Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/Kteo5lC3Dehvr56LPKosDCnwMec.roa
File: Kteo5lC3Dehvr56LPKosDCnwMec.roa (raw, json)
Hash identifier: zux8jrg6PD9v0Orq7y7q79K4ES5EDvd8kfG3Ttc591M=
Subject key identifier: 2A:D7:A8:E6:50:B7:0D:E8:6F:AF:9E:8B:3C:AA:2C:0C:29:F0:31:E7
Certificate issuer: /CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Certificate serial: 01878F1179426A1465DDB98CC5E60FC305A7
Authority key identifier: C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/Kteo5lC3Dehvr56LPKosDCnwMec.roa
Signing time: Mon 17 Apr 2023 11:54:59 +0000
ROA not before: Mon 17 Apr 2023 11:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 185.240.166.0/24 maxlen: 24
185.240.165.0/24 maxlen: 24
45.85.180.0/22 maxlen: 22
185.240.167.0/24 maxlen: 24
194.31.1.0/24 maxlen: 24
194.30.161.0/24 maxlen: 24
194.30.165.0/24 maxlen: 24
194.30.183.0/24 maxlen: 24
185.227.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:11:79:42:6a:14:65:dd:b9:8c:c5:e6:0f:c3:05:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Validity
Not Before: Apr 17 11:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ad7a8e650b70de86faf9e8b3caa2c0c29f031e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d3:5e:f0:f0:60:a6:a0:3d:fb:4d:25:af:ab:
1c:dc:87:da:2a:c9:c2:88:fb:d7:d8:6a:9e:06:c2:
52:7f:5f:e5:33:d4:04:70:49:b7:8a:f8:f3:7d:de:
20:ee:89:40:20:75:f3:93:41:61:c5:34:19:11:1e:
94:f2:36:5e:2a:fd:c5:82:1f:b3:01:cb:10:e4:b2:
96:44:56:a8:43:02:34:15:e3:af:8d:7e:e9:25:1a:
53:ea:96:0e:96:32:ee:9f:f4:12:3a:38:1f:6e:df:
b9:1d:19:30:7e:da:41:c6:f5:d3:b5:74:9e:75:8d:
11:17:d2:3e:b7:cc:c1:20:fc:97:6c:80:11:89:f2:
4f:45:3c:83:3a:e2:7b:47:94:ed:3e:23:78:ad:8a:
23:ec:cd:1b:1c:42:04:00:22:49:0c:d2:ee:4d:7e:
e1:cc:a0:55:b6:46:9c:df:ce:7f:35:c6:e6:ab:69:
de:d5:c3:6f:22:e8:03:d0:fd:f3:bd:6c:31:dd:76:
55:60:18:d2:89:8f:fe:ff:33:07:e9:63:a6:48:fc:
b3:16:dd:01:f9:cc:e8:c8:fc:d5:26:1d:99:dc:a4:
45:b0:76:97:9a:5e:17:32:76:80:ac:9b:78:f7:2c:
53:97:9d:d1:aa:13:bb:6a:47:46:72:2a:1f:0b:01:
cc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D7:A8:E6:50:B7:0D:E8:6F:AF:9E:8B:3C:AA:2C:0C:29:F0:31:E7
X509v3 Authority Key Identifier:
keyid:C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/Kteo5lC3Dehvr56LPKosDCnwMec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/wOVJ_c7rApEsiodByBaAa74ZxEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.180.0/22
185.227.218.0/24
185.240.165.0-185.240.167.255
194.30.161.0/24
194.30.165.0/24
194.30.183.0/24
194.31.1.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d3:9c:5e:2a:1b:ef:a0:3a:6b:43:a6:ef:45:8f:50:02:48:
75:ba:81:3d:a7:00:f6:b9:5f:5e:bb:79:8a:6b:ca:17:60:b8:
3f:e5:9c:a0:47:e6:d8:e0:73:d4:b3:d0:3a:1a:28:0a:b6:b5:
18:30:57:76:01:b0:fd:9a:65:6f:cb:7a:17:5e:1b:04:30:82:
c0:4d:b8:bc:50:ef:94:18:48:16:ce:91:a8:38:b0:79:72:b0:
58:dd:ea:5c:7f:58:55:44:c7:48:d1:19:8f:22:c5:44:42:e7:
ff:bf:ad:e7:2d:c9:a6:e1:3d:45:2d:c6:39:89:2f:16:44:99:
11:4c:52:9a:5e:9b:7d:86:aa:3a:c3:fa:29:39:40:2a:88:63:
1d:1b:79:ad:f3:76:47:06:9d:21:e8:57:d2:1b:c7:1e:b8:a8:
2f:e3:a7:c8:33:84:15:59:13:8c:12:d5:54:43:6a:95:13:d1:
91:c5:27:4c:04:ef:65:42:99:c5:e5:07:df:fb:27:84:9c:b3:
5b:dd:30:38:43:f7:93:27:dc:b7:df:f3:73:15:31:df:1d:b3:
7a:bc:1d:e1:3f:3c:60:ec:b9:c3:ce:e5:be:fd:5a:91:5b:25:
4e:f5:cd:3f:a4:61:08:8d:1e:9a:ab:53:a3:94:51:1a:6e:69:
98:86:66:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:02:29 2025 by rpki-client