Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/EQbFBLvXIrkptxpUVRHi0TZ99zs.roa
File: EQbFBLvXIrkptxpUVRHi0TZ99zs.roa (raw, json)
Hash identifier: GSO5YOPVtnU51TMRLpTOayIIgyjXZoZ/093FzHJj7Js=
Subject key identifier: 11:06:C5:04:BB:D7:22:B9:29:B7:1A:54:55:11:E2:D1:36:7D:F7:3B
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 0193B03FAA6B0940727B9068D42C92D93DB6
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/EQbFBLvXIrkptxpUVRHi0TZ99zs.roa
Signing time: Tue 10 Dec 2024 11:06:22 +0000
ROA not before: Tue 10 Dec 2024 11:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42908
IP address blocks: 31.10.56.0/21 maxlen: 21
46.183.56.0/21 maxlen: 21
77.95.192.0/21 maxlen: 21
78.136.128.0/18 maxlen: 18
80.78.136.0/22 maxlen: 22
80.79.0.0/22 maxlen: 22
80.251.240.0/20 maxlen: 20
93.92.48.0/21 maxlen: 21
93.93.32.0/21 maxlen: 21
94.241.64.0/18 maxlen: 18
109.108.96.0/19 maxlen: 19
185.108.60.0/22 maxlen: 22
185.157.240.0/22 maxlen: 22
188.119.96.0/22 maxlen: 22
193.107.252.0/22 maxlen: 22
2001:67c:13c4::/48 maxlen: 48
2a01:9f40::/29 maxlen: 29
2a02:2428::/32 maxlen: 32
2a03:7a00::/32 maxlen: 32
2a03:a820::/32 maxlen: 32
2a07:cc80::/29 maxlen: 29
2a0c:8b40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b0:3f:aa:6b:09:40:72:7b:90:68:d4:2c:92:d9:3d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Dec 10 11:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1106c504bbd722b929b71a545511e2d1367df73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9a:ec:96:c9:94:54:73:79:4a:e3:10:fd:52:
7e:52:1f:68:48:67:58:9b:d4:bf:df:3b:5f:fe:43:
0a:11:4e:4c:af:ed:e5:af:74:f4:09:df:a8:06:14:
c6:32:92:dd:1a:37:41:cb:08:4c:74:7c:b0:a9:bf:
7b:9f:94:f8:91:d1:24:ba:9c:f9:20:87:6e:6e:b0:
d8:d3:24:be:de:d7:2b:4f:70:cb:cc:54:97:56:67:
8a:1d:30:6e:12:bd:98:9e:29:36:10:29:38:da:06:
24:a1:fc:2c:c0:57:1d:3e:51:32:28:88:c1:c5:b2:
52:a3:4f:ca:63:9a:ea:18:d8:81:3e:48:b3:f0:94:
06:e3:61:e6:ae:59:fb:49:85:b9:a5:e6:96:17:fa:
08:c4:8a:fe:6e:22:94:75:83:2e:16:91:d9:a9:b4:
eb:59:6c:5e:3b:ef:50:0e:17:c4:ee:98:2a:0b:87:
44:08:e8:fd:6d:b2:27:02:2f:bd:ad:7d:eb:a4:d7:
cb:fc:98:37:3c:6c:7a:3e:f3:fb:a5:c7:c8:b2:8e:
56:ef:6b:db:b4:b0:cc:69:25:eb:6e:1e:3b:c9:5b:
59:55:6d:f9:f0:77:79:40:b1:6a:14:b6:2f:50:83:
39:07:12:bb:69:dc:14:0d:8c:87:ea:32:36:17:cd:
7e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:06:C5:04:BB:D7:22:B9:29:B7:1A:54:55:11:E2:D1:36:7D:F7:3B
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/EQbFBLvXIrkptxpUVRHi0TZ99zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.56.0/21
46.183.56.0/21
77.95.192.0/21
78.136.128.0/18
80.78.136.0/22
80.79.0.0/22
80.251.240.0/20
93.92.48.0/21
93.93.32.0/21
94.241.64.0/18
109.108.96.0/19
185.108.60.0/22
185.157.240.0/22
188.119.96.0/22
193.107.252.0/22
IPv6:
2001:67c:13c4::/48
2a01:9f40::/29
2a02:2428::/32
2a03:7a00::/32
2a03:a820::/32
2a07:cc80::/29
2a0c:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
19:1a:98:22:c5:9a:6e:68:59:ca:0d:6b:d6:1d:c0:a8:eb:10:
97:0c:44:af:9b:a2:91:d6:6a:43:e4:68:48:c5:ff:fe:50:13:
23:3e:34:e7:58:cc:d8:66:70:51:8b:a0:ff:dc:3a:b3:53:4f:
f2:77:29:99:98:ed:08:43:90:a1:30:17:53:e9:ba:e8:bf:35:
b7:99:6d:9e:da:42:4f:bb:fc:64:5f:ab:27:f6:63:a3:e1:6a:
95:e0:f8:c0:93:35:75:f9:67:14:e4:bd:c7:6c:5d:80:52:3e:
60:fe:17:a7:d0:48:8d:7c:fa:fa:9f:60:ec:2b:7f:d5:93:e6:
96:8c:54:45:08:ef:aa:3a:42:20:79:6b:af:33:fa:3c:51:94:
c0:b4:dd:c1:5a:20:60:db:ad:4e:bd:57:87:5a:f5:99:9d:7e:
68:5d:97:3f:f5:67:da:67:26:95:57:14:64:2e:f3:b5:83:36:
7f:a6:07:ac:43:9a:41:48:4f:f4:fd:d8:0d:3f:d7:75:ce:f5:
9e:3c:3e:26:d8:20:95:1d:9c:e9:87:7b:f7:48:67:0f:8f:0c:
5f:eb:f4:c4:e1:c1:fa:16:73:80:1b:a1:bf:1f:92:19:5a:0d:
2b:1b:f2:fa:f3:a3:10:66:64:03:9b:e2:9b:11:97:24:0a:57:
55:76:a7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:54:53 2025 by rpki-client