Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/qGjMBqPIGRJHE7hen5oLYlZvunI.roa
File: qGjMBqPIGRJHE7hen5oLYlZvunI.roa (raw, json)
Hash identifier: tYN0YvNDzfdVUoqabm5wEwnZWZKNLJ2LiXHf0iUoR6A=
Subject key identifier: A8:68:CC:06:A3:C8:19:12:47:13:B8:5E:9F:9A:0B:62:56:6F:BA:72
Certificate issuer: /CN=66e92c341e769443fde1d27566044b4b65159060
Certificate serial: 01942521F3AF8885EC461923BF7D5E5AD4F2
Authority key identifier: 66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/qGjMBqPIGRJHE7hen5oLYlZvunI.roa
Signing time: Thu 02 Jan 2025 03:49:29 +0000
ROA not before: Thu 02 Jan 2025 03:49:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205072
IP address blocks: 45.137.36.0/22 maxlen: 22
45.147.88.0/22 maxlen: 22
45.155.20.0/22 maxlen: 22
45.155.21.0/24 maxlen: 24
87.239.16.0/21 maxlen: 24
109.109.128.0/20 maxlen: 24
146.19.83.0/24 maxlen: 24
185.149.108.0/22 maxlen: 24
193.22.80.0/24 maxlen: 24
194.26.214.0/24 maxlen: 24
195.5.161.0/24 maxlen: 24
195.5.168.0/24 maxlen: 24
195.5.170.0/24 maxlen: 24
195.5.176.0/24 maxlen: 24
217.8.119.0/24 maxlen: 24
2a0d:da00::/29 maxlen: 29
2a0d:da00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:f3:af:88:85:ec:46:19:23:bf:7d:5e:5a:d4:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e92c341e769443fde1d27566044b4b65159060
Validity
Not Before: Jan 2 03:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a868cc06a3c819124713b85e9f9a0b62566fba72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:04:d0:4c:2b:78:4a:38:27:9b:aa:74:67:2d:
37:53:f5:e1:c4:52:27:5c:61:d1:21:20:c2:84:01:
54:7b:e1:43:10:ed:8f:9d:3b:6d:aa:f6:37:19:71:
59:30:91:e9:8c:42:58:38:0e:e2:46:7d:8e:b2:21:
4c:30:34:e3:71:f4:00:82:d8:6f:1e:45:03:45:c2:
94:b9:5d:4d:3a:39:ed:2d:53:8f:bd:a1:09:31:ea:
2d:b7:cd:a1:e1:0b:a4:01:13:ec:37:be:ee:7d:c8:
93:eb:33:4f:a8:1f:1e:47:63:56:31:59:29:1d:06:
56:7d:8e:1c:e9:f8:a1:65:f9:21:f1:a2:1d:92:84:
16:cf:b8:65:dd:80:65:d2:b9:74:f1:3f:ac:55:db:
d1:79:53:de:78:d7:04:52:4f:04:4f:69:02:33:81:
ed:21:8e:4e:aa:2d:14:7e:c4:b8:e8:87:a8:36:16:
7d:38:02:60:2c:02:1e:13:5c:f2:47:7a:7e:69:f4:
a1:48:d2:48:ff:a2:9c:2c:fe:70:3a:84:36:54:51:
05:a8:53:6d:ce:d3:dd:0b:9a:38:f3:37:6f:b3:97:
d2:1b:a2:b1:d7:47:f9:c6:85:cb:d2:72:49:40:3c:
03:d2:6a:f2:2e:3a:49:0e:3b:00:27:a6:cd:ba:22:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:68:CC:06:A3:C8:19:12:47:13:B8:5E:9F:9A:0B:62:56:6F:BA:72
X509v3 Authority Key Identifier:
keyid:66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/qGjMBqPIGRJHE7hen5oLYlZvunI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.36.0/22
45.147.88.0/22
45.155.20.0/22
87.239.16.0/21
109.109.128.0/20
146.19.83.0/24
185.149.108.0/22
193.22.80.0/24
194.26.214.0/24
195.5.161.0/24
195.5.168.0/24
195.5.170.0/24
195.5.176.0/24
217.8.119.0/24
IPv6:
2a0d:da00::/29
Signature Algorithm: sha256WithRSAEncryption
37:ec:49:41:40:d9:09:89:3c:f8:6d:8a:a8:34:1a:47:30:47:
c5:da:8f:1d:36:44:1b:5e:58:17:66:9b:22:b9:8e:f7:76:0f:
e6:c4:03:82:d5:8d:53:c1:95:be:e2:27:0f:3b:34:e7:1c:77:
d6:96:32:41:31:51:4e:26:5a:30:fc:87:03:f3:d0:6a:6d:b8:
6a:f3:b2:75:13:eb:df:ca:b2:bc:5d:31:8e:dd:cf:ca:3f:3b:
71:12:52:03:70:d0:be:02:b7:10:51:bd:10:cd:89:66:95:3a:
6f:a6:f3:1b:bd:b3:a0:2a:9d:9d:08:6b:67:89:f2:12:04:aa:
cd:64:e2:fd:5f:95:54:49:3b:c1:21:af:fb:76:86:74:a0:5c:
77:41:4c:ce:d9:f4:0e:cd:70:5b:c9:68:ce:c6:14:00:c7:ec:
62:d6:e5:ad:ac:18:85:2f:b7:81:9f:6b:82:35:c1:d1:cc:ab:
30:68:0b:7e:71:40:b9:14:b5:3e:45:e8:a7:18:77:be:6c:32:
38:a3:d8:a0:66:de:62:da:61:50:26:ed:a5:90:90:4a:2c:67:
7d:84:c1:6e:5f:6d:52:d5:bd:1b:85:13:d2:5c:b8:f5:20:0b:
52:92:bf:d8:ae:4c:94:ba:3e:9b:c7:09:b9:d3:74:42:1c:70:
e3:45:99:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:27:41 2025 by rpki-client