Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/szknYhsQ6PRhmHkYe64X8e32Wd0.roa
File: szknYhsQ6PRhmHkYe64X8e32Wd0.roa (raw, json)
Hash identifier: Sr8UNnS2S1/xxxD9iuZT9maLslMljnKKHxmxub6SxSw=
Subject key identifier: B3:39:27:62:1B:10:E8:F4:61:98:79:18:7B:AE:17:F1:ED:F6:59:DD
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0184CEBE7D9E07E02F557E35472EADF57865
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/szknYhsQ6PRhmHkYe64X8e32Wd0.roa
Signing time: Thu 01 Dec 2022 17:31:41 +0000
ROA not before: Thu 01 Dec 2022 17:31:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.176.54.0/24 maxlen: 24
193.176.55.0/24 maxlen: 24
45.154.104.0/23 maxlen: 24
91.199.168.0/24 maxlen: 24
141.98.156.0/23 maxlen: 24
147.78.122.0/23 maxlen: 24
147.78.120.0/23 maxlen: 24
45.149.186.0/23 maxlen: 24
45.149.184.0/23 maxlen: 24
45.158.8.0/23 maxlen: 24
195.206.230.0/24 maxlen: 24
195.206.231.0/24 maxlen: 24
176.105.224.0/23 maxlen: 24
195.206.234.0/24 maxlen: 24
195.206.235.0/24 maxlen: 24
45.153.6.0/23 maxlen: 24
45.142.236.0/23 maxlen: 24
45.142.238.0/23 maxlen: 24
193.111.116.0/24 maxlen: 24
193.111.117.0/24 maxlen: 24
45.158.170.0/23 maxlen: 24
45.158.168.0/23 maxlen: 24
193.151.182.0/23 maxlen: 24
193.151.180.0/23 maxlen: 24
195.20.98.0/24 maxlen: 24
194.104.156.0/24 maxlen: 24
194.104.158.0/24 maxlen: 24
195.20.105.0/24 maxlen: 24
195.20.99.0/24 maxlen: 24
194.105.21.0/24 maxlen: 24
152.89.250.0/23 maxlen: 24
193.29.96.0/23 maxlen: 24
193.29.98.0/23 maxlen: 24
194.147.4.0/23 maxlen: 24
194.147.6.0/23 maxlen: 24
194.5.146.0/23 maxlen: 24
193.142.6.0/24 maxlen: 24
193.142.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:be:7d:9e:07:e0:2f:55:7e:35:47:2e:ad:f5:78:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 1 17:31:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b33927621b10e8f4619879187bae17f1edf659dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:48:1e:51:9b:66:9c:62:57:8d:d1:50:2e:fe:
c4:e9:b4:60:55:a8:50:59:bf:f1:62:4f:17:dd:b2:
72:6b:fb:81:40:32:6f:04:74:7b:c5:f0:af:1a:58:
07:81:a0:9c:f1:69:ab:ce:61:ce:9b:f6:f7:15:07:
b2:5d:eb:71:42:2a:3f:0f:45:ab:7b:ce:ec:2f:4d:
c8:f5:25:a4:5a:72:41:16:67:e7:cf:f8:ea:c6:ea:
7a:35:4e:6f:2a:40:66:24:5d:e5:42:2e:34:01:da:
f8:7c:69:11:11:50:ec:b3:7a:56:36:de:7a:a7:18:
b8:3e:c1:f8:18:7e:cc:ba:86:7e:98:88:53:0f:ee:
57:a5:e2:90:bb:e5:90:ad:d4:fc:a6:fa:45:f0:ce:
80:3e:53:24:da:cf:d3:27:34:ab:e7:1a:f3:52:08:
da:bc:95:5d:91:6a:d2:ef:81:3f:d8:7b:db:5e:de:
34:98:8c:4b:84:5e:e1:46:82:82:06:1e:eb:34:37:
6e:e6:58:f1:3f:2c:2e:03:df:12:a8:ca:6c:60:08:
ef:25:4f:28:84:cc:35:d6:fb:cd:86:42:dd:2a:cd:
ff:b0:89:c8:e5:be:64:99:b6:84:8c:01:a3:8a:e9:
87:20:ea:3a:f8:59:dc:3a:6c:5e:ce:f4:5d:06:23:
98:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:39:27:62:1B:10:E8:F4:61:98:79:18:7B:AE:17:F1:ED:F6:59:DD
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/szknYhsQ6PRhmHkYe64X8e32Wd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.236.0/22
45.149.184.0/22
45.153.6.0/23
45.154.104.0/23
45.158.8.0/23
45.158.168.0/22
91.199.168.0/24
141.98.156.0/23
147.78.120.0/22
152.89.250.0/23
176.105.224.0/23
193.29.96.0/22
193.111.116.0/23
193.142.6.0/24
193.142.22.0/24
193.151.180.0/22
193.176.54.0/23
194.5.146.0/23
194.104.156.0/24
194.104.158.0/24
194.105.21.0/24
194.147.4.0/22
195.20.98.0/23
195.20.105.0/24
195.206.230.0/23
195.206.234.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:42:1c:c9:92:e5:76:7c:99:3f:a4:e5:25:31:81:a0:62:5c:
e6:00:1e:44:da:86:22:d9:8d:e6:47:5d:b2:32:e5:03:16:ce:
73:f3:c1:9b:38:72:47:5a:0f:49:dc:c8:9d:1b:33:af:2f:8f:
df:1f:08:96:29:20:26:a8:ff:f0:4b:27:89:ca:f7:63:76:16:
de:c5:aa:3e:19:71:74:84:09:fa:dd:59:90:44:6a:89:13:de:
4a:84:e9:25:7d:f1:e8:ad:88:6a:fe:9c:ce:76:d8:b1:2c:59:
80:4e:7b:94:81:e7:e7:7f:b7:8b:99:fa:5b:a9:33:48:b0:70:
7d:31:80:50:48:ac:56:e3:82:6a:48:e1:bf:07:0b:57:e3:88:
7f:3a:87:90:d7:80:13:a5:ea:05:23:18:b0:12:25:fe:30:f2:
1c:40:fa:88:19:75:52:55:82:ac:80:32:72:33:d5:df:50:06:
b2:f5:0d:09:fe:92:4c:0a:e9:b4:2b:3d:70:13:39:71:ce:da:
85:08:d2:60:00:a8:ae:17:51:ce:36:41:75:53:93:e7:30:cf:
04:8e:ae:07:eb:3a:7f:c0:2c:68:d4:cd:70:a3:84:00:75:2b:
83:bb:c3:d8:3f:4e:ec:51:33:f5:08:48:07:31:f3:c0:49:cc:
97:ce:70:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:37:50 2025 by rpki-client