Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/PPn88xNGN-bL0F7MubjXlyHvb9c.roa
File: PPn88xNGN-bL0F7MubjXlyHvb9c.roa (raw, json)
Hash identifier: nLdf7Pq2piaIE9RRNqGUwrSH2EAIpbdo6397rklNDK8=
Subject key identifier: 3C:F9:FC:F3:13:46:37:E6:CB:D0:5E:CC:B9:B8:D7:97:21:EF:6F:D7
Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Certificate serial: 019420D649E1CB1B1BEBC70280D4342495F4
Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/PPn88xNGN-bL0F7MubjXlyHvb9c.roa
Signing time: Wed 01 Jan 2025 07:48:22 +0000
ROA not before: Wed 01 Jan 2025 07:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16246
IP address blocks: 77.87.232.0/21 maxlen: 21
78.108.144.0/21 maxlen: 21
78.108.152.0/21 maxlen: 21
82.150.160.0/19 maxlen: 19
86.63.192.0/19 maxlen: 19
91.197.116.0/22 maxlen: 22
92.240.160.0/19 maxlen: 19
94.74.192.0/18 maxlen: 18
95.143.128.0/20 maxlen: 20
176.98.96.0/20 maxlen: 20
178.17.96.0/20 maxlen: 20
185.15.252.0/22 maxlen: 22
188.175.0.0/16 maxlen: 16
213.180.32.0/19 maxlen: 19
2a00:d480::/32 maxlen: 32
2a02:350::/29 maxlen: 29
2a03:b4c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:49:e1:cb:1b:1b:eb:c7:02:80:d4:34:24:95:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Validity
Not Before: Jan 1 07:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3cf9fcf3134637e6cbd05eccb9b8d79721ef6fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d0:8a:fb:0c:d0:d4:3d:08:4c:e5:6c:33:ca:
1f:b7:04:79:63:85:21:9c:c4:bd:66:83:9e:53:5b:
83:78:1f:54:dc:1f:f2:38:45:7a:35:8b:dd:48:59:
36:53:09:79:72:bd:63:30:1d:c0:5d:3b:0e:16:eb:
b8:27:28:88:02:38:1a:a9:d1:a3:87:bd:4d:83:bb:
81:ce:6f:39:ef:63:51:7b:0f:41:d9:0f:99:0d:bb:
33:ca:2d:05:21:78:f5:de:b1:a7:53:b1:65:7e:6e:
95:52:88:76:d3:ed:4d:6b:9b:89:ff:03:a9:ca:c7:
4e:84:67:ee:ae:ef:14:89:25:a5:5e:dd:5e:ba:c5:
41:49:a2:f3:17:8f:a7:11:4d:02:76:f7:10:26:2e:
eb:52:57:46:07:1f:5f:d3:6f:69:d8:32:6a:f5:85:
95:44:04:2a:f4:ea:90:38:43:99:84:34:f2:d8:7c:
7e:2b:7d:eb:73:ee:c7:90:24:2a:79:90:43:6a:bc:
34:ab:fd:70:f8:5e:24:d1:12:71:21:6a:c9:d4:d9:
5d:7a:9a:ee:45:7c:9a:57:2a:9c:74:09:94:8b:3a:
ef:f1:16:8d:cd:16:b7:3b:7d:50:c4:3d:0d:90:1f:
4d:e1:8f:db:ce:dd:7f:46:2e:65:d0:33:1f:f6:23:
d1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F9:FC:F3:13:46:37:E6:CB:D0:5E:CC:B9:B8:D7:97:21:EF:6F:D7
X509v3 Authority Key Identifier:
keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/PPn88xNGN-bL0F7MubjXlyHvb9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.232.0/21
78.108.144.0/20
82.150.160.0/19
86.63.192.0/19
91.197.116.0/22
92.240.160.0/19
94.74.192.0/18
95.143.128.0/20
176.98.96.0/20
178.17.96.0/20
185.15.252.0/22
188.175.0.0/16
213.180.32.0/19
IPv6:
2a00:d480::/32
2a02:350::/29
2a03:b4c0::/32
Signature Algorithm: sha256WithRSAEncryption
42:85:e6:0a:b2:f2:ec:75:c1:fb:c2:6c:b1:ee:67:d9:b7:2f:
b7:27:80:98:54:64:1e:06:aa:34:34:e3:19:f1:44:7b:e6:ec:
02:52:a9:18:30:90:6d:3e:94:d6:3a:12:30:3b:d7:e8:d7:df:
1e:89:39:d1:e7:50:71:36:71:d7:01:45:5c:23:ef:a8:29:18:
b3:9d:78:58:9e:6b:62:e9:40:19:37:c4:59:41:c8:cd:d5:ff:
81:f1:a3:9d:a1:cd:8f:b0:d5:6a:86:40:f2:54:cb:b0:05:e5:
4c:45:83:96:6f:94:73:4f:71:2d:fa:3d:4d:28:26:c0:3f:b7:
28:c2:89:9a:3d:fc:51:78:d8:b3:6a:89:f4:58:18:5c:4b:6d:
f3:36:18:72:d2:1d:3b:f3:48:e3:a7:13:18:6b:9e:8f:07:5b:
81:96:75:a5:9e:4b:a3:57:04:07:ce:d4:75:3b:bf:12:b4:6f:
ed:63:02:7c:b9:9c:c6:ab:ae:3d:04:7f:cc:6f:53:47:b9:25:
50:fd:36:89:0f:c7:18:31:89:2b:0a:8e:36:9e:21:fd:82:be:
0a:c2:da:0a:3b:7f:f7:b9:df:c6:2a:65:ae:5b:b6:43:d1:b0:
a0:c9:dc:74:79:49:8f:1e:12:ab:6d:fa:51:c9:e5:b8:99:52:
9a:13:22:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:17:43 2025 by rpki-client