Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/6VEj8hFX83dP4cTfcpFmDeB3WK4.roa
File: 6VEj8hFX83dP4cTfcpFmDeB3WK4.roa (raw, json)
Hash identifier: 9iNEtr8XsCFGn75dg2M+2IpdUdlrA9H+OLDn6Iw/O78=
Subject key identifier: E9:51:23:F2:11:57:F3:77:4F:E1:C4:DF:72:91:66:0D:E0:77:58:AE
Certificate issuer: /CN=98f9e0c20acdc8faa7441a0843ff8a01f3d9dbc5
Certificate serial: 019427B69323026EC5942310FF812E504FE0
Authority key identifier: 98:F9:E0:C2:0A:CD:C8:FA:A7:44:1A:08:43:FF:8A:01:F3:D9:DB:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPngwgrNyPqnRBoIQ_-KAfPZ28U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/6VEj8hFX83dP4cTfcpFmDeB3WK4.roa
Signing time: Thu 02 Jan 2025 15:51:04 +0000
ROA not before: Thu 02 Jan 2025 15:51:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43037
IP address blocks: 77.75.72.0/21 maxlen: 21
77.75.72.0/23 maxlen: 23
77.75.74.0/24 maxlen: 24
77.75.75.0/24 maxlen: 24
77.75.76.0/23 maxlen: 23
77.75.78.0/23 maxlen: 23
185.66.188.0/22 maxlen: 22
2a02:598::/32 maxlen: 32
2a02:598:2::/48 maxlen: 48
2a02:598:a::/48 maxlen: 48
2a02:598:b::/48 maxlen: 48
2a02:598:3333::/48 maxlen: 48
2a02:598:4444::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:93:23:02:6e:c5:94:23:10:ff:81:2e:50:4f:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f9e0c20acdc8faa7441a0843ff8a01f3d9dbc5
Validity
Not Before: Jan 2 15:51:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e95123f21157f3774fe1c4df7291660de07758ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ca:cb:2d:85:c3:ba:14:c7:b7:58:f4:d2:cf:
1e:e8:10:59:c5:79:75:7a:aa:65:82:11:ce:a0:36:
6a:78:b9:8b:a9:b7:34:13:33:ab:9e:4f:87:e5:81:
81:49:79:6b:83:58:08:4b:52:bc:2a:f4:e5:77:24:
53:35:e0:f8:f8:00:fa:ac:69:1c:c2:7d:6c:db:28:
f5:36:58:05:29:d8:a6:c4:58:3c:07:b2:e8:93:5e:
45:14:5c:86:3f:74:ce:fc:19:ff:a5:60:f4:2f:cf:
d0:97:c0:7b:de:78:5c:20:2f:6b:f0:fd:18:d7:fe:
4b:28:16:b3:4b:b9:58:80:9f:65:5c:c3:74:94:24:
25:ac:1d:d0:31:d1:7a:81:53:55:83:d9:0f:bc:c3:
fc:ab:a8:0c:21:cf:62:a8:60:d2:4b:7a:09:45:7e:
96:e7:ba:d3:aa:10:95:01:bf:c7:dc:6e:98:19:3b:
9e:5a:cb:b0:41:e6:f1:7b:57:c1:8b:bd:06:2a:77:
bd:0c:02:f4:a1:8c:2b:ed:56:03:d5:d1:a1:3f:ef:
4d:0a:ac:d5:2d:62:51:e5:f8:1a:e3:e4:b6:1e:79:
92:ee:6e:96:ca:62:6b:00:f8:2a:26:ac:5d:d0:08:
d2:83:16:3d:f5:00:49:88:c9:df:99:e8:3e:25:a2:
39:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:51:23:F2:11:57:F3:77:4F:E1:C4:DF:72:91:66:0D:E0:77:58:AE
X509v3 Authority Key Identifier:
keyid:98:F9:E0:C2:0A:CD:C8:FA:A7:44:1A:08:43:FF:8A:01:F3:D9:DB:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPngwgrNyPqnRBoIQ_-KAfPZ28U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/6VEj8hFX83dP4cTfcpFmDeB3WK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/mPngwgrNyPqnRBoIQ_-KAfPZ28U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.72.0/21
185.66.188.0/22
IPv6:
2a02:598::/32
Signature Algorithm: sha256WithRSAEncryption
67:2b:a8:a8:2c:bc:a7:53:7f:28:cc:8e:d0:97:0a:08:47:e9:
02:aa:2b:25:02:9e:5d:da:f7:9c:14:dc:61:71:a6:ec:da:0a:
34:4a:83:64:61:fe:07:5c:cb:bc:16:be:0d:37:0a:59:93:d3:
86:a2:9e:96:89:e9:00:ff:b4:84:cf:72:60:00:e7:08:17:9b:
bf:1d:f1:08:0a:a8:8d:45:a4:e1:9e:f3:c3:0c:e8:24:cd:f0:
25:44:66:79:e7:03:78:b5:29:a7:c5:27:83:59:b7:8f:ce:d6:
ab:0b:61:8a:84:d1:20:d6:ac:73:9c:51:83:85:64:4c:d9:10:
3d:e9:63:03:fb:02:25:d0:21:cd:95:fa:14:66:e6:2e:9a:fb:
c8:68:10:39:1f:93:ab:87:40:26:65:f3:ed:8b:eb:68:6c:fd:
aa:a1:8d:73:9c:6c:57:cf:01:5b:73:be:5b:d6:a8:2e:4a:12:
d6:74:cd:47:a3:85:30:14:16:ba:fa:98:bb:d6:1b:e0:96:d6:
d3:55:8d:70:65:41:50:34:e5:92:3f:98:e3:0b:4c:05:da:20:
e6:88:99:0f:a5:10:ed:c2:80:7b:83:1b:6b:21:fa:53:b6:60:
5c:b6:c6:9f:3d:1d:35:8e:01:a6:49:e5:28:e0:0d:87:55:26:
89:06:d3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:16:16 2025 by rpki-client