Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/pzojG_ji98hazmjtxsKto86vXbs.roa
File: pzojG_ji98hazmjtxsKto86vXbs.roa (raw, json)
Hash identifier: lW3yQya9PKyYr8KUpRJMQqsh8080wa2haU4bDm66PkM=
Subject key identifier: A7:3A:23:1B:F8:E2:F7:C8:5A:CE:68:ED:C6:C2:AD:A3:CE:AF:5D:BB
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 019425FCDA277C68CB3F09F10F1B82D52604
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/pzojG_ji98hazmjtxsKto86vXbs.roa
Signing time: Thu 02 Jan 2025 07:48:35 +0000
ROA not before: Thu 02 Jan 2025 07:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.186.0/24 maxlen: 24
5.182.187.0/24 maxlen: 24
5.182.193.0/24 maxlen: 24
5.182.194.0/24 maxlen: 24
5.182.195.0/24 maxlen: 24
5.182.198.0/24 maxlen: 24
31.132.54.0/23 maxlen: 23
45.248.54.0/24 maxlen: 24
63.246.129.0/24 maxlen: 24
63.246.130.0/24 maxlen: 24
63.246.131.0/24 maxlen: 24
63.246.132.0/24 maxlen: 24
63.246.133.0/24 maxlen: 24
63.246.137.0/24 maxlen: 24
63.246.144.0/24 maxlen: 24
63.246.148.0/24 maxlen: 24
63.246.150.0/24 maxlen: 24
63.246.151.0/24 maxlen: 24
63.246.152.0/24 maxlen: 24
63.246.158.0/24 maxlen: 24
63.246.159.0/24 maxlen: 24
78.31.204.0/24 maxlen: 24
78.31.206.0/24 maxlen: 24
94.154.170.0/24 maxlen: 24
103.216.197.0/24 maxlen: 24
103.216.199.0/24 maxlen: 24
149.126.13.0/24 maxlen: 24
162.218.88.0/24 maxlen: 24
162.218.89.0/24 maxlen: 24
162.218.91.0/24 maxlen: 24
185.52.137.0/24 maxlen: 24
185.171.126.0/24 maxlen: 24
185.201.40.0/24 maxlen: 24
185.201.41.0/24 maxlen: 24
185.201.43.0/24 maxlen: 24
212.60.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:da:27:7c:68:cb:3f:09:f1:0f:1b:82:d5:26:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jan 2 07:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a73a231bf8e2f7c85ace68edc6c2ada3ceaf5dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:56:75:fe:4b:2f:39:b6:93:33:b8:5f:a5:c3:
15:4c:53:cf:a8:67:ad:dc:41:0e:e0:22:97:26:f4:
60:e6:f2:71:16:e1:cf:db:37:8a:cd:27:78:59:8a:
f9:95:b4:e9:ae:d4:95:b3:99:6b:4b:2a:8b:93:fb:
0e:21:f4:92:99:b5:f2:92:e7:b9:78:76:17:60:03:
df:d9:be:c8:f4:7a:1d:43:0b:a8:e1:2a:e0:d0:21:
1b:c2:94:c0:94:ec:18:27:dd:ec:7d:ee:2f:65:23:
dd:ea:d0:85:79:c8:9e:d8:21:d5:c3:23:97:27:50:
9f:f0:19:ef:37:b4:47:9c:b4:1f:2e:98:93:b4:34:
19:79:a9:ed:eb:41:8f:e2:d0:31:79:61:5e:4e:aa:
37:62:a5:76:21:1c:63:03:b9:27:f9:50:f9:d1:e5:
af:0a:cf:35:39:35:44:6c:a9:69:e0:17:0e:18:5e:
cc:48:bf:9f:70:eb:58:e3:5b:7d:26:7c:ff:a2:b7:
6c:a0:d3:33:d3:00:77:a6:ab:8d:fa:2c:8e:a5:72:
94:b3:30:a3:77:c4:2f:bd:b7:a5:c9:d0:57:71:db:
ee:52:c6:ec:cc:3a:e7:ad:b7:76:a9:90:a6:f3:ad:
9e:96:84:f2:36:70:78:e1:25:b6:8e:1a:ad:94:6a:
24:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:3A:23:1B:F8:E2:F7:C8:5A:CE:68:ED:C6:C2:AD:A3:CE:AF:5D:BB
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/pzojG_ji98hazmjtxsKto86vXbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.186.0/23
5.182.193.0-5.182.195.255
5.182.198.0/24
31.132.54.0/23
45.248.54.0/24
63.246.129.0-63.246.133.255
63.246.137.0/24
63.246.144.0/24
63.246.148.0/24
63.246.150.0-63.246.152.255
63.246.158.0/23
78.31.204.0/24
78.31.206.0/24
94.154.170.0/24
103.216.197.0/24
103.216.199.0/24
149.126.13.0/24
162.218.88.0/23
162.218.91.0/24
185.52.137.0/24
185.171.126.0/24
185.201.40.0/23
185.201.43.0/24
212.60.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a0:42:2f:2a:d7:9f:c1:01:9c:11:59:4e:5f:12:d4:80:cf:
64:fc:73:c8:1a:38:6e:dd:75:43:9e:04:52:e9:0e:e1:59:28:
b9:a1:5a:83:dc:5d:7b:4c:ea:6f:bd:aa:a2:c0:2b:66:81:80:
c3:67:ce:3e:bd:44:a4:29:32:3f:78:95:01:5b:f6:84:93:fb:
92:3c:c5:7c:bc:ec:fb:bc:c7:09:6e:45:dc:22:c3:54:5b:61:
ac:15:76:28:95:9d:4a:b6:bf:f7:87:ef:6c:b4:8b:53:da:43:
c6:07:14:74:4f:26:78:43:23:7c:58:83:d3:58:8b:ac:eb:e6:
90:00:1c:71:6a:ee:0b:ea:ec:22:51:d6:07:21:37:9b:02:b5:
7b:a5:bf:6e:f9:46:de:24:e3:25:26:3b:73:99:91:8a:6a:9a:
59:b0:06:d9:03:d9:e0:9c:fe:e4:a3:55:db:ce:50:d9:e5:1e:
06:c0:52:9e:fe:a2:e2:d9:d7:ed:68:5f:43:a4:b5:4f:3e:e5:
ae:cc:7b:ff:c0:fb:25:ac:7d:29:0f:71:f1:29:f2:45:4f:6c:
64:a5:69:07:d4:01:f3:2f:66:de:21:6b:99:1f:cc:49:bd:43:
25:bd:a4:30:98:88:f8:ec:7a:d1:a0:a0:4a:fd:fd:49:a5:4a:
2b:a5:f0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 22 17:25:37 2025 by rpki-client on console.sobornost.net