Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/1-7VJ6ka_2GAkvGEryAeHXxTvzDs.roa
File: 1-7VJ6ka_2GAkvGEryAeHXxTvzDs.roa (raw, json)
Hash identifier: 19jMGWIT4+YgId8MFiLmP6eQLccHJUBGnMMAJMEuuec=
Subject key identifier: FB:B5:49:EA:46:BF:D8:60:24:BC:61:2B:C8:07:87:5F:14:EF:CC:3B
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01938CCF360E486D4FC7E3BC32CC1C22844D
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/1-7VJ6ka_2GAkvGEryAeHXxTvzDs.roa
Signing time: Tue 03 Dec 2024 13:56:50 +0000
ROA not before: Tue 03 Dec 2024 13:56:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3257
IP address blocks: 5.180.4.0/22 maxlen: 22
5.182.28.0/22 maxlen: 22
45.86.16.0/21 maxlen: 21
89.39.242.0/24 maxlen: 24
91.239.59.0/24 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.73.0/24 maxlen: 24
91.242.74.0/23 maxlen: 23
91.242.94.0/24 maxlen: 24
91.242.95.0/24 maxlen: 24
91.242.103.0/24 maxlen: 24
94.231.198.0/24 maxlen: 24
176.126.223.0/24 maxlen: 24
178.175.176.0/22 maxlen: 22
185.40.105.0/24 maxlen: 24
185.180.145.0/24 maxlen: 24
185.212.11.0/24 maxlen: 24
194.50.206.0/23 maxlen: 24
195.138.103.0/24 maxlen: 24
195.138.104.0/22 maxlen: 24
195.138.105.0/24 maxlen: 24
195.138.106.0/24 maxlen: 24
195.138.108.0/24 maxlen: 24
195.138.112.0/24 maxlen: 24
195.138.116.0/24 maxlen: 24
195.138.120.0/24 maxlen: 24
195.138.122.0/23 maxlen: 23
195.138.124.0/22 maxlen: 22
195.138.124.0/24 maxlen: 24
195.216.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:cf:36:0e:48:6d:4f:c7:e3:bc:32:cc:1c:22:84:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Dec 3 13:56:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbb549ea46bfd86024bc612bc807875f14efcc3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:25:bc:a4:ab:de:01:a9:db:5b:36:4b:2c:96:
60:59:70:15:01:09:b7:9d:a0:9d:52:07:af:6d:27:
60:20:25:13:d3:39:c4:59:08:2d:c7:b7:a8:d6:4c:
59:9b:76:82:c6:00:1c:66:6f:5e:fd:08:d8:18:b2:
d0:f2:5c:4a:be:43:9f:00:68:9c:8f:26:03:f1:dc:
9f:c9:a9:6a:b2:a0:ab:21:7c:5d:e4:e4:12:1b:ad:
d0:70:1f:0b:f3:50:51:64:33:cd:9b:25:61:89:82:
c7:1d:01:92:1e:5a:af:34:72:91:86:b7:6e:74:bd:
b5:4d:02:ae:3a:e9:44:3b:1f:45:19:9b:0d:0c:ed:
83:92:7f:b4:ca:5c:98:c4:1c:04:30:07:00:a2:48:
e1:6f:b3:f8:ee:d2:c3:56:17:d0:98:10:1a:ed:0b:
e2:dd:76:53:fc:b9:66:9e:1c:dd:87:28:57:02:ed:
f2:ef:26:ba:60:1e:b2:19:1b:3b:7a:eb:dd:84:ee:
11:b4:49:10:30:d0:df:7a:47:5f:50:57:8e:77:d6:
72:01:5b:03:26:6a:a3:c6:8a:90:a8:cc:b3:26:ea:
24:5e:76:ad:ea:46:0c:8e:8a:90:a8:46:7f:2b:3b:
b1:ff:05:fa:67:9b:05:11:18:d4:e8:3f:3b:23:30:
ba:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B5:49:EA:46:BF:D8:60:24:BC:61:2B:C8:07:87:5F:14:EF:CC:3B
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/1-7VJ6ka_2GAkvGEryAeHXxTvzDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.4.0/22
5.182.28.0/22
45.86.16.0/21
89.39.242.0/24
91.239.59.0/24
91.242.72.0/22
91.242.94.0/23
91.242.103.0/24
94.231.198.0/24
176.126.223.0/24
178.175.176.0/22
185.40.105.0/24
185.180.145.0/24
185.212.11.0/24
194.50.206.0/23
195.138.103.0-195.138.108.255
195.138.112.0/24
195.138.116.0/24
195.138.120.0/24
195.138.122.0-195.138.127.255
195.216.156.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:22:5e:38:5f:0e:99:4f:1c:24:c3:8e:99:a4:6f:8b:8b:93:
00:fc:26:f4:92:f2:cf:b8:5a:29:be:39:42:bb:34:f3:b3:26:
71:c9:44:2c:e7:98:a8:ca:14:25:bc:73:cb:b6:85:47:8f:9d:
a7:1c:95:41:23:f4:f1:10:f4:c3:13:7f:82:54:b6:55:1e:27:
9d:17:57:10:b5:fd:8d:79:91:b2:1b:c2:61:0f:2b:11:08:3d:
7d:9c:31:63:5c:d3:f6:3f:d5:46:69:c0:93:87:e4:b2:3f:0a:
a1:79:44:90:e6:56:f4:63:ad:22:bf:c6:bf:77:b5:97:d6:be:
01:f8:48:b4:04:37:f9:c6:c7:d2:d9:08:7c:da:e8:96:eb:93:
87:0d:21:1e:af:e2:8f:54:af:3e:3b:c6:7f:70:f6:73:31:92:
3d:0c:a0:32:c4:87:67:05:b6:e2:9d:eb:53:0f:71:a3:67:db:
13:45:19:39:a6:c4:1e:c6:05:05:15:09:5a:fc:f8:8c:32:ba:
8a:69:87:44:b0:db:a2:47:00:06:0d:fb:67:d8:23:43:94:a4:
eb:48:6f:96:77:a2:b0:10:2c:05:c7:82:c2:48:52:84:e1:22:
4f:96:e8:18:26:6e:ef:d3:88:aa:4f:eb:19:3a:af:49:50:44:
2f:88:14:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:26:31 2025 by rpki-client