Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/t6RmlOpPsLyIhK8CT9RBjCOl2Js.roa
File: t6RmlOpPsLyIhK8CT9RBjCOl2Js.roa (raw, json)
Hash identifier: JL/hI2KnUe9pPxlliW1hRB73MnVIQu9cHXbqxjE8Aq0=
Subject key identifier: B7:A4:66:94:EA:4F:B0:BC:88:84:AF:02:4F:D4:41:8C:23:A5:D8:9B
Certificate issuer: /CN=441d4b92dd150364c65b7d21299028678b0a5296
Certificate serial: 01941F8C26794B5C2BE95F1AFEBD45317BAA
Authority key identifier: 44:1D:4B:92:DD:15:03:64:C6:5B:7D:21:29:90:28:67:8B:0A:52:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/t6RmlOpPsLyIhK8CT9RBjCOl2Js.roa
Signing time: Wed 01 Jan 2025 01:47:46 +0000
ROA not before: Wed 01 Jan 2025 01:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57370
IP address blocks: 144.2.64.0/18 maxlen: 24
144.2.64.0/19 maxlen: 24
144.2.64.0/20 maxlen: 24
144.2.80.0/20 maxlen: 24
144.2.96.0/19 maxlen: 24
144.2.96.0/20 maxlen: 24
144.2.112.0/20 maxlen: 24
178.238.160.0/20 maxlen: 20
178.238.160.0/21 maxlen: 24
178.238.160.0/22 maxlen: 24
178.238.168.0/21 maxlen: 24
185.119.176.0/22 maxlen: 24
185.119.176.0/23 maxlen: 24
185.119.176.0/24 maxlen: 24
185.119.177.0/24 maxlen: 24
185.119.178.0/23 maxlen: 24
185.119.178.0/24 maxlen: 24
185.119.179.0/24 maxlen: 24
2a02:21b0::/32 maxlen: 48
2a02:21b1::/32 maxlen: 48
2a02:21b2:ac10::/48 maxlen: 48
2a02:21b2:ac14::/48 maxlen: 48
2a02:21b2:ac18::/48 maxlen: 48
2a02:21b2:b2ee::/48 maxlen: 48
2a02:21b2:b3ee::/48 maxlen: 48
2a02:21b2:beee::/48 maxlen: 48
2a02:21b4::/32 maxlen: 48
2a02:21b4::/33 maxlen: 48
2a02:21b4::/34 maxlen: 48
2a02:21b4:4000::/34 maxlen: 48
2a02:21b4:8000::/33 maxlen: 48
2a02:21b4:8000::/34 maxlen: 48
2a02:21b4:c000::/34 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:26:79:4b:5c:2b:e9:5f:1a:fe:bd:45:31:7b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=441d4b92dd150364c65b7d21299028678b0a5296
Validity
Not Before: Jan 1 01:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b7a46694ea4fb0bc8884af024fd4418c23a5d89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ea:a4:56:2d:56:0e:d3:2a:a0:ca:a5:15:af:
30:4f:93:00:df:ee:43:38:ed:35:7a:c9:dd:3c:f8:
f9:1f:b3:89:0d:3a:11:49:0f:59:36:1f:38:c7:70:
5e:41:78:7f:7b:b9:28:bd:98:ae:f1:26:b9:87:ca:
1e:0e:28:8d:9b:52:5f:5b:24:19:a9:c7:15:87:71:
ca:b0:c1:e2:e6:86:da:92:21:01:e0:1c:7c:e6:ca:
06:9b:98:56:bf:b5:e1:f0:ac:27:0a:22:32:91:cd:
6f:60:29:53:90:b5:19:a0:da:d6:22:48:9d:4a:70:
b9:78:ac:1b:a4:d9:2e:ba:78:9b:f8:1b:7f:31:af:
53:81:fd:65:79:f0:55:3f:95:23:c6:7f:7b:4b:e4:
16:6a:fd:8f:40:19:fd:83:87:cd:46:fc:7f:c4:dd:
67:e2:c4:97:dd:59:83:77:b6:62:36:d4:6d:57:bb:
6c:f6:5b:0a:ee:e3:9d:db:2c:4a:d0:c6:63:e6:0a:
93:e0:96:ee:2c:82:60:85:8c:e6:a3:66:5e:89:ab:
16:11:0a:9c:da:f3:88:79:11:d7:52:59:9f:b7:fe:
20:a4:7e:9b:1e:02:f0:74:84:4e:f7:ec:2f:d2:b7:
af:c5:89:27:00:d5:18:89:d2:11:05:a2:02:70:42:
af:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A4:66:94:EA:4F:B0:BC:88:84:AF:02:4F:D4:41:8C:23:A5:D8:9B
X509v3 Authority Key Identifier:
keyid:44:1D:4B:92:DD:15:03:64:C6:5B:7D:21:29:90:28:67:8B:0A:52:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/t6RmlOpPsLyIhK8CT9RBjCOl2Js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5d454b-9d1d-4e7d-ae73-7f5f4d604731/1/RB1Lkt0VA2TGW30hKZAoZ4sKUpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.64.0/18
178.238.160.0/20
185.119.176.0/22
IPv6:
2a02:21b0::/31
2a02:21b2:ac10::/48
2a02:21b2:ac14::/48
2a02:21b2:ac18::/48
2a02:21b2:b2ee::/48
2a02:21b2:b3ee::/48
2a02:21b2:beee::/48
2a02:21b4::/32
Signature Algorithm: sha256WithRSAEncryption
14:fb:a4:c8:b5:b7:b2:2b:de:d4:ce:2b:9f:24:c2:b6:12:10:
d4:5d:0d:a3:ed:61:ca:01:45:3a:80:62:35:b8:b1:3b:a4:95:
76:51:65:de:38:64:95:42:72:86:20:44:cc:97:b1:0c:a8:b1:
6e:2c:f6:f5:59:cf:05:80:91:08:e1:dd:ec:08:e7:2c:8f:df:
de:7c:66:ec:f1:b8:00:46:90:45:d9:69:a3:b7:1f:80:a7:7f:
56:90:a8:34:55:13:d0:ac:29:cd:e3:5a:dc:42:f6:81:f8:57:
21:eb:f6:e3:0d:51:b5:58:2a:4f:f9:8d:7e:73:b6:6e:d3:34:
6a:38:94:7f:4f:c0:06:42:5e:be:b0:39:9c:a0:b7:39:21:54:
bc:05:7f:c2:6d:4a:70:19:3b:19:df:5d:d4:87:8a:d1:67:ef:
96:1e:57:05:cd:63:d7:1a:90:ff:8a:7d:4b:bf:f8:84:79:27:
d7:2c:0d:62:fa:49:74:5e:28:d9:12:a0:b4:51:8a:4d:6b:7e:
83:52:34:b3:27:68:be:12:62:0a:7e:e4:5b:93:73:4a:a0:31:
27:17:c4:2d:72:4c:fa:07:ad:21:1d:79:3b:9c:a4:94:77:7c:
ff:54:ea:f7:35:e9:9b:c9:92:84:d8:88:16:a6:ca:4f:14:1a:
50:91:9d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:51 2025 by rpki-client on console.sobornost.net