39 +0000
ROA not before: Thu 02 Jan 2025 17:53:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39405
IP address blocks: 45.153.92.0/22 maxlen: 24
93.93.40.0/21 maxlen: 24
141.0.200.0/21 maxlen: 24
185.116.128.0/22 maxlen: 24
185.117.16.0/22 maxlen: 24
185.224.32.0/24 maxlen: 24
185.224.33.0/24 maxlen: 24
185.224.34.0/24 maxlen: 24
185.244.72.0/22 maxlen: 24
185.246.24.0/24 maxlen: 24
185.246.25.0/24 maxlen: 24
185.247.86.0/23 maxlen: 24
185.249.184.0/22 maxlen: 24
185.253.92.0/22 maxlen: 24
193.84.73.0/24 maxlen: 24
2a01:6600::/32 maxlen: 32
2a0c:4400::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:cf:d5:11:60:cd:bf:17:5d:6b:99:7c:d9:dd:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8acf59abd4abbfbf830a060225a96a2179a2694
Validity
Not Before: Jan 2 17:53:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0bc2f5cfce3fdabfe5cdcd8b93a78876b0286b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:b5:c0:41:1b:3c:53:f3:b9:d4:1b:28:a8:
0e:d1:56:17:cb:01:77:52:b8:4e:75:c8:c8:d5:6f:
48:3a:b5:a5:7f:39:f5:6b:68:36:90:17:8a:a8:b1:
88:2b:30:f2:45:57:a0:1f:a0:6e:47:78:f7:30:7d:
16:6e:f1:4c:47:af:9d:21:bc:a9:b5:04:1b:4b:e5:
01:84:12:5f:ff:c6:7a:e7:49:67:79:d1:78:f1:bd:
de:f2:9b:c9:69:a0:55:9d:de:55:63:94:8a:5c:2a:
30:92:25:55:09:d0:88:89:f9:26:a2:ca:e0:81:ec:
75:9b:b6:97:63:4d:a2:44:04:a1:bd:88:db:b9:5f:
30:eb:9f:66:df:4d:fa:75:30:20:7c:14:da:33:16:
e9:0e:d7:7b:7b:3b:a7:30:67:3e:2b:95:17:e3:83:
d0:ee:86:7b:49:4a:30:9e:ed:26:33:66:5b:37:0f:
df:b6:12:63:ab:60:b0:fb:6e:d1:62:4d:77:df:c6:
38:25:a9:a1:36:9b:5f:54:0c:c4:f2:59:2c:2e:a3:
8e:ea:8e:4f:09:26:d6:29:18:7c:78:bf:a0:32:2b:
d3:70:7c:e2:eb:4b:3d:8e:e9:18:0e:e7:37:87:d7:
fd:fb:30:7a:1a:0d:b1:3b:52:fa:bb:bc:ed:e1:a2:
23:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C2:F5:CF:CE:3F:DA:BF:E5:CD:CD:8B:93:A7:88:76:B0:28:6B:2C
X509v3 Authority Key Identifier:
keyid:C8:AC:F5:9A:BD:4A:BB:FB:F8:30:A0:60:22:5A:96:A2:17:9A:26:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKz1mr1Ku_v4MKBgIlqWoheaJpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/C8L1z84_2r_lzc2Lk6eIdrAoayw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/yKz1mr1Ku_v4MKBgIlqWoheaJpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.92.0/22
93.93.40.0/21
141.0.200.0/21
185.116.128.0/22
185.117.16.0/22
185.224.32.0-185.224.34.255
185.244.72.0/22
185.246.24.0/23
185.247.86.0/23
185.249.184.0/22
185.253.92.0/22
193.84.73.0/24
IPv6:
2a01:6600::/32
2a0c:4400::/32
Signature Algorithm: sha256WithRSAEncryption
33:b4:23:8a:6b:50:b5:7b:2d:85:1d:e7:65:18:5c:f6:a0:49:
83:38:60:bb:f4:5e:a8:fc:17:ba:bd:cd:19:70:c2:5d:37:21:
14:e7:5c:1b:95:b8:c4:aa:70:7a:7b:a0:42:ec:c6:29:b1:d9:
aa:03:9b:08:0b:61:fd:16:fa:7d:e8:6a:6d:f1:18:b4:2c:65:
b4:10:44:6e:88:ef:9c:0c:5f:68:fe:6d:19:2f:c4:a0:8d:33:
b0:c8:ae:6a:62:96:21:d7:0d:f5:0a:26:80:f5:d0:e2:a4:16:
b2:92:2f:7a:11:09:e4:00:48:f5:8a:13:c1:ed:58:0b:24:56:
29:e6:ed:2e:23:41:01:b3:db:95:b2:6a:d5:20:02:cb:67:67:
f4:4a:be:b0:8c:ea:b9:6c:dd:ab:84:fd:9e:50:4d:7e:5a:ea:
b4:0d:10:e4:75:b0:60:50:99:ed:a4:dd:cc:a2:3f:b4:dd:13:
b9:b1:17:df:89:2d:6a:03:86:4a:82:a2:fe:f2:33:64:d1:ae:
99:7f:92:2f:e1:77:94:1e:c0:76:08:99:61:40:16:5d:bf:36:
60:65:45:12:8a:a6:22:44:13:91:93:cd:db:03:a4:d2:c3:2e:
5c:35:a1:d8:aa:3a:55:58:04:28:80:f1:dd:40:34:46:d2:a8:
f9:4e:d7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:43 2025 by rpki-client on console.sobornost.net