Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SfLzunSNfVE3jb-NulCQVQsuoCM.roa
File: SfLzunSNfVE3jb-NulCQVQsuoCM.roa (raw, json)
Hash identifier: G79tyE5U2vanoxkN6vEyOepef/dA2Pb0suWRvxlA2eY=
Subject key identifier: 49:F2:F3:BA:74:8D:7D:51:37:8D:BF:8D:BA:50:90:55:0B:2E:A0:23
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 019422202C684EA334FE3ACCA30E278FD3FF
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SfLzunSNfVE3jb-NulCQVQsuoCM.roa
Signing time: Wed 01 Jan 2025 13:48:41 +0000
ROA not before: Wed 01 Jan 2025 13:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 5.182.36.0/24 maxlen: 24
5.182.37.0/24 maxlen: 24
5.182.38.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.146.0/24 maxlen: 24
45.8.147.0/24 maxlen: 24
45.67.34.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.87.152.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.87.155.0/24 maxlen: 24
45.89.52.0/22 maxlen: 24
45.89.52.0/24 maxlen: 24
45.89.54.0/24 maxlen: 24
45.89.55.0/24 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.10.0/24 maxlen: 24
45.93.11.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
92.118.88.0/22 maxlen: 24
92.119.200.0/22 maxlen: 24
93.185.166.0/24 maxlen: 24
141.98.168.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
141.98.170.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.205.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
188.119.121.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
188.119.124.0/24 maxlen: 24
188.119.125.0/24 maxlen: 24
193.43.146.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.139.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.173.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:2c:68:4e:a3:34:fe:3a:cc:a3:0e:27:8f:d3:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 1 13:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49f2f3ba748d7d51378dbf8dba5090550b2ea023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5d:82:53:14:ff:fb:9a:60:c2:58:7e:43:17:
72:e2:6f:4c:ec:8e:ed:aa:a8:0b:3e:9f:f8:ab:e0:
76:50:d0:e5:9e:9e:db:ca:c2:3a:a3:ef:8b:90:8b:
81:50:2f:50:3d:4c:67:d7:d1:cd:89:2f:3e:37:39:
1e:9e:8d:8a:53:e3:48:e8:42:3e:0c:d5:8a:46:bb:
00:80:64:d4:16:0d:32:4c:39:8e:18:0a:2d:e2:5c:
d4:23:a5:36:07:5c:d4:63:72:31:2f:8e:2d:6c:ea:
b3:55:d7:c6:43:67:b8:34:bf:a1:76:e9:05:63:cb:
69:70:2f:2f:e1:9a:c7:99:d4:5e:f0:5e:ec:22:e3:
c9:1d:9b:25:95:e1:70:72:8a:49:79:fa:48:99:ac:
7d:45:c4:6e:4e:be:f0:8e:85:80:e6:24:46:8b:1c:
2a:be:37:ea:b7:8d:6b:29:dd:61:24:31:ae:ad:1f:
a4:ed:f3:a6:5a:62:6d:93:c6:f7:f5:a4:31:ce:40:
a5:a1:f6:55:62:43:da:88:47:6d:6a:de:55:42:8e:
cc:6e:8c:17:59:e6:2b:9c:33:12:c4:26:35:46:c5:
8a:85:91:70:ad:0d:87:ef:23:b4:bc:6c:b4:1e:28:
4a:ac:cc:31:a1:7e:09:1b:c0:8b:d0:82:32:06:af:
6c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F2:F3:BA:74:8D:7D:51:37:8D:BF:8D:BA:50:90:55:0B:2E:A0:23
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SfLzunSNfVE3jb-NulCQVQsuoCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/22
45.8.144.0/22
45.67.34.0/23
45.84.0.0/23
45.87.152.0/22
45.89.52.0/22
45.93.8.0/24
45.93.10.0/23
45.159.248.0/22
92.118.88.0/22
92.119.200.0/22
93.185.166.0/24
141.98.168.0-141.98.170.255
185.231.204.0/22
188.119.121.0-188.119.125.255
193.43.146.0/23
193.46.56.0/23
193.57.136.0/22
194.4.48.0/22
194.116.172.0/23
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
58:6c:9c:68:a2:b3:e5:6e:96:e9:bc:88:8e:59:b7:53:3d:66:
a5:8e:7c:d7:e1:60:76:79:dc:f8:4e:be:f4:57:b3:ba:5c:7d:
78:89:c5:6e:e0:bc:14:bd:78:53:7b:62:39:f8:89:e0:b5:22:
78:e0:a1:4c:9c:23:ee:c3:e8:ce:6e:92:83:b8:ed:c7:69:ce:
77:2d:5f:e3:ef:a6:76:9c:ce:85:18:a1:fd:8f:3e:8f:89:fe:
54:e6:07:5c:54:c4:b5:3c:67:4b:3a:f8:0a:75:3f:2f:c5:55:
fb:1f:c7:5c:f3:0f:37:09:59:8c:93:a0:47:9f:12:01:61:40:
bb:d0:9b:4b:1f:19:f0:d8:e1:18:f0:b6:2e:f2:df:d6:44:2c:
8c:4c:64:bf:9b:61:2c:89:79:b9:c2:b6:cf:cc:17:11:b6:d8:
ef:b1:33:0e:23:a3:eb:de:c9:62:ae:5d:41:2a:d1:9e:f2:de:
e3:b5:fe:d7:bb:90:ce:42:7a:b0:c5:9e:6f:b3:21:e6:5f:68:
46:54:6e:44:8b:a6:44:13:4c:39:fd:15:bd:20:6c:0d:98:6c:
eb:3e:93:b9:cb:a4:ce:f9:d6:1e:cf:a5:99:8c:63:9d:05:1a:
1b:f2:85:8f:1a:6d:1c:a4:17:6b:77:e9:4d:00:a3:5b:c4:dd:
fd:f0:90:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:49 2025 by rpki-client