Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/0p5C1yrqJZJkSrDUMWUQNcURmT4.roa
File: 0p5C1yrqJZJkSrDUMWUQNcURmT4.roa (raw, json)
Hash identifier: YWAjsw84d53fyzSzwoAtcIkVXTqkQlV9LuuMh9IML1g=
Subject key identifier: D2:9E:42:D7:2A:EA:25:92:64:4A:B0:D4:31:65:10:35:C5:11:99:3E
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 01900CA677891B53EC655FC089E52123B155
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/0p5C1yrqJZJkSrDUMWUQNcURmT4.roa
Signing time: Wed 12 Jun 2024 13:32:34 +0000
ROA not before: Wed 12 Jun 2024 13:32:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13194
IP address blocks: 62.84.0.0/19 maxlen: 32
77.38.128.0/17 maxlen: 32
79.135.128.0/19 maxlen: 32
80.254.208.0/20 maxlen: 32
85.115.96.0/19 maxlen: 32
87.226.0.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
89.201.0.0/17 maxlen: 32
91.142.0.0/20 maxlen: 32
91.188.32.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
94.30.128.0/17 maxlen: 32
109.110.0.0/19 maxlen: 32
185.144.184.0/22 maxlen: 32
188.112.128.0/18 maxlen: 32
195.62.128.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
217.198.224.0/20 maxlen: 32
217.199.96.0/19 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0c:a6:77:89:1b:53:ec:65:5f:c0:89:e5:21:23:b1:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jun 12 13:32:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d29e42d72aea2592644ab0d431651035c511993e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:28:e9:b1:65:50:fe:5f:04:d1:35:60:0a:35:
ae:47:22:c3:af:5e:40:7b:43:c6:f9:e1:c3:45:72:
72:07:79:44:50:c9:bd:13:a1:bd:29:34:48:f4:c3:
f7:5b:2f:d6:db:62:1b:3a:58:10:19:19:27:20:68:
c5:79:3a:98:c8:2d:80:d6:d5:a4:eb:a7:47:5f:e1:
fc:48:a6:c4:60:60:d3:a1:76:d1:00:5d:cf:c8:8d:
c1:8f:b6:c6:8c:08:ee:d7:bd:0e:63:0a:d8:aa:be:
5f:1f:26:ed:b8:5f:71:61:1e:68:d0:87:7b:12:98:
fb:52:85:41:25:12:41:68:72:a8:3b:61:70:be:4e:
83:bd:18:06:23:31:9c:32:85:8f:32:42:31:4b:48:
15:fc:e1:5a:a3:0a:ac:03:92:20:99:b5:b5:f2:c7:
83:b9:ff:3d:16:1e:a9:24:45:aa:d1:5a:60:1f:bb:
a7:29:60:07:94:67:81:c7:55:3a:41:2e:e3:b9:4a:
74:ca:a8:91:a0:9a:b7:56:85:d8:68:db:be:52:e0:
ec:b1:ed:a7:e8:60:4c:f3:94:35:c9:3e:ec:4a:9b:
48:a0:94:89:39:f7:d0:e4:71:a3:ee:fa:0e:57:06:
6d:8b:5d:8a:eb:58:75:43:10:4f:6c:9d:2f:bb:15:
21:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9E:42:D7:2A:EA:25:92:64:4A:B0:D4:31:65:10:35:C5:11:99:3E
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/0p5C1yrqJZJkSrDUMWUQNcURmT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.0.0/19
77.38.128.0/17
79.135.128.0/19
80.254.208.0/20
85.115.96.0/19
87.226.0.0/17
89.18.192.0/19
89.201.0.0/17
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
185.144.184.0/22
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.198.224.0/20
217.199.96.0/19
Signature Algorithm: sha256WithRSAEncryption
19:60:1b:d7:4e:dc:1f:93:53:ab:94:5b:18:b3:94:46:f9:fd:
f2:08:43:4c:3d:6c:92:ac:2f:50:66:a6:60:81:29:d8:4a:54:
88:7f:11:24:d8:e7:f3:80:96:cc:cb:77:2a:6b:2a:d2:ae:13:
9d:06:88:9a:09:9d:e5:cb:33:e3:ed:54:ee:da:48:32:4b:ae:
c5:61:9e:ed:f8:1a:76:04:1d:e4:c8:a3:9b:bb:3f:8b:89:a9:
7d:6b:ce:35:d0:5a:9d:9c:d1:24:79:97:34:88:ad:dc:58:a3:
01:1c:06:18:3c:77:e1:83:d2:6f:e1:9b:2d:9d:30:0e:e9:50:
c6:04:95:e2:21:60:83:c3:24:f0:b9:dd:64:43:81:6f:02:c3:
c1:dc:80:86:2c:aa:c5:a3:db:ab:26:ee:f6:df:a5:53:49:59:
bb:ce:b9:3f:ac:8d:b9:da:0b:0f:f9:0c:d4:75:a5:ad:81:4d:
74:3d:7d:b3:1d:84:52:11:92:96:7f:4b:f7:4e:d9:ef:c0:8b:
5a:f4:68:92:ed:c6:b5:c8:f7:0c:e7:b7:f1:3f:a1:ae:eb:cd:
10:ad:e9:7f:32:b7:31:36:34:f9:88:68:2b:2b:2b:41:d6:76:
b8:5d:dc:4d:92:16:b5:1c:3f:e1:02:3f:36:9f:9d:04:47:7e:
cb:9f:56:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:38 2025 by rpki-client