Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/1gXiZJIhwZLWdoIWM0b6J6YTu5g.roa
File: 1gXiZJIhwZLWdoIWM0b6J6YTu5g.roa (raw, json)
Hash identifier: KJR1VSq0Qc5EGOIVTKE1cbvPrRXEW2OuZSv6xb0kPuU=
Subject key identifier: D6:05:E2:64:92:21:C1:92:D6:76:82:16:33:46:FA:27:A6:13:BB:98
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0185485A171649691BC7A00A60573115DFB6
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/1gXiZJIhwZLWdoIWM0b6J6YTu5g.roa
Signing time: Sun 25 Dec 2022 08:15:41 +0000
ROA not before: Sun 25 Dec 2022 08:15:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.176.54.0/24 maxlen: 24
193.176.55.0/24 maxlen: 24
45.154.104.0/23 maxlen: 24
91.199.168.0/24 maxlen: 24
141.98.156.0/23 maxlen: 24
147.78.120.0/23 maxlen: 24
45.149.186.0/23 maxlen: 24
45.158.8.0/23 maxlen: 24
195.206.230.0/24 maxlen: 24
195.206.231.0/24 maxlen: 24
176.105.224.0/23 maxlen: 24
195.206.234.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
195.206.235.0/24 maxlen: 24
45.142.236.0/23 maxlen: 24
45.142.238.0/23 maxlen: 24
193.111.117.0/24 maxlen: 24
45.158.170.0/23 maxlen: 24
45.158.168.0/23 maxlen: 24
193.151.182.0/23 maxlen: 24
193.151.180.0/23 maxlen: 24
195.20.98.0/24 maxlen: 24
194.104.156.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
152.89.250.0/23 maxlen: 24
193.29.96.0/23 maxlen: 24
193.29.98.0/23 maxlen: 24
194.147.4.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
194.5.146.0/23 maxlen: 24
193.142.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:48:5a:17:16:49:69:1b:c7:a0:0a:60:57:31:15:df:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 25 08:15:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d605e2649221c192d67682163346fa27a613bb98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:99:46:c6:ca:d4:36:92:13:8c:aa:e5:30:f9:
58:62:01:de:d6:df:7e:e2:4a:af:34:a1:8b:31:d6:
10:30:74:9c:a9:5d:35:b1:16:a8:9c:b5:1c:91:e6:
2a:aa:85:57:cd:e2:26:32:84:55:c9:88:b9:91:8f:
8d:c0:41:16:0c:55:bd:77:2b:42:a0:12:64:45:09:
95:ee:88:ea:ce:38:7e:d3:33:ec:db:3a:be:af:a1:
6f:45:fe:5e:06:6a:b9:3b:93:f2:aa:e5:6c:60:7f:
4e:30:30:4c:e7:bf:ff:20:04:bd:a9:be:84:47:74:
4f:11:36:17:d0:ff:04:1c:4c:1e:d4:33:75:60:f4:
8a:ff:21:0a:1c:a3:00:44:ca:02:19:b5:b4:e8:f1:
2c:d5:b4:a6:c1:bf:f3:3c:3b:6a:9a:4f:7f:ee:56:
8e:46:6f:38:0b:cf:6f:4d:d6:ab:5d:29:02:47:5e:
43:21:ba:d6:3c:d3:db:48:8c:36:4e:fa:d6:c1:e5:
4c:2f:02:4f:43:bc:e7:43:59:7a:47:9f:52:d0:e3:
b4:76:2c:1c:59:90:d3:14:ec:9d:e7:cb:bb:e0:43:
f5:64:f0:82:35:2a:16:7a:6c:f2:6c:01:2c:b8:61:
6b:a3:09:b4:a1:3c:7e:90:e7:7d:a9:f4:26:71:1a:
1b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:05:E2:64:92:21:C1:92:D6:76:82:16:33:46:FA:27:A6:13:BB:98
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/1gXiZJIhwZLWdoIWM0b6J6YTu5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.236.0/22
45.149.186.0/23
45.153.6.0/23
45.154.104.0/23
45.158.8.0/23
45.158.168.0/22
91.199.168.0/24
141.98.156.0/23
147.78.120.0/23
152.89.250.0/23
176.105.224.0/23
193.29.96.0/22
193.111.117.0/24
193.142.22.0/24
193.151.180.0/22
193.176.54.0/23
194.5.146.0/23
194.104.156.0/24
194.105.21.0/24
194.147.4.0/22
195.20.98.0/24
195.206.230.0/23
195.206.234.0/23
Signature Algorithm: sha256WithRSAEncryption
94:8e:aa:e7:b0:26:2d:23:ae:51:47:01:1e:d4:64:3d:26:55:
e7:ae:4c:55:8b:ee:a2:ba:6f:fc:d7:51:0e:49:9a:ea:3c:60:
b6:1a:29:a9:ff:b9:8a:fb:69:b8:7a:7c:22:ec:f2:52:5f:6c:
93:30:94:89:b2:01:52:1a:e4:8e:db:bb:0a:31:8c:96:f9:0b:
76:77:19:d7:d7:43:5e:54:7b:09:85:0e:53:d4:7b:31:31:de:
c9:8d:77:89:51:d9:61:62:63:97:e1:56:6f:21:c5:a1:79:d2:
65:ef:05:4b:7a:39:73:00:63:9e:8c:83:38:da:f5:cc:dd:0f:
ef:7b:e6:14:96:c5:a1:96:07:18:f3:54:c6:e7:bd:25:ce:da:
ab:0d:0d:4a:a6:92:a1:f4:c6:c2:2e:00:f4:95:4f:fd:77:34:
b4:67:1b:27:b0:dc:18:1d:50:7e:9a:a7:d0:94:1e:3b:8c:00:
55:a3:14:71:98:aa:74:b2:ce:04:d0:9b:68:b6:24:51:b2:f0:
74:bf:d4:89:19:e4:f8:97:13:66:0e:d7:db:ad:d7:7c:36:bf:
7e:ce:05:67:aa:dc:08:45:25:22:fd:d7:4b:d6:8c:0e:64:0a:
61:eb:5f:2e:1d:d9:b7:fb:c2:5e:ac:61:08:8f:34:d1:89:49:
6c:ad:a8:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:28 2025 by rpki-client