Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Wkcvej3EBB4EJntbF1ARBY1aGJE.roa
File: Wkcvej3EBB4EJntbF1ARBY1aGJE.roa (raw, json)
Hash identifier: gCw/DW2lAL45Pz1egkAHiQogyCsVWLC4aoRIDIiJzOc=
Subject key identifier: 5A:47:2F:7A:3D:C4:04:1E:04:26:7B:5B:17:50:11:05:8D:5A:18:91
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018D81F68E6F6834C2ED137A563CFFEDD5F5
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Wkcvej3EBB4EJntbF1ARBY1aGJE.roa
Signing time: Wed 07 Feb 2024 05:07:15 +0000
ROA not before: Wed 07 Feb 2024 05:07:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203963
IP address blocks: 37.49.144.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
37.49.149.0/24 maxlen: 24
37.49.150.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.182.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
109.203.163.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.144.0/24 maxlen: 24
176.46.148.0/24 maxlen: 24
176.46.149.0/24 maxlen: 24
176.46.150.0/24 maxlen: 24
176.46.152.0/24 maxlen: 24
176.46.153.0/24 maxlen: 24
176.46.154.0/24 maxlen: 24
176.46.155.0/24 maxlen: 24
176.46.156.0/24 maxlen: 24
176.46.157.0/24 maxlen: 24
176.46.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f6:8e:6f:68:34:c2:ed:13:7a:56:3c:ff:ed:d5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Feb 7 05:07:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a472f7a3dc4041e04267b5b175011058d5a1891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a5:6c:9d:31:cf:1f:04:6a:82:eb:7e:83:bb:
f3:1e:9b:ce:9d:29:20:c0:46:b9:1d:29:5b:5b:40:
55:a7:cb:fe:9f:2c:31:87:1e:ed:3c:5e:41:93:45:
69:32:36:f7:83:90:ed:1b:55:fd:9f:56:3c:b7:39:
6c:78:77:a4:4b:9e:b2:b9:73:b7:4a:a1:98:35:f3:
e9:93:03:8b:5d:14:67:3e:f6:42:66:4b:ed:2e:b0:
b9:a4:1f:36:64:f5:a4:59:56:6a:74:a3:38:b5:ff:
e9:1f:b4:66:49:23:2b:b1:ef:9a:ab:51:c6:a5:fb:
9b:e0:67:a5:84:aa:9c:e6:fe:70:f2:27:03:c0:4e:
0a:7d:44:9c:11:29:0e:0b:34:0a:59:eb:85:1a:1b:
19:f3:2f:49:a9:ab:9b:e3:17:83:d4:ff:12:4a:41:
f2:78:1a:79:c7:0d:83:59:4f:1c:34:1c:93:55:b2:
0f:3d:5b:4a:8f:49:67:db:13:4c:12:44:dc:3a:e2:
3a:39:d3:77:b3:a7:ea:ee:d3:8f:39:55:13:cf:3d:
ff:cb:a3:ae:17:fc:63:a8:81:7f:5b:60:7b:c8:00:
f2:bc:ac:9e:82:e0:d0:09:df:3b:a9:bc:34:fa:08:
cb:af:6c:d6:a9:b5:f8:86:8f:69:c7:94:92:18:03:
c6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:47:2F:7A:3D:C4:04:1E:04:26:7B:5B:17:50:11:05:8D:5A:18:91
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Wkcvej3EBB4EJntbF1ARBY1aGJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.144.0/24
37.49.148.0-37.49.150.255
94.74.137.0/24
94.74.140.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.169.0/24
94.74.171.0/24
94.74.182.0/24
94.74.187.0/24
94.74.191.0/24
109.203.163.0/24
109.203.166.0/24
176.46.136.0/24
176.46.138.0/23
176.46.141.0-176.46.142.255
176.46.144.0/24
176.46.148.0-176.46.150.255
176.46.152.0-176.46.158.255
Signature Algorithm: sha256WithRSAEncryption
a9:a6:92:f8:ef:34:b0:c4:45:27:3e:5f:1a:50:07:1d:7a:aa:
e6:94:e3:3f:da:34:f8:5e:b3:4b:d3:e0:6b:43:9a:91:1b:e0:
fa:ce:0c:94:a4:b6:23:eb:d5:27:e9:57:3d:84:9b:fe:ae:b2:
8b:e8:d9:2b:15:66:49:5e:39:29:d6:70:f7:f6:0d:f0:7a:7d:
3e:a8:a3:b1:c3:f1:39:e2:c0:eb:40:c6:02:10:8a:73:ca:94:
c1:0b:c4:51:cf:b6:86:ed:9c:25:8b:ec:5a:6f:61:46:72:f3:
78:a0:1d:ba:ca:ee:8e:e0:24:8b:63:d3:07:01:b7:95:60:c0:
b3:ce:d7:9c:5c:b8:8d:51:a9:9c:23:9b:03:9a:55:2f:c7:55:
35:fb:3e:cd:6f:00:ef:33:27:9e:57:08:34:ae:20:a0:ae:6e:
dd:00:d3:bf:82:b0:d2:0a:53:82:07:c4:0b:41:70:91:31:59:
a7:5a:70:8c:bf:23:0f:1c:ce:9c:6c:de:96:91:ef:19:21:41:
5a:59:94:5c:2d:9d:30:f7:11:26:95:da:73:9f:d9:78:b6:ed:
80:1c:60:b3:21:8b:5f:e4:b9:a1:1c:2b:ef:55:d9:50:b1:48:
e4:56:69:e3:c1:ec:df:48:f6:c5:31:1d:01:d7:74:b0:98:ab:
06:87:55:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:30 2025 by rpki-client