Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/E8QH7Zs110y82L4XBjJ-bL1yQhs.roa
File: E8QH7Zs110y82L4XBjJ-bL1yQhs.roa (raw, json)
Hash identifier: UoOTGhP7FOH2mJ5sCOmQ0W5LbEktk/57s+pyn9/8D2M=
Subject key identifier: 13:C4:07:ED:9B:35:D7:4C:BC:D8:BE:17:06:32:7E:6C:BD:72:42:1B
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018D7D20C35A1A8F2EBE4F3B52978E7FFD53
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/E8QH7Zs110y82L4XBjJ-bL1yQhs.roa
Signing time: Tue 06 Feb 2024 06:35:15 +0000
ROA not before: Tue 06 Feb 2024 06:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205209
IP address blocks: 80.74.96.0/24 maxlen: 24
80.74.97.0/24 maxlen: 24
80.74.99.0/24 maxlen: 24
80.74.123.0/24 maxlen: 24
92.61.226.0/24 maxlen: 24
94.188.136.0/24 maxlen: 24
94.188.138.0/24 maxlen: 24
94.188.140.0/24 maxlen: 24
94.188.161.0/24 maxlen: 24
94.188.162.0/24 maxlen: 24
94.188.165.0/24 maxlen: 24
94.188.166.0/24 maxlen: 24
94.188.167.0/24 maxlen: 24
94.188.169.0/24 maxlen: 24
94.188.175.0/24 maxlen: 24
94.188.178.0/24 maxlen: 24
94.188.179.0/24 maxlen: 24
94.188.186.0/23 maxlen: 23
94.188.188.0/23 maxlen: 23
94.188.191.0/24 maxlen: 24
94.188.197.0/24 maxlen: 24
94.188.200.0/24 maxlen: 24
94.188.242.0/24 maxlen: 24
94.188.243.0/24 maxlen: 24
2a02:23b8:2::/52 maxlen: 52
2a02:23b8:1a00::/56 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:20:c3:5a:1a:8f:2e:be:4f:3b:52:97:8e:7f:fd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Feb 6 06:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13c407ed9b35d74cbcd8be1706327e6cbd72421b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:54:80:f3:cc:95:5e:7f:f1:ed:97:3e:25:f6:
e8:ef:53:8d:c3:0c:dd:a5:94:5c:02:a9:85:24:22:
cb:18:e6:8f:b3:20:ad:fd:c9:6f:b7:7c:09:7b:dd:
b5:a6:3b:18:e6:e2:7d:9b:75:58:c9:40:48:63:45:
91:4f:f1:18:fb:c8:e6:b4:dd:55:ab:f0:72:e9:53:
7b:49:7d:be:45:70:e6:df:03:ce:cc:03:82:c6:9a:
80:8b:70:d7:73:13:db:3d:4d:88:e6:70:78:5a:57:
a9:8d:cc:fa:9c:52:5a:65:af:a7:3e:5c:79:86:56:
89:76:d2:d9:92:e9:a5:f9:97:93:65:ce:83:62:ec:
db:eb:03:69:72:d3:b7:cb:cc:1d:a1:65:ed:fc:07:
ad:e1:45:6f:81:ec:88:ec:98:d9:9d:10:f0:30:64:
d7:ab:16:eb:69:6e:6b:df:a8:4d:46:de:d4:d4:cf:
1a:bb:5b:42:29:57:93:76:a8:96:09:8d:0e:0a:8f:
00:c5:7e:d6:23:3a:9e:6a:a3:8f:0f:a3:ff:94:c9:
68:c0:2b:fb:b9:78:d6:50:10:de:57:5a:dc:c9:a4:
09:ba:7a:8b:15:00:f1:07:fc:2f:38:c1:e8:ce:a7:
99:26:cf:43:5a:f4:83:3c:05:79:0a:8d:0f:83:cc:
18:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C4:07:ED:9B:35:D7:4C:BC:D8:BE:17:06:32:7E:6C:BD:72:42:1B
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/E8QH7Zs110y82L4XBjJ-bL1yQhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.74.96.0/23
80.74.99.0/24
80.74.123.0/24
92.61.226.0/24
94.188.136.0/24
94.188.138.0/24
94.188.140.0/24
94.188.161.0-94.188.162.255
94.188.165.0-94.188.167.255
94.188.169.0/24
94.188.175.0/24
94.188.178.0/23
94.188.186.0-94.188.189.255
94.188.191.0/24
94.188.197.0/24
94.188.200.0/24
94.188.242.0/23
IPv6:
2a02:23b8:2::/52
2a02:23b8:1a00::/56
Signature Algorithm: sha256WithRSAEncryption
9d:d4:0a:1a:30:eb:00:b2:51:32:96:9c:ef:1c:21:d9:1f:a5:
56:36:a7:ac:0d:ce:8c:a7:10:b6:b9:6b:51:b3:34:24:29:a5:
b7:7d:84:c8:b3:05:d6:2a:ae:3d:d0:76:56:36:3f:8e:71:a7:
9e:46:2f:83:5f:f0:ff:51:0b:45:50:50:9b:30:a2:9e:ba:68:
f9:81:19:9b:fb:e1:14:c8:e0:dc:47:1d:fc:17:2f:07:64:3e:
ac:09:51:ae:7f:0a:53:0e:3c:8f:73:8e:7d:06:2d:6f:79:fd:
a9:e6:e6:48:bc:78:3d:7d:f1:a6:53:e8:0b:26:f0:46:79:67:
df:90:aa:4f:ca:83:ba:8b:29:25:4f:ff:a7:58:21:cf:42:c2:
1e:75:e6:3d:1f:34:30:c5:07:92:89:fe:4a:d6:cf:11:bd:99:
a9:c7:12:06:58:44:fb:31:84:a4:77:25:30:2d:b3:b1:78:6f:
37:81:6a:76:70:90:6d:aa:27:f9:b2:7b:bd:1d:d6:f8:a7:71:
6f:05:b3:f5:dc:a6:45:03:58:dd:d3:82:94:32:91:90:92:20:
42:d0:ce:c5:be:24:a9:91:33:dd:ed:1e:6a:14:04:d9:0b:a3:
1b:a8:61:bb:d2:06:4d:c4:82:70:d5:a1:ea:e3:64:52:48:f8:
27:a5:f1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:07 2025 by rpki-client