Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/BLglzmJZB_PGHv8Pftav0LMX3k8.roa
File: BLglzmJZB_PGHv8Pftav0LMX3k8.roa (raw, json)
Hash identifier: ZaBLGX1Gec9yloY10ulc3cYMa851u4ISLlkCQ4OBaO4=
Subject key identifier: 04:B8:25:CE:62:59:07:F3:C6:1E:FF:0F:7E:D6:AF:D0:B3:17:DE:4F
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 01952300FF42AF56B093B66769A71CC095CA
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/BLglzmJZB_PGHv8Pftav0LMX3k8.roa
Signing time: Thu 20 Feb 2025 10:57:02 +0000
ROA not before: Thu 20 Feb 2025 10:57:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 5.182.192.0/24 maxlen: 24
31.132.52.0/24 maxlen: 24
45.248.52.0/24 maxlen: 24
45.248.55.0/24 maxlen: 24
92.249.31.0/24 maxlen: 24
94.154.177.0/24 maxlen: 24
94.154.180.0/23 maxlen: 23
94.154.182.0/24 maxlen: 24
147.78.205.0/24 maxlen: 24
147.78.206.0/24 maxlen: 24
162.218.90.0/24 maxlen: 24
185.187.212.0/24 maxlen: 24
185.205.205.0/24 maxlen: 24
185.253.122.0/24 maxlen: 24
192.145.71.0/24 maxlen: 24
212.60.15.0/24 maxlen: 24
217.197.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:23:00:ff:42:af:56:b0:93:b6:67:69:a7:1c:c0:95:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Feb 20 10:57:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=04b825ce625907f3c61eff0f7ed6afd0b317de4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:95:02:de:80:5a:bf:13:3e:5e:3d:00:95:05:
c6:58:99:b1:a4:2a:3e:64:db:8d:87:26:7e:af:ab:
bf:13:88:d8:82:d9:3b:5e:71:87:67:0f:9d:9f:34:
db:e2:14:f9:45:be:d2:1b:e0:41:83:bb:54:c1:32:
54:09:33:44:89:d6:78:a1:01:04:1e:ea:80:16:38:
f8:d0:b5:b4:5e:1c:75:2f:48:b6:44:31:01:a4:c1:
12:89:be:99:02:d5:32:b3:e0:ec:81:6e:79:03:6b:
8d:23:c5:dc:3a:ec:b3:80:63:9c:81:b1:7d:ec:2b:
00:45:73:a9:66:f9:d0:14:3e:93:94:25:26:1e:7c:
59:78:e8:3c:61:ad:40:c3:ab:8a:94:69:6c:50:1d:
48:44:ec:4b:80:58:02:6c:4d:9c:ac:f0:53:89:60:
25:e0:b7:24:31:42:77:0d:59:ee:01:de:78:66:77:
ff:8a:3e:e8:ce:f8:72:44:86:7f:4b:cd:d9:fd:b4:
f8:bf:57:5a:d4:42:05:77:0d:fc:64:4d:a1:6e:9c:
ae:99:c0:ee:45:f2:e0:18:67:41:5c:b5:b1:5f:e8:
1f:b6:2d:96:ee:38:ad:7c:a4:37:6c:0c:1f:c7:cb:
50:df:ca:34:3a:09:c3:ae:64:85:a8:59:d6:ff:83:
4f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B8:25:CE:62:59:07:F3:C6:1E:FF:0F:7E:D6:AF:D0:B3:17:DE:4F
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/BLglzmJZB_PGHv8Pftav0LMX3k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.192.0/24
31.132.52.0/24
45.248.52.0/24
45.248.55.0/24
92.249.31.0/24
94.154.177.0/24
94.154.180.0-94.154.182.255
147.78.205.0-147.78.206.255
162.218.90.0/24
185.187.212.0/24
185.205.205.0/24
185.253.122.0/24
192.145.71.0/24
212.60.15.0/24
217.197.169.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:db:f8:c2:31:2d:e2:af:a0:8b:03:17:ce:40:a9:18:ee:b8:
1b:3a:c8:bf:46:c1:a1:7c:9f:a9:9a:7e:08:a7:c0:48:d5:6c:
28:49:fa:28:93:f1:f3:57:b8:74:29:1f:23:b9:5b:02:b1:ab:
6d:4a:e4:ce:10:53:28:69:67:76:c9:c0:4b:e5:c0:25:c5:f7:
bb:8e:bf:2a:ac:a8:07:6f:c8:93:1c:ef:8d:58:6a:32:e6:93:
96:99:93:45:83:73:d0:2d:63:78:c2:a8:69:03:c9:19:e5:c0:
25:8e:f2:0c:ca:c8:43:49:fe:26:07:e7:ec:f1:6f:ad:c3:19:
0d:ee:0b:cf:d3:b8:a7:d9:28:07:5b:fc:e8:16:72:3e:de:c7:
ad:5c:12:9b:75:3c:8f:e7:f6:15:8f:69:cf:2d:2e:44:a3:f8:
f9:46:a0:da:6b:04:a4:6a:10:c0:48:6c:0d:9c:a5:12:6f:5a:
81:a0:3f:49:45:44:ad:13:8f:64:09:79:4e:fd:b9:78:62:fa:
1e:10:81:56:8c:44:7f:91:07:7e:0b:9b:79:57:07:0f:ef:4b:
f0:53:6f:bd:02:8e:d7:0b:8b:b3:b4:50:a2:67:84:96:61:23:
1b:d3:15:34:d0:93:03:74:81:6a:e9:95:d0:0b:e0:b0:9a:58:
fa:65:f7:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:55:01 2025 by rpki-client on console.sobornost.net