Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa
File: 4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa (raw, json)
Hash identifier: aWtnbMWrytraTfwmFZQXH9y0uPlTO0CdQ7LWoLXK164=
Subject key identifier: E3:10:E3:30:6A:11:E5:CC:59:0F:44:C4:B7:8E:4E:4C:D2:EE:CD:9E
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 01943BEFA1DD3102B1B355E70FDC62BAA951
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa
Signing time: Mon 06 Jan 2025 14:05:47 +0000
ROA not before: Mon 06 Jan 2025 14:05:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202505
IP address blocks: 84.54.14.0/24 maxlen: 24
86.104.14.0/24 maxlen: 24
89.43.78.0/24 maxlen: 24
176.98.42.0/24 maxlen: 24
176.98.43.0/24 maxlen: 24
185.81.152.0/24 maxlen: 24
185.81.153.0/24 maxlen: 24
185.81.154.0/24 maxlen: 24
185.81.155.0/24 maxlen: 24
2a05:88c0::/32 maxlen: 32
2a05:88c1::/32 maxlen: 32
2a05:88c2::/32 maxlen: 32
2a05:88c3::/32 maxlen: 32
2a05:88c4::/32 maxlen: 32
2a05:88c5::/32 maxlen: 32
2a05:88c6::/32 maxlen: 32
2a05:88c7::/32 maxlen: 32
2a06:f7c0::/32 maxlen: 32
2a06:f7c1::/32 maxlen: 32
2a06:f7c2::/32 maxlen: 32
2a06:f7c3::/32 maxlen: 32
2a06:f7c4::/32 maxlen: 32
2a06:f7c5::/32 maxlen: 32
2a06:f7c6::/32 maxlen: 32
2a06:f7c7::/32 maxlen: 32
2a10:3300::/32 maxlen: 32
2a10:3301::/32 maxlen: 32
2a10:3302::/32 maxlen: 32
2a10:3303::/32 maxlen: 32
2a10:3304::/32 maxlen: 32
2a10:3305::/32 maxlen: 32
2a10:3306::/32 maxlen: 32
2a10:3307::/32 maxlen: 32
2a10:7f40::/32 maxlen: 32
2a10:7f41::/32 maxlen: 32
2a10:7f42::/32 maxlen: 32
2a10:7f43::/32 maxlen: 32
2a10:7f44::/32 maxlen: 32
2a10:7f45::/32 maxlen: 32
2a10:7f46::/32 maxlen: 32
2a10:7f47::/32 maxlen: 32
2a10:7fc0::/32 maxlen: 32
2a10:7fc1::/32 maxlen: 32
2a10:7fc2::/32 maxlen: 32
2a10:7fc3::/32 maxlen: 32
2a10:7fc4::/32 maxlen: 32
2a10:7fc5::/32 maxlen: 32
2a10:7fc6::/32 maxlen: 32
2a10:7fc7::/32 maxlen: 32
2a11:d100::/32 maxlen: 32
2a11:d101::/32 maxlen: 32
2a11:d102::/32 maxlen: 32
2a11:d103::/32 maxlen: 32
2a11:d104::/32 maxlen: 32
2a11:d105::/32 maxlen: 32
2a11:d106::/32 maxlen: 32
2a11:d107::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3b:ef:a1:dd:31:02:b1:b3:55:e7:0f:dc:62:ba:a9:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Jan 6 14:05:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e310e3306a11e5cc590f44c4b78e4e4cd2eecd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d8:5c:a6:f1:23:78:1e:4a:9f:1e:d5:b9:fb:
4b:d7:5b:af:5a:5b:c5:a6:73:6d:6b:de:4b:00:43:
cb:22:12:10:d2:64:da:18:04:4a:30:95:32:0a:60:
e4:cc:96:67:67:ae:f8:21:f3:85:ed:6f:20:b9:fc:
47:19:28:67:14:fc:27:c9:20:7b:a7:ec:5b:ef:c2:
07:45:73:13:3c:05:c6:00:e3:98:e3:a7:70:33:b6:
6f:f1:a1:bb:ae:40:f6:fe:9d:9c:9b:28:7c:4e:a1:
94:4b:08:5a:61:22:e3:0a:5d:6a:4d:2c:1c:08:fe:
c6:1a:d0:2c:ef:a1:1c:46:45:ef:a6:bd:c4:0e:2c:
09:70:ad:b9:a1:c6:f3:df:57:51:81:08:c1:e4:f4:
c9:50:f8:82:db:b6:fc:34:15:c8:4e:41:8a:a4:cb:
13:30:05:dd:2d:cb:9e:d8:2b:97:30:ae:86:6c:a2:
fe:8d:5a:24:c0:58:4f:d2:13:f5:56:ea:6a:40:27:
20:de:1b:01:bf:12:d0:a0:da:64:d9:0f:6c:37:d2:
d0:ea:8c:98:84:df:87:7f:21:27:68:9a:7e:0c:85:
18:7f:46:88:ed:5b:65:89:75:c0:ff:9d:ae:68:6a:
d2:12:fe:1d:7e:e5:dd:a8:c5:77:a0:8f:ca:7c:c3:
4b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:10:E3:30:6A:11:E5:CC:59:0F:44:C4:B7:8E:4E:4C:D2:EE:CD:9E
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.14.0/24
86.104.14.0/24
89.43.78.0/24
176.98.42.0/23
185.81.152.0/22
IPv6:
2a05:88c0::/29
2a06:f7c0::/29
2a10:3300::/29
2a10:7f40::/29
2a10:7fc0::/29
2a11:d100::/29
Signature Algorithm: sha256WithRSAEncryption
b1:f4:05:80:8b:66:22:e9:8a:76:48:fd:51:b1:65:85:0c:d3:
e4:41:d4:55:c6:53:be:7a:59:d7:b5:75:5d:4c:40:62:97:48:
d5:b4:3f:58:1c:77:7f:de:4d:de:d3:b0:e8:c3:ea:f0:28:f8:
85:a7:08:78:2e:03:42:4c:1e:61:6f:66:e4:96:bc:fd:e8:06:
49:c2:e8:69:ce:4a:59:f4:f4:17:03:83:f9:be:5e:2e:d6:1f:
c9:2d:ac:6b:39:64:d3:5c:50:98:fb:f7:21:f9:39:84:db:b7:
db:7b:cc:72:6a:7e:34:49:2d:c3:30:8c:6a:32:3a:e7:42:71:
ce:14:14:86:db:66:fb:c7:b8:7a:67:6a:c5:70:53:0b:63:4b:
8d:47:4f:87:0a:35:a1:08:4c:ad:ae:69:3b:27:56:1f:a1:d4:
c2:72:17:57:1e:b2:a5:d5:ef:41:1f:54:4f:e1:99:c4:17:f3:
03:63:b0:b5:bf:70:91:75:05:13:e6:ca:e1:84:0c:15:6c:02:
6f:a6:00:9a:2f:9e:1d:6d:4e:05:78:6a:c4:75:f7:45:5c:cc:
ca:ab:9e:de:ff:44:45:8c:09:c7:f4:36:da:aa:01:e2:30:d3:
95:8a:e7:2c:a5:9a:81:c6:30:c8:91:15:35:e9:5e:f3:a9:0f:
38:42:ff:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:14:23 2025 by rpki-client