Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ffce0e-c3ad-4c8a-9914-745cde74d01b/1/WNnJojurMk10LbGrLgZt0ifKwss.roa
File: WNnJojurMk10LbGrLgZt0ifKwss.roa (raw, json)
Hash identifier: srIz81tLyVgircW7ks18A2CAzPVgxZ0XnEJTrVmvVb8=
Subject key identifier: 58:D9:C9:A2:3B:AB:32:4D:74:2D:B1:AB:2E:06:6D:D2:27:CA:C2:CB
Certificate issuer: /CN=9439193aef1fe4d5703cb834df7aabaf8a4be42c
Certificate serial: 019424451B7F704B246B7656BC8D245FB3D6
Authority key identifier: 94:39:19:3A:EF:1F:E4:D5:70:3C:B8:34:DF:7A:AB:AF:8A:4B:E4:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDkZOu8f5NVwPLg033qrr4pL5Cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ffce0e-c3ad-4c8a-9914-745cde74d01b/1/WNnJojurMk10LbGrLgZt0ifKwss.roa
Signing time: Wed 01 Jan 2025 23:48:16 +0000
ROA not before: Wed 01 Jan 2025 23:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200370
IP address blocks: 45.8.160.0/22 maxlen: 22
45.8.160.0/24 maxlen: 24
45.8.161.0/24 maxlen: 24
45.8.162.0/24 maxlen: 24
45.8.163.0/24 maxlen: 24
193.56.59.0/24 maxlen: 24
193.56.61.0/24 maxlen: 24
193.56.107.0/24 maxlen: 24
193.56.118.0/24 maxlen: 24
194.60.208.0/22 maxlen: 22
194.60.208.0/23 maxlen: 23
194.60.208.0/24 maxlen: 24
194.60.209.0/24 maxlen: 24
194.60.210.0/23 maxlen: 23
194.60.210.0/24 maxlen: 24
194.60.211.0/24 maxlen: 24
2a05:cac0::/29 maxlen: 29
2a0f:51c0::/29 maxlen: 29
2a12:93c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:1b:7f:70:4b:24:6b:76:56:bc:8d:24:5f:b3:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9439193aef1fe4d5703cb834df7aabaf8a4be42c
Validity
Not Before: Jan 1 23:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=58d9c9a23bab324d742db1ab2e066dd227cac2cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:75:a4:28:db:4c:35:ea:0c:5d:b5:16:57:41:
ee:94:cd:90:0b:7e:52:4f:80:db:a6:e9:bb:6c:90:
5b:49:c1:11:2f:d5:10:e5:bc:83:2a:a4:45:83:c8:
82:41:a5:4e:51:18:5f:e8:80:71:3f:b7:43:3f:50:
75:5c:4c:7d:33:70:1b:d5:4e:b0:a7:85:ad:73:f6:
ab:e8:73:15:c1:26:54:27:a3:ff:de:81:be:59:10:
78:d4:24:0d:31:3a:22:41:40:42:a5:69:cf:62:01:
3a:8e:a3:9c:a8:af:e6:23:83:15:a0:5e:c4:45:b6:
be:7b:d3:7c:cc:4a:15:d2:d4:af:48:90:9a:b2:c8:
89:e3:30:29:1d:9c:c8:2a:0a:8f:de:45:99:d2:0a:
35:93:4c:3c:31:0c:1d:23:2d:91:74:52:33:98:90:
72:c5:fd:9c:c2:06:4f:d4:0b:fc:d2:37:90:0a:03:
44:26:86:bc:c8:d9:22:66:9a:4c:96:6e:d8:ba:4b:
f3:3c:65:de:a8:53:f0:12:91:17:32:16:29:6c:9a:
32:3f:3e:9d:2d:90:8f:10:18:8d:f0:05:14:1c:8b:
5f:cf:af:e8:14:97:a6:e0:17:e4:2e:7a:99:f9:10:
29:87:cc:df:49:ea:3e:f9:fe:39:b8:4e:67:0e:a4:
23:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D9:C9:A2:3B:AB:32:4D:74:2D:B1:AB:2E:06:6D:D2:27:CA:C2:CB
X509v3 Authority Key Identifier:
keyid:94:39:19:3A:EF:1F:E4:D5:70:3C:B8:34:DF:7A:AB:AF:8A:4B:E4:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDkZOu8f5NVwPLg033qrr4pL5Cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ffce0e-c3ad-4c8a-9914-745cde74d01b/1/WNnJojurMk10LbGrLgZt0ifKwss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ffce0e-c3ad-4c8a-9914-745cde74d01b/1/lDkZOu8f5NVwPLg033qrr4pL5Cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.160.0/22
193.56.59.0/24
193.56.61.0/24
193.56.107.0/24
193.56.118.0/24
194.60.208.0/22
IPv6:
2a05:cac0::/29
2a0f:51c0::/29
2a12:93c0::/29
Signature Algorithm: sha256WithRSAEncryption
b4:76:12:74:ae:86:2e:f7:09:83:fa:ae:ec:dc:da:2d:ba:b8:
8c:49:7c:d3:47:7c:12:08:da:e0:61:35:fe:29:43:a4:c2:84:
ce:c6:f3:e9:48:a7:c4:9e:84:1a:91:eb:a5:66:b8:ac:0a:e6:
99:b0:2d:42:78:90:2b:77:f2:86:bd:53:e3:e5:7f:b8:00:8f:
0e:1c:2c:0e:ca:35:45:c4:64:b3:27:b4:47:f0:07:ee:bd:c9:
e3:96:91:bd:93:20:fc:a8:48:4b:25:29:3d:fb:73:88:88:0a:
69:2b:a8:fb:b5:44:4b:a0:51:6c:1f:79:df:03:ce:2e:0b:70:
c4:97:0a:0c:a3:de:c1:aa:e0:8c:58:c4:2d:98:03:13:e9:98:
89:53:ec:6e:a4:2d:88:6f:e2:24:25:7a:22:ee:02:23:c8:f6:
73:76:29:db:73:5a:87:3e:d0:61:b9:ce:b7:95:ec:78:a3:77:
b4:b1:8b:24:dc:0e:f6:e8:4a:23:bc:29:b3:94:bf:e4:1d:f8:
c8:c2:05:48:fe:0c:26:16:96:5d:99:17:7c:e2:5c:b1:6b:20:
9b:93:b0:1c:5b:28:e2:cf:6b:35:30:24:dd:4f:62:9f:43:dc:
02:fd:77:d2:2d:82:08:3d:52:97:19:42:7c:a1:2b:a5:ce:9c:
2b:d7:c0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net