Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/fakXDMo3zyIUclESUX9dWmYL5TA.roa
File: fakXDMo3zyIUclESUX9dWmYL5TA.roa (raw, json)
Hash identifier: IcVzCrlp60ik4ciNebwcS9dD7bdLcMNXOEwcfbEsKXU=
Subject key identifier: 7D:A9:17:0C:CA:37:CF:22:14:72:51:12:51:7F:5D:5A:66:0B:E5:30
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 019594E85855D405E6B160040C8CEF35BE3E
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/fakXDMo3zyIUclESUX9dWmYL5TA.roa
Signing time: Fri 14 Mar 2025 13:46:49 +0000
ROA not before: Fri 14 Mar 2025 13:46:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62068
IP address blocks: 5.182.208.0/22 maxlen: 24
45.14.224.0/22 maxlen: 24
45.87.41.0/24 maxlen: 24
45.87.42.0/23 maxlen: 24
62.68.71.0/24 maxlen: 24
91.217.200.0/24 maxlen: 24
91.226.227.0/24 maxlen: 24
91.230.49.0/24 maxlen: 24
146.19.248.0/24 maxlen: 24
185.46.70.0/24 maxlen: 24
185.224.128.0/22 maxlen: 24
185.244.36.0/22 maxlen: 24
2a0d:2400::/29 maxlen: 39
2a0d:2780::/29 maxlen: 32
2a0e:16c0::/29 maxlen: 29
2a0e:1740::/29 maxlen: 29
2a0e:2000::/29 maxlen: 29
2a11:b240::/29 maxlen: 32
2a12:a8c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:94:e8:58:55:d4:05:e6:b1:60:04:0c:8c:ef:35:be:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Mar 14 13:46:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7da9170cca37cf2214725112517f5d5a660be530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:30:b5:7e:8f:08:fc:13:53:21:26:50:d0:
ff:55:86:39:f6:3d:b1:18:f8:8f:21:74:62:2b:4b:
fc:9f:2f:16:81:0b:37:14:25:2b:7f:5e:9e:9f:2a:
8c:69:0b:a1:70:a1:58:4b:0a:38:40:ed:60:02:be:
d2:a5:8c:22:ad:ad:db:a8:98:fc:5b:ff:50:4e:15:
f9:83:76:69:60:df:98:d3:ab:31:96:9f:27:4e:b7:
6c:db:99:6a:72:ff:d9:f8:6e:09:a7:af:45:94:80:
5d:a3:20:a5:0c:54:4d:20:78:ca:9a:15:d9:1d:d6:
32:25:cb:e4:c9:04:6c:b6:c2:cf:63:1b:ed:4f:a3:
e8:50:a4:a1:ae:e9:70:6d:03:7c:26:6c:54:8a:01:
f9:b3:28:66:20:0b:b5:2e:d3:d6:c3:ec:c8:00:2e:
3c:5a:b8:33:95:6f:72:06:d8:cd:9b:73:ba:82:eb:
cf:87:25:49:7b:5f:29:90:9b:d1:c6:14:a5:df:e0:
87:eb:d1:b3:c6:3b:d0:b0:ec:a2:24:71:38:a2:58:
f8:61:02:cd:89:5d:53:e4:74:18:f8:00:2a:7c:73:
86:98:c7:d9:5b:bd:18:1d:6c:b7:a6:c3:d4:89:00:
ce:58:d0:a1:dc:d6:33:dd:6e:b6:7e:da:f4:10:f0:
f0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A9:17:0C:CA:37:CF:22:14:72:51:12:51:7F:5D:5A:66:0B:E5:30
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/fakXDMo3zyIUclESUX9dWmYL5TA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.208.0/22
45.14.224.0/22
45.87.41.0-45.87.43.255
62.68.71.0/24
91.217.200.0/24
91.226.227.0/24
91.230.49.0/24
146.19.248.0/24
185.46.70.0/24
185.224.128.0/22
185.244.36.0/22
IPv6:
2a0d:2400::/29
2a0d:2780::/29
2a0e:16c0::/29
2a0e:1740::/29
2a0e:2000::/29
2a11:b240::/29
2a12:a8c0::/29
Signature Algorithm: sha256WithRSAEncryption
06:7c:94:9e:78:f9:9a:aa:08:23:8b:9c:b1:94:f8:95:c9:b1:
f6:2e:9f:b0:95:3c:42:ec:27:28:c4:7d:03:a5:7f:b6:86:5e:
03:77:de:be:24:fb:6b:ec:b2:b9:35:99:9b:0e:61:9c:a2:d7:
6f:b1:f3:b5:8c:6c:4e:16:68:bb:d9:4e:cb:69:f0:31:3f:f7:
1b:7f:c8:ff:6b:04:c9:45:6d:c9:1a:67:6b:20:51:c7:02:f4:
a8:2e:eb:ae:bf:a4:6c:ef:05:8a:80:e6:17:28:c3:42:0a:27:
0c:77:4d:c3:c7:9b:12:a8:30:1b:72:23:cb:af:f7:e3:13:a0:
46:e8:52:79:23:36:52:cc:ba:ca:d2:e8:33:bc:09:e9:b3:b9:
44:d4:c7:c4:c7:dd:58:6d:c9:9f:91:3d:11:dc:57:7c:a6:ae:
1c:ff:e3:ed:6c:95:9d:1e:00:35:c3:9e:c7:7a:82:da:3c:3b:
dc:6d:cc:24:35:af:e6:9a:14:d1:2c:99:ef:de:2a:4d:b3:f5:
ae:f2:56:fa:69:f2:6f:9f:9a:53:ed:67:6d:d7:8b:cf:64:4d:
32:d4:ce:df:3e:e2:c0:84:54:ef:6a:04:3c:2d:2d:66:47:d5:
2d:db:e5:ce:6e:92:17:c0:d6:8b:90:47:df:b6:3f:29:94:30:
38:3b:e6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:30:54 2025 by rpki-client