Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/eldr0Gd72QMDJnfB5g3XkvXB5MA.roa
File: eldr0Gd72QMDJnfB5g3XkvXB5MA.roa (raw, json)
Hash identifier: TtEGiXJhnS9J3b71Jc1YsSME+mGa0e8iTuBkAI+Nugs=
Subject key identifier: 7A:57:6B:D0:67:7B:D9:03:03:26:77:C1:E6:0D:D7:92:F5:C1:E4:C0
Certificate issuer: /CN=8bb1308c6a977d5cb903bf25a96308b0e8ce3b46
Certificate serial: 01955368EB262787B77D95FA20F9761D67B2
Authority key identifier: 8B:B1:30:8C:6A:97:7D:5C:B9:03:BF:25:A9:63:08:B0:E8:CE:3B:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7EwjGqXfVy5A78lqWMIsOjOO0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/eldr0Gd72QMDJnfB5g3XkvXB5MA.roa
Signing time: Sat 01 Mar 2025 20:32:19 +0000
ROA not before: Sat 01 Mar 2025 20:32:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41155
IP address blocks: 45.91.151.0/24 maxlen: 24
45.93.244.0/24 maxlen: 24
45.93.245.0/24 maxlen: 24
45.93.246.0/24 maxlen: 24
45.93.247.0/24 maxlen: 24
45.156.72.0/24 maxlen: 24
45.156.73.0/24 maxlen: 24
45.156.74.0/24 maxlen: 24
45.156.75.0/24 maxlen: 24
45.158.136.0/24 maxlen: 24
45.158.137.0/24 maxlen: 24
45.158.138.0/24 maxlen: 24
45.158.139.0/24 maxlen: 24
77.75.231.0/24 maxlen: 24
109.107.134.0/24 maxlen: 24
185.34.103.0/24 maxlen: 24
185.89.23.0/24 maxlen: 24
185.222.215.0/24 maxlen: 24
188.244.116.0/24 maxlen: 24
194.0.193.0/24 maxlen: 24
194.0.221.0/24 maxlen: 24
194.0.223.0/24 maxlen: 24
194.1.200.0/24 maxlen: 24
2a0d:8e80:2659::/48 maxlen: 48
2a0d:8e80:8080::/48 maxlen: 48
2a0d:8e80:8a80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:53:68:eb:26:27:87:b7:7d:95:fa:20:f9:76:1d:67:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb1308c6a977d5cb903bf25a96308b0e8ce3b46
Validity
Not Before: Mar 1 20:32:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a576bd0677bd903032677c1e60dd792f5c1e4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b3:03:2b:04:d7:33:12:89:a9:7e:70:e1:90:
42:21:e8:0f:4c:66:ce:3e:04:fa:a1:6f:20:00:2d:
c5:46:08:4f:80:08:d2:dc:b9:0b:04:09:25:30:78:
28:aa:a2:61:43:7d:66:ed:17:20:3b:de:fb:d1:f9:
ed:27:e1:66:c6:88:0c:b7:7a:8c:79:cd:36:48:55:
85:ea:fe:66:e2:1e:cc:b5:4c:2e:c3:00:68:69:b0:
8f:b5:b2:6a:29:b8:d4:95:20:e8:d8:03:64:92:aa:
9b:cc:7b:c1:cc:6d:5a:27:c1:5e:0b:19:02:08:1b:
35:b5:34:4c:09:de:20:d1:d0:3c:69:df:11:e7:c6:
72:b6:f7:02:1b:64:d7:23:41:48:7e:0a:f7:c8:0c:
84:3d:68:7f:0f:4a:d6:43:87:51:4e:6e:90:97:a9:
6f:70:c7:99:4f:52:b0:bd:e4:b3:a2:d8:e1:ed:d1:
7a:4b:4e:da:0c:bc:eb:1f:c0:87:53:d5:89:d0:d2:
37:9c:9d:87:25:96:69:e0:dc:0a:55:12:68:60:ac:
aa:43:75:ac:7b:a6:dc:97:47:05:d5:00:df:0f:42:
79:29:81:45:94:b8:43:de:0b:87:1b:83:16:8d:3a:
81:5d:75:72:42:3a:2b:a9:e7:8c:e9:18:dc:64:51:
66:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:57:6B:D0:67:7B:D9:03:03:26:77:C1:E6:0D:D7:92:F5:C1:E4:C0
X509v3 Authority Key Identifier:
keyid:8B:B1:30:8C:6A:97:7D:5C:B9:03:BF:25:A9:63:08:B0:E8:CE:3B:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7EwjGqXfVy5A78lqWMIsOjOO0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/eldr0Gd72QMDJnfB5g3XkvXB5MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/i7EwjGqXfVy5A78lqWMIsOjOO0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.151.0/24
45.93.244.0/22
45.156.72.0/22
45.158.136.0/22
77.75.231.0/24
109.107.134.0/24
185.34.103.0/24
185.89.23.0/24
185.222.215.0/24
188.244.116.0/24
194.0.193.0/24
194.0.221.0/24
194.0.223.0/24
194.1.200.0/24
IPv6:
2a0d:8e80:2659::/48
2a0d:8e80:8080::/48
2a0d:8e80:8a80::/48
Signature Algorithm: sha256WithRSAEncryption
48:21:b4:e9:3b:e9:28:62:f5:78:e5:be:df:74:51:54:8d:42:
92:bf:c5:20:1f:ef:af:b4:bb:89:54:83:c7:86:df:60:62:93:
a1:ef:6a:83:70:70:6c:80:83:68:55:3b:a2:03:94:15:c6:24:
23:ed:d2:74:ed:75:2f:3e:7e:8e:1c:55:76:df:16:82:8b:d8:
41:53:ae:a3:60:40:75:a4:b9:17:6a:6c:ed:93:83:d6:08:93:
3e:1d:4e:39:4c:6d:fe:b3:4e:9a:b1:8e:d1:3b:02:99:6f:ee:
e3:6c:5d:a5:b7:d6:40:0e:0e:4a:b9:67:8b:ec:b7:64:0f:0d:
ea:ac:d3:2f:8f:e2:db:68:84:5c:41:39:d1:a4:ee:d3:63:b9:
99:39:05:ab:7e:2e:e1:68:5d:30:00:eb:ee:f7:dd:a2:ce:2c:
36:73:38:87:23:7d:93:5e:78:3c:3d:24:68:c6:d1:23:10:90:
65:fa:61:7d:5f:8b:8a:0f:18:9f:56:e4:e2:e9:f1:33:21:c2:
86:72:fe:27:01:1c:a2:a0:a0:6d:87:45:2f:8e:12:c2:f1:38:
fd:75:4d:05:b7:f5:34:30:e3:dd:dd:7c:58:46:11:e4:89:3d:
8e:21:a6:25:74:c9:3c:0a:16:be:93:b3:4d:cc:e6:f3:17:98:
36:4c:1b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:15:02 2025 by rpki-client