Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/DEhGC8Iq7VJD9gFuEv8DsWxYOqU.roa
File: DEhGC8Iq7VJD9gFuEv8DsWxYOqU.roa (raw, json)
Hash identifier: o3ShOIsnXI28tDC5pFvykxIa2VwVahLeCwa8wlbzJfc=
Subject key identifier: 0C:48:46:0B:C2:2A:ED:52:43:F6:01:6E:12:FF:03:B1:6C:58:3A:A5
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 019420680BED87678F98971FCE571AF00266
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/DEhGC8Iq7VJD9gFuEv8DsWxYOqU.roa
Signing time: Wed 01 Jan 2025 05:47:57 +0000
ROA not before: Wed 01 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208258
IP address blocks: 45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.154.238.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:0b:ed:87:67:8f:98:97:1f:ce:57:1a:f0:02:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c48460bc22aed5243f6016e12ff03b16c583aa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:b1:a9:52:75:e1:b5:5c:ba:b6:2a:d4:b8:
52:19:40:96:7f:dd:7d:56:0e:68:19:c9:8b:83:6e:
ad:f9:cb:d7:4f:41:32:44:5f:37:59:50:1c:11:54:
6e:1f:cd:5d:fa:59:04:7a:9c:0b:8e:ee:c6:bf:ba:
86:3f:6d:c8:1a:37:d8:a8:37:68:24:06:fa:31:2e:
ba:48:bc:e8:bc:a8:d9:41:f2:fc:5a:09:99:68:eb:
af:74:a7:de:3d:da:a6:eb:ff:71:78:3e:17:9e:99:
b6:be:13:a3:91:3e:a2:f5:c8:0c:1b:6a:03:9a:2f:
e5:00:ca:2f:b1:37:24:22:06:0e:76:a0:bb:09:26:
e8:18:11:b8:eb:ea:39:ec:96:40:f0:58:16:69:1e:
1a:41:77:7b:75:3c:87:ea:77:a6:b0:f8:38:82:ab:
d7:06:35:05:08:bc:e0:d2:11:1f:58:41:cf:3d:48:
47:8b:e1:31:6e:0f:5c:82:27:7c:a8:b9:42:87:ad:
fe:71:52:69:e1:a7:a6:08:4f:94:19:f3:8b:db:34:
75:72:53:a4:2d:96:b0:f1:54:84:61:fb:80:9f:0d:
1a:7d:a6:d7:97:70:3c:4e:2f:1f:31:f6:7b:89:67:
c0:9a:cf:3a:cb:fa:c0:1b:d2:b0:fb:95:b0:27:dd:
6c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:48:46:0B:C2:2A:ED:52:43:F6:01:6E:12:FF:03:B1:6C:58:3A:A5
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/DEhGC8Iq7VJD9gFuEv8DsWxYOqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
45.154.238.0/24
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.6.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
b5:6e:f4:46:65:0e:38:7a:5e:dd:45:bc:94:69:b2:ae:88:d0:
78:68:de:a9:cc:f6:91:75:4a:de:0b:5a:f6:e9:a6:02:f2:d9:
d4:fc:ac:6b:a7:3c:d0:7b:6e:cc:47:c4:2d:7e:d9:3c:a8:3d:
d6:14:1e:05:e0:24:71:74:d1:b6:cf:ea:ee:9d:f7:ba:cc:51:
a2:5d:17:4c:59:bf:a3:05:42:7e:f5:19:58:27:2e:c5:7c:61:
92:8e:4c:29:b6:de:69:39:33:02:b1:77:90:c8:f4:b2:74:17:
f5:88:7f:28:bf:35:dc:6d:87:18:be:05:36:66:bd:27:1b:32:
7c:2f:ad:0a:92:ab:27:1a:b2:11:06:f0:42:c5:45:71:2a:59:
99:70:ac:a4:71:9c:71:33:c9:0f:1f:1e:af:49:3e:1d:db:f9:
2d:de:3f:3a:d5:b0:aa:16:39:e9:b8:ac:3c:c1:91:6f:9f:15:
eb:fc:42:27:a7:b0:7f:c3:41:5d:8e:47:dd:1a:a6:c6:c9:11:
36:81:75:78:4e:a6:84:27:1a:65:3f:73:0e:9a:31:70:66:c8:
b6:73:2d:a8:f2:02:2a:4f:36:f4:34:d9:7b:f5:98:29:0b:ec:
f6:1b:9e:d2:53:28:65:42:5c:a3:63:8f:85:b4:ed:5d:65:9d:
4b:32:82:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:05:16 2025 by rpki-client