Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/0PT-ILFFLKSzwhL-HKBxr2hyVqo.roa
File: 0PT-ILFFLKSzwhL-HKBxr2hyVqo.roa (raw, json)
Hash identifier: aJfrS13eNVnrgwf1Jc6Bg2QRaXkPk+nfLMh3bc7wlBk=
Subject key identifier: D0:F4:FE:20:B1:45:2C:A4:B3:C2:12:FE:1C:A0:71:AF:68:72:56:AA
Certificate issuer: /CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Certificate serial: 0193AF3F5198309182CCF187D879B83B582A
Authority key identifier: 43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/0PT-ILFFLKSzwhL-HKBxr2hyVqo.roa
Signing time: Tue 10 Dec 2024 06:26:22 +0000
ROA not before: Tue 10 Dec 2024 06:26:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48359
IP address blocks: 45.155.192.0/24 maxlen: 24
45.155.193.0/24 maxlen: 24
45.155.194.0/24 maxlen: 24
45.155.195.0/24 maxlen: 24
91.213.157.0/24 maxlen: 24
91.213.167.0/24 maxlen: 24
91.213.172.0/24 maxlen: 24
185.47.48.0/23 maxlen: 23
185.47.48.0/24 maxlen: 24
185.47.49.0/24 maxlen: 24
185.47.50.0/23 maxlen: 23
185.47.50.0/24 maxlen: 24
185.47.51.0/24 maxlen: 24
185.82.64.0/22 maxlen: 22
185.82.64.0/24 maxlen: 24
185.82.65.0/24 maxlen: 24
185.82.66.0/24 maxlen: 24
185.82.67.0/24 maxlen: 24
185.121.56.0/22 maxlen: 22
185.121.56.0/24 maxlen: 24
185.121.57.0/24 maxlen: 24
185.121.58.0/24 maxlen: 24
185.121.59.0/24 maxlen: 24
185.125.20.0/24 maxlen: 24
185.125.21.0/24 maxlen: 24
185.125.22.0/24 maxlen: 24
185.125.23.0/24 maxlen: 24
185.137.60.0/22 maxlen: 24
185.137.60.0/24 maxlen: 24
185.137.61.0/24 maxlen: 24
185.137.62.0/24 maxlen: 24
185.137.63.0/24 maxlen: 24
185.142.92.0/22 maxlen: 22
185.142.92.0/24 maxlen: 24
185.142.93.0/24 maxlen: 24
185.142.94.0/24 maxlen: 24
185.142.95.0/24 maxlen: 24
185.142.124.0/22 maxlen: 22
185.142.124.0/24 maxlen: 24
185.142.125.0/24 maxlen: 24
185.142.126.0/24 maxlen: 24
185.142.127.0/24 maxlen: 24
185.212.192.0/24 maxlen: 24
185.212.193.0/24 maxlen: 24
185.212.195.0/24 maxlen: 24
185.221.192.0/22 maxlen: 22
185.221.192.0/24 maxlen: 24
185.221.194.0/24 maxlen: 24
185.221.195.0/24 maxlen: 24
185.238.44.0/24 maxlen: 24
185.238.45.0/24 maxlen: 24
185.238.46.0/24 maxlen: 24
185.238.47.0/24 maxlen: 24
193.246.174.0/24 maxlen: 24
193.246.175.0/24 maxlen: 24
193.246.200.0/24 maxlen: 24
193.246.201.0/24 maxlen: 24
195.8.110.0/24 maxlen: 24
195.8.112.0/24 maxlen: 24
195.8.114.0/24 maxlen: 24
195.191.22.0/24 maxlen: 24
195.191.23.0/24 maxlen: 24
195.191.44.0/24 maxlen: 24
195.191.45.0/24 maxlen: 24
195.230.97.0/24 maxlen: 24
195.230.105.0/24 maxlen: 24
195.230.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:af:3f:51:98:30:91:82:cc:f1:87:d8:79:b8:3b:58:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Validity
Not Before: Dec 10 06:26:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0f4fe20b1452ca4b3c212fe1ca071af687256aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:49:8c:db:3d:90:e0:cd:6b:54:48:bd:95:25:
ee:82:90:e1:7d:8b:bb:1b:cf:49:30:34:61:ff:81:
46:e5:cc:7f:90:2c:35:13:fd:9c:8c:ee:fa:c2:90:
d2:56:95:5d:e5:e5:5a:71:a4:ec:ca:f6:4d:fb:86:
c2:b3:8e:6e:98:64:89:69:09:b8:4b:3e:19:36:d4:
36:f4:77:99:06:0d:79:56:b2:fe:a6:c9:77:b0:98:
72:6a:6a:8e:21:b8:90:a2:6f:b3:ed:3a:ec:5e:d0:
33:40:32:94:82:78:f6:70:0c:c1:28:75:41:88:7b:
83:db:21:27:1f:72:9a:78:74:d4:23:18:b9:52:55:
49:b5:6d:85:2b:d5:74:7c:f8:69:5e:a3:45:6a:e3:
09:e7:de:5b:2f:ba:de:d7:e9:9c:54:93:e0:01:3a:
87:6e:4c:1f:5d:0a:48:76:29:05:30:21:c3:13:43:
e1:25:42:b0:87:97:26:f7:9b:80:78:f9:e1:9e:51:
a0:2d:85:13:8f:d9:81:96:c2:84:f9:6c:75:52:13:
48:4a:e4:ea:b2:6d:59:92:f1:bd:0b:da:8d:27:4b:
a7:24:9c:f0:be:f3:af:c3:45:fc:f5:7f:35:f2:e8:
bf:df:49:ce:b7:56:3d:af:29:2f:58:1d:d9:9e:a7:
49:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F4:FE:20:B1:45:2C:A4:B3:C2:12:FE:1C:A0:71:AF:68:72:56:AA
X509v3 Authority Key Identifier:
keyid:43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/0PT-ILFFLKSzwhL-HKBxr2hyVqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.192.0/22
91.213.157.0/24
91.213.167.0/24
91.213.172.0/24
185.47.48.0/22
185.82.64.0/22
185.121.56.0/22
185.125.20.0/22
185.137.60.0/22
185.142.92.0/22
185.142.124.0/22
185.212.192.0/23
185.212.195.0/24
185.221.192.0/22
185.238.44.0/22
193.246.174.0/23
193.246.200.0/23
195.8.110.0/24
195.8.112.0/24
195.8.114.0/24
195.191.22.0/23
195.191.44.0/23
195.230.97.0/24
195.230.105.0/24
195.230.124.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:0f:48:ed:6b:15:22:05:3a:05:70:60:16:7a:03:b5:e7:7b:
7a:38:85:1f:57:01:f3:d3:af:e4:1a:1d:b8:a2:0d:4c:9c:d9:
9f:62:0d:cb:5b:2e:ca:89:1a:52:a3:e1:17:cf:26:d9:85:49:
30:d0:45:3b:fb:a9:76:b9:fc:8c:7f:c0:32:17:d6:d6:e2:17:
12:11:03:c8:a7:74:f7:8a:ae:76:2b:29:b7:fd:2c:8b:00:25:
27:eb:76:80:bb:a6:09:70:2a:b7:c5:f5:2c:41:42:e4:e9:47:
84:af:89:8d:65:69:68:58:dd:ab:71:45:f0:a6:7d:28:df:7a:
82:69:92:99:fb:45:f5:74:70:c2:60:60:9f:b1:dd:49:75:92:
18:31:52:69:6d:73:b7:dd:e5:f8:14:bd:14:9f:97:88:44:5a:
23:86:af:7e:29:ac:ea:1c:b6:f8:a3:e2:eb:54:26:c4:2a:75:
40:1b:7d:91:fa:14:08:74:ef:75:54:9d:0f:bb:34:cb:c2:25:
b9:0e:83:1d:cf:67:f1:9c:47:96:64:29:f7:52:72:de:96:5a:
c6:f8:56:32:3a:62:b7:7a:ff:f6:e0:03:64:c6:b8:2b:ca:78:
08:9f:25:a3:24:d8:32:4e:cc:32:45:6e:ea:f8:eb:9e:7c:be:
7f:76:69:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:44 2024 by rpki-client on console.sobornost.net