Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/oBRViMwdBVf-lxNWOPY8rAZKHiE.roa
File: oBRViMwdBVf-lxNWOPY8rAZKHiE.roa (raw, json)
Hash identifier: 14VFYlSK7oJB718R+s/zQTBzUR3RVIri84bgslTT/Kc=
Subject key identifier: A0:14:55:88:CC:1D:05:57:FE:97:13:56:38:F6:3C:AC:06:4A:1E:21
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0195CC8A4A58069F3E9A400093A1E3626685
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/oBRViMwdBVf-lxNWOPY8rAZKHiE.roa
Signing time: Tue 25 Mar 2025 09:02:49 +0000
ROA not before: Tue 25 Mar 2025 09:02:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56382
IP address blocks: 45.152.124.0/24 maxlen: 24
45.152.125.0/24 maxlen: 24
45.152.126.0/24 maxlen: 24
45.152.127.0/24 maxlen: 24
194.5.96.0/24 maxlen: 24
194.5.99.0/24 maxlen: 24
2a0f:5700::/32 maxlen: 48
2a0f:5700:1220::/44 maxlen: 44
2a0f:5700:fe80::/48 maxlen: 48
2a0f:5701:1220::/44 maxlen: 44
2a0f:5701:fe01::/48 maxlen: 48
2a0f:5701:fe80::/48 maxlen: 48
2a0f:5702::/32 maxlen: 48
2a0f:5707:1220::/44 maxlen: 44
2a0f:5707:aa80::/44 maxlen: 48
2a0f:5707:ab80::/44 maxlen: 48
2a0f:5707:ac80::/44 maxlen: 44
2a0f:5707:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:cc:8a:4a:58:06:9f:3e:9a:40:00:93:a1:e3:62:66:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Mar 25 09:02:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0145588cc1d0557fe97135638f63cac064a1e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0a:d9:2d:4c:93:9d:2e:57:16:06:0b:6a:de:
70:c5:4e:ca:78:2b:3e:f8:91:bb:92:48:ea:50:b4:
b0:8e:95:62:4d:68:5a:55:74:5e:58:46:77:b2:47:
16:01:d2:7c:47:e0:b7:86:7d:e2:d0:f7:aa:36:a7:
77:31:61:c9:5b:a7:b1:b3:3a:aa:e3:b0:8e:4d:ad:
ef:28:68:88:1d:6b:d0:bb:cc:02:85:8d:0e:9c:88:
60:93:a7:a0:ed:e5:e8:a1:83:85:52:6e:85:ba:75:
2c:bc:e3:73:bf:36:63:e2:3b:a7:58:09:e6:aa:32:
ce:d1:58:fc:3a:fc:55:51:bc:e5:84:a7:1a:7d:e5:
55:16:cf:8c:bc:f7:c5:82:a6:c7:8d:c6:c4:39:61:
61:1b:dc:e4:96:c7:df:a1:c6:57:bf:65:1a:47:d9:
81:e5:1d:df:fb:ce:19:91:98:cc:bb:02:4c:52:4f:
14:b7:8a:4e:11:eb:18:91:9b:8f:51:dc:ec:db:db:
a3:10:eb:b9:95:b2:6b:77:6b:93:8f:15:5f:e9:11:
c3:fa:56:0a:98:68:92:04:6c:d4:57:a8:d7:d2:5a:
8a:88:6a:62:23:4a:5c:d1:6a:ad:32:de:81:02:dc:
f2:ef:40:d7:c4:89:60:8e:e4:a4:79:9b:12:e4:c5:
87:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:14:55:88:CC:1D:05:57:FE:97:13:56:38:F6:3C:AC:06:4A:1E:21
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/oBRViMwdBVf-lxNWOPY8rAZKHiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.124.0/22
194.5.96.0/24
194.5.99.0/24
IPv6:
2a0f:5700::/32
2a0f:5701:1220::/44
2a0f:5701:fe01::/48
2a0f:5701:fe80::/48
2a0f:5702::/32
2a0f:5707:1220::/44
2a0f:5707:aa80::/44
2a0f:5707:ab80::/44
2a0f:5707:ac80::/44
2a0f:5707:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
5d:b9:f4:b9:de:d4:0c:68:16:23:01:63:4b:f2:d4:a0:0e:09:
87:e8:83:e1:3f:d6:26:46:b6:45:5e:b6:1a:b4:72:2d:84:99:
9b:12:94:ae:7d:f0:00:c2:46:8f:db:15:4f:6c:03:c4:39:b3:
df:f5:17:0a:8e:1d:fb:fa:27:40:bf:39:0a:33:fe:fc:17:20:
f1:c0:0a:e5:0a:bf:75:1e:14:43:bd:32:4e:27:3d:f1:ec:40:
91:7a:e6:fb:36:a1:b9:07:7b:4c:eb:17:80:c2:5b:15:06:0a:
41:cb:84:db:85:08:00:8a:2f:30:31:61:b1:bd:bf:39:42:16:
05:40:94:b7:37:b4:5e:05:15:7d:ff:f8:d9:6e:ba:b3:99:db:
1f:87:3c:ac:1c:50:c0:7b:40:51:64:b6:e6:6b:a4:32:37:57:
93:e1:e9:d3:1d:13:e9:42:0c:c7:bf:3e:6d:64:1c:12:a5:23:
a7:1e:97:8c:b9:1f:ee:04:f5:6e:9c:6d:4c:80:0e:ed:ec:7e:
1c:ce:c1:8f:61:53:72:8b:8d:d2:e7:4c:43:2e:33:e9:44:cc:
ce:c9:62:fc:b9:84:1b:e6:f5:7a:74:f5:5f:41:45:d3:f6:b0:
23:7c:2c:0a:65:92:e3:1e:36:cf:00:f4:f4:93:fe:63:bd:c3:
34:8d:e5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:44 2025 by rpki-client