Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/fEaK7ErCTm7Fivri0S-qqcMkyMU.roa
File: fEaK7ErCTm7Fivri0S-qqcMkyMU.roa (raw, json)
Hash identifier: IfCVzZn66SOIRBGzYSq04PtQc+Pau+GA8F1M7N7TehY=
Subject key identifier: 7C:46:8A:EC:4A:C2:4E:6E:C5:8A:FA:E2:D1:2F:AA:A9:C3:24:C8:C5
Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial: 01941F8C3F33AE1780CE7BE54950F8CF6804
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/fEaK7ErCTm7Fivri0S-qqcMkyMU.roa
Signing time: Wed 01 Jan 2025 01:47:52 +0000
ROA not before: Wed 01 Jan 2025 01:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 66.245.192.0/19 maxlen: 32
78.141.192.0/19 maxlen: 32
78.141.224.0/19 maxlen: 32
80.240.16.0/20 maxlen: 32
95.179.128.0/17 maxlen: 32
185.92.220.0/22 maxlen: 32
192.248.128.0/18 maxlen: 32
199.247.0.0/19 maxlen: 32
209.250.224.0/19 maxlen: 32
217.69.0.0/20 maxlen: 32
2a05:f480:1000::/38 maxlen: 38
2a05:f480:1400::/38 maxlen: 38
2a05:f480:1800::/38 maxlen: 38
2a05:f480:1c00::/38 maxlen: 38
2a05:f480:2000::/38 maxlen: 38
2a05:f480:2400::/38 maxlen: 38
2a05:f480:2800::/38 maxlen: 38
2a05:f480:2c00::/38 maxlen: 38
2a05:f480:3000::/38 maxlen: 38
2a05:f480:3400::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:3f:33:ae:17:80:ce:7b:e5:49:50:f8:cf:68:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
Validity
Not Before: Jan 1 01:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c468aec4ac24e6ec58afae2d12faaa9c324c8c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:35:ae:54:86:2e:34:cc:8e:a0:0e:d1:3e:51:
99:96:9d:03:2a:1c:48:35:4f:5d:a6:1b:b2:00:5d:
e0:bb:41:94:ed:52:a1:be:b4:58:25:e1:d4:e3:6d:
1a:c0:3a:bd:6c:d8:e7:be:cb:d9:2b:b3:8a:24:3d:
9e:46:6f:93:3f:44:27:5a:d4:47:53:91:f8:f1:77:
1c:0c:c7:4b:8f:8e:f7:36:97:84:12:e0:12:6b:f5:
9f:9f:3a:29:45:5f:3d:02:b3:cd:7f:1d:92:d2:4c:
a2:95:df:c8:05:45:b6:86:47:db:0e:7f:45:1b:ee:
e9:59:5a:90:46:72:ac:30:bb:85:b0:62:49:b5:3b:
c1:2b:14:1f:a5:a8:02:09:a4:9b:c7:85:37:b7:43:
d2:d6:22:38:b6:3b:09:d8:0a:ec:22:4c:f9:84:1b:
91:c9:1f:dc:f3:66:7d:65:9f:f7:be:4f:3e:d4:d6:
6c:b3:71:ad:30:33:5f:f5:88:5d:eb:57:22:9e:27:
c8:6d:8d:5c:9b:ce:6d:ba:52:a6:1a:51:d4:25:07:
6f:08:cd:02:9e:8e:3a:63:12:49:fe:19:4c:3e:af:
ea:c9:06:75:a5:33:a9:28:ed:67:ed:af:f3:18:29:
28:d9:08:23:77:c9:46:53:2c:c4:1f:c0:ad:3d:93:
15:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:46:8A:EC:4A:C2:4E:6E:C5:8A:FA:E2:D1:2F:AA:A9:C3:24:C8:C5
X509v3 Authority Key Identifier:
keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/fEaK7ErCTm7Fivri0S-qqcMkyMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.245.192.0/19
78.141.192.0/18
80.240.16.0/20
95.179.128.0/17
185.92.220.0/22
192.248.128.0/18
199.247.0.0/19
209.250.224.0/19
217.69.0.0/20
IPv6:
2a05:f480:1000::-2a05:f480:37ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2d:c2:d6:b5:c0:8d:72:e5:3b:eb:9d:07:45:83:7d:8e:22:b8:
42:06:46:c8:41:70:2f:eb:4c:37:54:77:9d:07:50:78:92:c0:
be:57:6d:39:7c:28:4a:88:a5:30:cb:2a:43:0c:95:e0:42:2d:
c7:26:90:fa:85:b4:69:e4:f9:2d:a0:21:58:a7:c1:06:8d:c4:
6e:3b:be:60:d7:22:c1:e7:68:74:2e:bd:1b:0f:68:48:ad:f2:
fc:52:00:e6:db:1f:b9:05:42:df:05:6c:33:80:32:c9:49:fc:
15:84:89:97:d8:49:16:bb:4b:1c:0e:3b:1d:1b:ed:e5:5b:73:
83:7b:c6:f9:1a:8b:0c:16:24:54:4e:7a:31:38:a9:f6:e1:bb:
9f:3e:7a:3f:5f:07:3e:d2:c4:c2:65:bb:fe:30:d7:c2:19:29:
4a:1d:e1:69:7a:9f:26:d0:43:51:2e:27:d5:45:5f:9c:c9:39:
6c:3e:fa:a9:42:b3:e9:8d:88:64:c7:69:57:59:68:93:4f:2a:
b9:53:7a:75:e1:ad:67:3c:01:cb:c2:75:78:b8:33:fb:fb:77:
c4:32:73:97:ef:ff:f2:64:36:af:11:06:35:37:aa:f6:9a:01:
a3:39:38:07:fe:41:20:20:af:8a:69:f3:5d:15:6b:e3:ca:1c:
1a:fd:86:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:25:04 2025 by rpki-client