Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/r-dPMd0SvW7ihK2Z8xm5Sh7fUYo.roa
File: r-dPMd0SvW7ihK2Z8xm5Sh7fUYo.roa (raw, json)
Hash identifier: ptqFcEqF37HK37DiDlVjULYv6d82ZWjDZ1kTsGZSmOs=
Subject key identifier: AF:E7:4F:31:DD:12:BD:6E:E2:84:AD:99:F3:19:B9:4A:1E:DF:51:8A
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 018FDE68986CCC2238DBFA1A53E9AB0C5C6F
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/r-dPMd0SvW7ihK2Z8xm5Sh7fUYo.roa
Signing time: Mon 03 Jun 2024 14:02:27 +0000
ROA not before: Mon 03 Jun 2024 14:02:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.80.28.0/24 maxlen: 24
45.80.30.0/24 maxlen: 24
45.80.31.0/24 maxlen: 24
86.62.28.0/24 maxlen: 24
86.62.29.0/24 maxlen: 24
86.62.30.0/24 maxlen: 24
86.62.31.0/24 maxlen: 24
193.228.139.0/24 maxlen: 24
194.36.32.0/23 maxlen: 23
194.107.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:de:68:98:6c:cc:22:38:db:fa:1a:53:e9:ab:0c:5c:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Jun 3 14:02:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afe74f31dd12bd6ee284ad99f319b94a1edf518a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:58:dc:8d:46:35:f5:01:f4:dd:3f:d1:19:2a:
0f:8b:1a:a6:f1:cb:a6:d0:8a:82:bd:37:13:82:30:
2b:8e:b4:4c:62:44:21:17:b6:da:28:fa:95:81:4b:
b2:33:65:17:f6:39:2a:ce:a8:c1:0d:58:ca:3f:ff:
86:04:18:19:02:c8:23:df:58:06:a4:5e:42:e3:a5:
73:3a:47:b7:9a:59:dd:08:22:ee:dd:69:6d:36:13:
a3:16:a0:c6:88:63:af:d4:4d:63:b9:22:85:b2:f2:
c6:85:a9:a7:95:f8:87:cc:92:9e:9b:e8:c9:a9:51:
d4:15:18:ac:99:93:0b:45:b2:21:31:1e:50:74:67:
e3:9d:20:3b:3d:fa:ba:03:4a:72:81:aa:d9:e3:cb:
db:c5:dd:10:77:8f:97:3e:dd:b3:ed:71:97:89:18:
f0:5a:84:4c:61:17:06:ca:43:27:90:5d:b9:37:eb:
b2:c8:8c:bf:b0:50:05:a5:02:26:50:ff:15:f5:cb:
79:f0:3e:d5:02:cc:15:e4:50:98:34:4b:4b:b5:1a:
60:4e:3e:d7:74:e7:ca:9e:2a:1d:3c:39:2e:c5:30:
d3:34:ab:5d:6e:19:b6:d1:5c:19:db:0a:da:ad:cc:
fa:49:ba:57:91:2c:87:61:f5:8e:dc:97:99:a8:50:
83:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E7:4F:31:DD:12:BD:6E:E2:84:AD:99:F3:19:B9:4A:1E:DF:51:8A
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/r-dPMd0SvW7ihK2Z8xm5Sh7fUYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.28.0/24
45.80.30.0/23
86.62.28.0/22
193.228.139.0/24
194.36.32.0/23
194.107.160.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6c:11:d2:fe:20:f9:1e:4a:6c:40:90:12:65:e1:e0:df:10:
2d:98:a3:9e:ba:bb:d6:cb:30:a6:85:51:fb:eb:c1:3b:5a:fc:
74:9d:99:a8:11:79:be:f5:0f:db:3e:78:93:e6:27:3c:db:01:
fd:13:3a:00:f5:7b:f3:49:b3:42:1c:2b:12:d7:d1:95:b0:33:
7a:10:45:58:a2:ed:15:27:40:99:29:17:4a:e3:fb:87:f7:c7:
2f:f1:5c:ca:3f:78:1b:53:3f:f0:bc:19:ca:05:3a:1a:a9:65:
55:34:bc:69:dc:41:9d:10:5d:f2:f2:db:cd:a7:b9:6b:4a:0e:
5f:81:12:92:8c:bf:8d:3e:b1:8b:da:d4:08:90:0c:c1:ff:47:
a7:36:41:7c:c9:66:15:f3:6c:45:f1:52:01:a2:ad:9b:13:93:
18:81:2d:3a:b0:3d:5b:45:0d:3f:60:66:c3:ee:ed:39:5d:be:
47:27:be:1e:cc:9c:5b:bb:4c:c4:00:4e:54:c9:59:cd:d4:4a:
28:17:7a:79:25:d6:75:6f:82:f2:ce:0a:e4:e2:5a:48:7b:82:
b7:8f:49:dd:d8:9d:05:ce:48:1a:e2:41:9f:68:48:35:64:0b:
fd:38:61:76:b4:3b:0d:2c:77:36:62:7b:72:2d:fe:36:90:ab:
03:44:68:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:34 2025 by rpki-client