Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/LNfEMDjY_YTxoMiy_uOumfnfyNk.roa
File: LNfEMDjY_YTxoMiy_uOumfnfyNk.roa (raw, json)
Hash identifier: jizecjae1peDBQRvjMSF893NWH3lcHT+Ec4yKOzqo74=
Subject key identifier: 2C:D7:C4:30:38:D8:FD:84:F1:A0:C8:B2:FE:E3:AE:99:F9:DF:C8:D9
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 01945F639D966A961FE5580A22105FB4BE70
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/LNfEMDjY_YTxoMiy_uOumfnfyNk.roa
Signing time: Mon 13 Jan 2025 11:19:11 +0000
ROA not before: Mon 13 Jan 2025 11:19:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215597
IP address blocks: 5.181.196.0/24 maxlen: 24
5.181.197.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.222.0/24 maxlen: 24
82.199.223.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.206.0/24 maxlen: 24
185.95.207.0/24 maxlen: 24
212.95.142.0/24 maxlen: 24
212.95.148.0/24 maxlen: 24
2a12:f680:200::/48 maxlen: 48
2a12:f680:201::/48 maxlen: 48
2a12:f680:204::/48 maxlen: 48
2a12:f680:205::/48 maxlen: 48
2a12:f680:600::/48 maxlen: 48
2a12:f680:601::/48 maxlen: 48
2a12:f680:604::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5f:63:9d:96:6a:96:1f:e5:58:0a:22:10:5f:b4:be:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Jan 13 11:19:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2cd7c43038d8fd84f1a0c8b2fee3ae99f9dfc8d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c2:48:fc:ec:fe:af:19:35:5b:09:23:ed:80:
84:58:1b:18:ee:3c:3a:6f:9d:da:df:58:63:df:09:
e4:24:3e:c9:a6:86:dc:32:9b:8f:c1:d6:d7:0d:ce:
da:66:da:c2:1f:10:53:12:9f:64:b6:26:c5:91:64:
3b:0c:7b:50:ed:9d:eb:98:59:3c:c5:73:7c:c4:b4:
5d:5b:1b:21:1c:97:c0:3b:84:c9:25:8b:2c:f4:7c:
a3:07:71:01:01:0e:3f:c2:2e:64:9f:11:9e:c8:de:
85:8b:a3:91:cb:be:b6:81:f9:4a:63:13:4e:6f:88:
24:02:04:a8:a5:5a:89:e1:23:4d:8d:e5:c4:8c:ef:
7a:90:d7:60:35:f7:b6:a9:cc:61:bd:56:9f:f1:9d:
03:25:06:c1:47:ba:68:d5:ad:73:db:20:54:64:12:
91:78:34:e2:ec:1e:35:09:61:d8:c4:98:84:ba:4f:
00:48:a8:2e:c6:5b:73:44:c1:c0:42:86:c0:68:e5:
17:3b:35:4d:b6:1e:d8:32:0b:1b:d1:4a:4b:0a:34:
f8:cd:48:b6:4d:bb:cc:d6:75:e4:07:14:79:18:f1:
d3:74:0b:3f:cd:56:ec:d6:51:fb:d4:8e:56:3f:c3:
b2:b4:45:c8:30:ac:dc:5e:29:72:0d:81:e6:33:6e:
a9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D7:C4:30:38:D8:FD:84:F1:A0:C8:B2:FE:E3:AE:99:F9:DF:C8:D9
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/LNfEMDjY_YTxoMiy_uOumfnfyNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0/23
82.199.222.0/23
91.213.191.0/24
91.217.185.0/24
185.95.206.0/23
212.95.142.0/24
212.95.148.0/24
IPv6:
2a12:f680:200::/47
2a12:f680:204::/47
2a12:f680:600::/47
2a12:f680:604::/48
Signature Algorithm: sha256WithRSAEncryption
66:d0:88:f1:3d:22:26:e7:13:bd:06:90:5f:3f:e8:2b:30:b7:
e3:44:bf:cd:8d:0b:d9:da:72:0f:86:70:0b:19:80:9e:5d:ce:
74:4c:8a:2a:9c:a9:a0:2f:88:54:c2:2e:73:5a:32:c2:4b:6e:
4a:b7:80:c8:c8:d8:6f:4a:ae:28:6e:47:19:7e:cf:f4:6b:9e:
7c:9a:c0:77:c0:a6:bc:ce:41:a8:3d:91:86:c1:77:eb:47:58:
6b:92:d0:f3:a8:04:de:ec:81:6b:7b:e8:40:fc:10:9b:a9:ce:
1f:b6:74:d4:6d:34:19:e4:72:f9:1a:8a:03:1a:7c:3a:da:55:
03:c0:01:8c:27:d1:f2:c6:42:6c:77:4d:6b:3e:57:7d:b0:f7:
30:2a:4d:6d:49:d0:46:db:9d:7b:df:77:20:02:62:df:61:33:
29:18:0b:eb:74:43:d8:f3:20:d9:3f:b1:92:1d:e3:c9:0b:97:
f5:a3:16:96:b2:91:47:0a:b5:bf:1d:5c:1c:46:f4:0e:f9:2f:
60:b6:17:c2:49:4a:e2:24:36:50:d7:c8:11:9f:9b:fc:75:99:
9a:14:af:93:d3:2c:06:30:9f:be:b5:e9:2b:89:6c:16:d6:ad:
2c:04:2b:4b:22:ce:78:0c:61:74:78:98:c1:0b:21:b5:f8:f8:
49:06:ad:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:47:43 2025 by rpki-client