Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/TJQ4iHjsEa_CDFuqEaOqRs6tWiM.roa
File: TJQ4iHjsEa_CDFuqEaOqRs6tWiM.roa (raw, json)
Hash identifier: 5u5yG9F1dj6okhQFxjTOrTdhi+XMd7VfKkkCnAOAbSo=
Subject key identifier: 4C:94:38:88:78:EC:11:AF:C2:0C:5B:AA:11:A3:AA:46:CE:AD:5A:23
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 0194214428B7E20CCF3BC91A0D557092D219
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/TJQ4iHjsEa_CDFuqEaOqRs6tWiM.roa
Signing time: Wed 01 Jan 2025 09:48:22 +0000
ROA not before: Wed 01 Jan 2025 09:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206316
IP address blocks: 5.183.96.0/22 maxlen: 22
5.183.96.0/24 maxlen: 24
5.183.97.0/24 maxlen: 24
5.183.98.0/24 maxlen: 24
5.183.99.0/24 maxlen: 24
185.219.128.0/22 maxlen: 22
185.219.128.0/24 maxlen: 24
185.219.129.0/24 maxlen: 24
185.219.130.0/24 maxlen: 24
185.219.131.0/24 maxlen: 24
195.238.248.0/24 maxlen: 24
195.238.252.0/24 maxlen: 24
195.242.177.0/24 maxlen: 24
195.242.178.0/24 maxlen: 24
2a0b:e640::/29 maxlen: 29
2a0e:bc00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:28:b7:e2:0c:cf:3b:c9:1a:0d:55:70:92:d2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Jan 1 09:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c94388878ec11afc20c5baa11a3aa46cead5a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:bf:a4:5c:b0:7a:37:2b:2b:d3:e2:58:e6:
7c:b6:c6:96:a3:c2:c0:24:aa:09:c7:38:aa:9c:2c:
88:3c:1f:c4:3a:54:ce:3a:80:6f:88:c0:8a:6e:07:
17:fe:24:e6:88:f3:f9:4a:ec:a8:f2:ff:8c:15:5c:
d0:00:24:1a:f8:d2:ea:66:a6:8f:79:b7:63:3b:c5:
c8:e9:83:01:74:1a:0a:3f:19:bd:09:7b:c9:6f:59:
e1:81:de:2f:20:c3:78:2e:0c:70:80:36:b5:1c:67:
dc:53:10:7e:8c:d3:1e:b5:eb:33:61:7b:dc:ef:c8:
da:83:9b:f7:20:ff:f9:25:66:47:7d:bf:a6:c8:21:
08:9a:77:c9:ac:57:9f:bf:db:f9:e7:5d:9a:9d:d5:
7e:5e:3a:dc:9e:55:fc:dc:79:a2:62:db:9e:f3:2b:
6a:c5:78:08:ee:76:64:a7:73:09:d2:90:03:5a:bb:
e3:9f:81:28:68:11:74:02:5f:b0:ba:dd:f7:25:76:
95:25:ef:4e:3d:a8:24:ad:e5:24:cd:45:54:56:44:
92:29:06:04:f5:0a:d4:c3:8c:3f:a2:2f:8b:8d:b8:
a1:1e:43:58:22:b5:9e:23:bc:18:6b:30:8d:5c:60:
8c:a5:88:a8:83:cd:01:0f:2e:15:67:ab:f9:e9:97:
3f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:94:38:88:78:EC:11:AF:C2:0C:5B:AA:11:A3:AA:46:CE:AD:5A:23
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/TJQ4iHjsEa_CDFuqEaOqRs6tWiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.96.0/22
185.219.128.0/22
195.238.248.0/24
195.238.252.0/24
195.242.177.0-195.242.178.255
IPv6:
2a0b:e640::/29
2a0e:bc00::/29
Signature Algorithm: sha256WithRSAEncryption
18:e1:f0:ab:d9:09:a3:a8:5d:6c:20:3a:56:45:69:89:4d:34:
1f:f5:46:12:10:fb:4a:82:dc:9f:1c:0d:bc:41:f0:b1:b1:42:
89:d7:0f:14:cd:65:ed:96:52:d2:03:73:b4:84:87:06:c2:7c:
fb:35:5a:76:e7:37:f4:56:48:c7:54:e8:e2:67:0e:e4:de:aa:
de:e4:20:7d:1a:34:73:1e:ca:0e:50:74:a3:19:4e:41:7d:52:
78:41:f7:53:1d:09:05:17:62:8b:b2:55:34:00:df:01:c4:dd:
5c:e5:a5:c2:0d:d2:db:ee:9c:90:6f:05:a0:0f:a7:3c:b0:40:
e2:43:e4:88:35:d7:a2:86:0d:16:49:27:c7:eb:1d:1a:f2:ac:
5d:50:a6:73:79:d1:d2:70:cf:67:cd:e3:4b:f6:a9:6c:c8:fa:
d2:e3:59:25:e7:b8:2a:31:19:45:48:a1:53:a2:79:f5:d7:21:
4c:bd:56:e1:2c:e1:54:ea:a0:d3:55:c9:04:a5:4d:29:c3:c6:
9e:e8:8b:30:d5:59:49:08:b7:95:46:01:80:66:5a:c6:4c:27:
4e:d2:d4:32:fb:dc:dc:ba:07:06:ac:11:bc:c6:96:fc:94:ce:
12:59:6a:a2:00:77:7d:88:8f:4d:2a:7e:ee:fc:61:b4:55:87:
4c:0f:f2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:44 2025 by rpki-client on console.sobornost.net