Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4zpdiTonCWQ5nTPVMo4YUXnBFrc.roa
File: 4zpdiTonCWQ5nTPVMo4YUXnBFrc.roa (raw, json)
Hash identifier: 9S3WQFZpPW0DcOyDEeV/m544W8GvaJmkgrwUEDaORw0=
Subject key identifier: E3:3A:5D:89:3A:27:09:64:39:9D:33:D5:32:8E:18:51:79:C1:16:B7
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0194B7BEC2DF705876CB8CB53B17B1A594E2
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4zpdiTonCWQ5nTPVMo4YUXnBFrc.roa
Signing time: Thu 30 Jan 2025 15:05:19 +0000
ROA not before: Thu 30 Jan 2025 15:05:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.28.0/22 maxlen: 22
45.67.117.0/24 maxlen: 24
45.150.168.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
89.40.161.0/24 maxlen: 24
91.242.70.0/24 maxlen: 24
91.242.71.0/24 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.73.0/24 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.105.0/24 maxlen: 24
91.242.123.0/24 maxlen: 24
91.242.124.0/24 maxlen: 24
91.242.126.0/24 maxlen: 24
91.242.127.0/24 maxlen: 24
185.40.105.0/24 maxlen: 24
185.180.145.0/24 maxlen: 24
193.31.104.0/22 maxlen: 22
194.50.200.0/24 maxlen: 24
194.50.201.0/24 maxlen: 24
194.180.238.0/24 maxlen: 24
195.138.103.0/24 maxlen: 24
195.138.104.0/22 maxlen: 24
195.138.104.0/24 maxlen: 24
195.138.107.0/24 maxlen: 24
195.138.109.0/24 maxlen: 24
195.138.110.0/24 maxlen: 24
195.138.111.0/24 maxlen: 24
195.138.113.0/24 maxlen: 24
195.138.114.0/24 maxlen: 24
195.138.115.0/24 maxlen: 24
195.138.116.0/24 maxlen: 24
195.138.118.0/24 maxlen: 24
195.138.120.0/24 maxlen: 24
195.138.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b7:be:c2:df:70:58:76:cb:8c:b5:3b:17:b1:a5:94:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 30 15:05:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e33a5d893a270964399d33d5328e185179c116b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ea:55:80:ce:55:09:2e:2d:84:e6:04:9c:90:
c2:a2:53:81:24:e4:fe:5a:3c:9d:a2:dd:3d:cf:b8:
bb:19:f5:71:00:e2:b0:1f:63:9f:e3:2e:fe:6d:83:
12:bb:61:06:c8:51:e0:94:35:4e:06:10:24:fc:ac:
47:8b:0d:6a:60:fe:49:df:5b:d6:13:d7:73:c0:33:
90:67:9b:0e:0a:8a:e8:98:65:e5:24:f7:c5:63:b8:
46:63:7f:f2:95:0e:15:87:c5:99:15:44:72:0c:bc:
69:8a:6a:f7:b2:ef:cc:32:29:ed:4b:dc:3a:e5:de:
82:b8:1d:36:68:41:a6:2f:c8:72:17:68:0b:ee:90:
1b:ea:9e:e8:f9:1f:08:b7:ab:86:8e:08:11:34:bf:
71:ae:8a:9e:51:12:23:dc:1b:3e:f2:4d:0b:6f:ca:
bc:29:95:32:06:81:d1:1b:63:25:01:8e:0d:35:a7:
e3:fe:b0:5e:7b:67:89:01:07:3b:c6:52:b4:68:70:
b6:f9:d1:27:83:10:41:57:74:72:1b:33:22:e7:72:
89:c2:24:ce:8a:c2:7a:4f:6a:a5:a7:6f:d8:a8:5c:
87:08:37:ac:57:da:50:df:d7:c5:11:77:fa:0f:29:
4a:75:b9:b7:4c:0b:d9:d5:20:9b:e4:e0:01:66:dd:
39:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3A:5D:89:3A:27:09:64:39:9D:33:D5:32:8E:18:51:79:C1:16:B7
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4zpdiTonCWQ5nTPVMo4YUXnBFrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.28.0/22
45.67.117.0/24
45.150.168.0/22
45.151.196.0/22
89.40.161.0/24
91.242.70.0-91.242.73.255
91.242.75.0/24
91.242.105.0/24
91.242.123.0-91.242.124.255
91.242.126.0/23
185.40.105.0/24
185.180.145.0/24
193.31.104.0/22
194.50.200.0/23
194.180.238.0/24
195.138.103.0-195.138.107.255
195.138.109.0-195.138.111.255
195.138.113.0-195.138.116.255
195.138.118.0/24
195.138.120.0/24
195.138.124.0/22
Signature Algorithm: sha256WithRSAEncryption
22:bf:6e:3c:3f:ee:73:73:2d:5a:60:1e:3b:4f:55:63:a3:87:
c1:f7:3f:66:52:a3:b5:0f:e1:71:4f:84:61:9d:4b:69:af:9b:
50:8e:34:1c:d5:6a:4e:5c:ae:c8:54:ce:c3:1e:43:81:2f:ad:
37:1d:4b:86:90:43:a5:86:4e:7c:9e:51:18:f1:da:a4:bd:96:
87:8c:27:09:6c:4e:17:03:fa:cb:a3:f4:0b:21:48:f0:3e:4f:
4c:84:83:6b:a7:1f:53:86:00:03:8d:d7:80:cb:91:08:52:d3:
e7:f0:14:91:2d:7b:a4:ee:a7:0f:9b:96:f8:82:2c:02:45:6b:
9d:dc:50:a0:b9:38:1e:ce:a7:fd:cd:97:1b:b3:e9:9e:08:f3:
ea:da:2d:df:16:a1:b6:f9:cf:da:65:ba:f3:3b:1e:c2:58:18:
d1:3f:f0:8a:e9:39:81:8a:7f:39:24:c7:5b:2b:95:72:21:3e:
62:4a:ed:2a:4e:c3:60:a6:50:6c:b6:26:be:b9:e5:43:93:fb:
3c:bb:87:d9:ac:31:98:67:b0:11:73:94:1a:35:51:d3:4b:09:
60:59:7c:0d:d3:9a:49:64:ca:be:97:a1:29:2f:a1:f7:e2:bb:
05:45:76:30:77:de:24:c4:4d:3e:37:b6:ab:89:f6:0b:1f:e9:
f3:e6:e0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:50:02 2025 by rpki-client