Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/oWwUkqy4tTJq9PWbJeViVFZ3qYg.roa
File: oWwUkqy4tTJq9PWbJeViVFZ3qYg.roa (raw, json)
Hash identifier: wlBGkq+lGm60Zidiqnbi3CEbhADeShIZ0BTC3+RXQLY=
Subject key identifier: A1:6C:14:92:AC:B8:B5:32:6A:F4:F5:9B:25:E5:62:54:56:77:A9:88
Certificate issuer: /CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Certificate serial: 0194228D5D8965F8740CAAA43E786C951EAD
Authority key identifier: E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/oWwUkqy4tTJq9PWbJeViVFZ3qYg.roa
Signing time: Wed 01 Jan 2025 15:47:57 +0000
ROA not before: Wed 01 Jan 2025 15:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44894
IP address blocks: 89.21.76.0/24 maxlen: 24
91.193.128.0/22 maxlen: 22
91.193.128.0/23 maxlen: 23
91.193.128.0/24 maxlen: 24
91.193.129.0/24 maxlen: 24
91.193.130.0/23 maxlen: 23
91.193.130.0/24 maxlen: 24
91.193.131.0/24 maxlen: 24
91.203.60.0/22 maxlen: 22
91.203.60.0/23 maxlen: 23
91.203.60.0/24 maxlen: 24
91.203.61.0/24 maxlen: 24
91.203.62.0/23 maxlen: 23
91.203.62.0/24 maxlen: 24
91.203.63.0/24 maxlen: 24
193.150.49.0/24 maxlen: 24
194.107.230.0/23 maxlen: 23
194.107.230.0/24 maxlen: 24
194.107.231.0/24 maxlen: 24
194.110.2.0/23 maxlen: 23
194.110.2.0/24 maxlen: 24
194.110.3.0/24 maxlen: 24
194.150.104.0/23 maxlen: 23
194.150.104.0/24 maxlen: 24
194.150.105.0/24 maxlen: 24
194.150.106.0/24 maxlen: 24
2001:67c:2f2c::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:5d:89:65:f8:74:0c:aa:a4:3e:78:6c:95:1e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Validity
Not Before: Jan 1 15:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a16c1492acb8b5326af4f59b25e562545677a988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ef:ad:60:e5:61:7c:a6:b5:8e:f6:a7:39:3d:
26:5f:bc:60:ec:7f:34:0b:72:a0:29:33:03:30:8a:
82:6e:03:3f:c6:7d:8d:60:5f:ea:11:a0:ba:08:53:
46:61:d3:d6:11:b9:9e:1e:04:6f:a2:7a:36:cf:6f:
30:60:cc:ae:0b:3d:19:54:af:e7:70:a5:fd:b3:fd:
3a:19:95:3d:32:ed:c3:37:ef:c3:8b:19:0e:e4:bd:
1e:7c:31:57:a3:61:09:3a:b1:67:cf:5e:98:83:62:
c1:79:dc:fb:cc:ec:75:7e:c1:08:9b:d2:27:e7:48:
14:75:97:da:cb:6e:14:4b:cc:72:90:03:2c:8f:7c:
9b:03:38:5b:b4:64:a4:e4:84:47:a2:c6:d3:63:e8:
4e:fc:56:2a:ac:a0:35:e3:f1:d0:82:9e:62:62:f0:
cc:3f:5f:04:f8:5f:a6:a4:89:23:35:bc:ff:d7:d1:
43:3b:0b:68:e4:9b:53:c5:67:27:53:d0:16:f6:6b:
2e:c5:34:31:9a:7d:c1:d9:04:3f:43:26:52:99:19:
b7:4c:fc:fa:60:a9:8e:2a:75:a9:12:79:9f:7e:3b:
fe:36:f9:fd:80:a1:73:85:9f:83:7d:86:44:71:db:
79:71:ef:b3:20:85:02:1c:a1:a1:a3:d1:53:84:9c:
e8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6C:14:92:AC:B8:B5:32:6A:F4:F5:9B:25:E5:62:54:56:77:A9:88
X509v3 Authority Key Identifier:
keyid:E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/oWwUkqy4tTJq9PWbJeViVFZ3qYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/5p5FpEgUVhSOLgA0nYeqV8VrJKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.21.76.0/24
91.193.128.0/22
91.203.60.0/22
193.150.49.0/24
194.107.230.0/23
194.110.2.0/23
194.150.104.0-194.150.106.255
IPv6:
2001:67c:2f2c::/48
Signature Algorithm: sha256WithRSAEncryption
94:20:d3:e6:6c:66:ab:32:b9:0e:13:53:22:59:50:35:d0:dd:
38:5d:da:49:db:67:c4:fd:8a:4b:b5:26:6c:3a:ef:bc:e5:49:
03:2e:4f:36:ef:a4:4f:49:5c:dd:92:b6:0a:19:89:6e:f3:f2:
4f:ab:b2:39:ca:07:de:b6:19:19:fe:92:d7:f2:58:0d:ee:88:
1d:02:df:ad:80:ed:48:c3:9a:5a:a7:ec:62:64:53:6d:df:e4:
ef:8b:0a:1e:a4:62:e6:51:74:86:87:da:d5:24:f2:38:35:55:
90:c0:37:80:5d:95:31:85:45:80:3f:90:07:7d:18:66:b8:cb:
75:ce:da:29:e4:30:cd:a6:4c:53:02:bd:f9:22:4d:5c:0e:45:
5c:22:52:e3:d9:ce:53:73:01:8a:bc:85:8f:61:66:4e:3a:dc:
cc:8b:de:03:82:bf:a5:ab:76:6a:ab:5e:9d:1a:ee:98:5c:9f:
55:33:1e:05:1d:86:5b:e2:42:97:be:90:c0:7d:46:aa:be:4f:
df:5e:39:0e:36:ad:03:1f:d2:6a:6f:96:3d:8d:99:8d:79:73:
ef:fd:65:ac:e2:a5:fb:f9:ea:88:50:02:0e:fa:8f:20:91:c7:
a4:06:5f:39:2d:85:13:d5:87:b7:3e:93:22:9b:cc:45:0e:61:
57:94:8e:bb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jan 22 14:51:34 2025 by rpki-client on console.sobornost.net