Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/c0fBmj5scO5bGyjJUPNEWoiJiz8.roa
File: c0fBmj5scO5bGyjJUPNEWoiJiz8.roa (raw, json)
Hash identifier: ysAxrF+4k0JvJ+yBQRYBZ/441fP/ZB0AQyNUuEBiB+Y=
Subject key identifier: 73:47:C1:9A:3E:6C:70:EE:5B:1B:28:C9:50:F3:44:5A:88:89:8B:3F
Certificate issuer: /CN=e30f8894f308172ace92fbe6052eec23853eadad
Certificate serial: 0194221FC5674B4B5CA5CA5D83057BA1CFD4
Authority key identifier: E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/c0fBmj5scO5bGyjJUPNEWoiJiz8.roa
Signing time: Wed 01 Jan 2025 13:48:14 +0000
ROA not before: Wed 01 Jan 2025 13:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3920
IP address blocks: 37.49.224.0/24 maxlen: 24
37.49.225.0/24 maxlen: 24
37.49.226.0/24 maxlen: 24
37.49.227.0/24 maxlen: 24
37.49.228.0/24 maxlen: 24
37.49.229.0/24 maxlen: 24
77.247.111.0/24 maxlen: 24
117.18.118.0/24 maxlen: 24
117.55.202.0/24 maxlen: 24
117.55.203.0/24 maxlen: 24
185.53.91.0/24 maxlen: 24
185.209.15.0/24 maxlen: 24
212.237.231.0/24 maxlen: 24
2a13:adc0::/48 maxlen: 48
2a13:adc0:1::/48 maxlen: 48
2a13:adc0:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:c5:67:4b:4b:5c:a5:ca:5d:83:05:7b:a1:cf:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30f8894f308172ace92fbe6052eec23853eadad
Validity
Not Before: Jan 1 13:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7347c19a3e6c70ee5b1b28c950f3445a88898b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f8:b6:2e:d1:cc:79:a7:83:ac:2b:26:13:3d:
71:83:09:69:db:72:f0:04:65:94:88:64:b5:71:d1:
0f:ce:ab:0c:8e:d2:56:25:db:bd:c0:31:17:4e:c2:
d6:5e:81:af:7c:8b:ce:bd:1d:46:6a:6e:6a:0f:a3:
8b:d6:8b:f1:96:ec:04:fe:cc:e2:bc:c8:e1:fb:3d:
06:5e:98:62:c7:bd:6d:86:4f:a1:1f:d2:42:18:3e:
bf:cd:ea:e6:6f:76:83:a5:20:b2:35:93:69:1d:91:
68:fd:13:ce:42:e5:ad:99:f2:53:c8:55:07:d6:eb:
9f:a8:06:4c:a5:2d:f3:fc:9f:d9:e4:66:24:a8:47:
96:93:5c:82:55:78:24:ce:d5:d3:8b:5f:4b:4d:fa:
bd:f4:c2:d0:72:4e:f0:bd:05:f0:4f:12:78:97:85:
7f:fc:b8:01:d0:bb:27:eb:fa:51:ac:85:16:4c:a9:
42:bb:46:3a:78:1d:40:55:eb:0d:47:4b:57:84:7f:
71:58:83:d3:b6:8b:43:f2:b1:27:f7:6f:55:ff:49:
9d:4b:63:86:96:17:66:ae:6a:0a:eb:7b:68:21:70:
4d:9c:cf:10:dd:35:52:7a:70:02:67:3a:47:ea:1f:
91:ce:24:38:da:2b:c1:c9:3a:ef:ab:3a:aa:34:34:
ea:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:47:C1:9A:3E:6C:70:EE:5B:1B:28:C9:50:F3:44:5A:88:89:8B:3F
X509v3 Authority Key Identifier:
keyid:E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/c0fBmj5scO5bGyjJUPNEWoiJiz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/4w-IlPMIFyrOkvvmBS7sI4U-ra0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.224.0-37.49.229.255
77.247.111.0/24
117.18.118.0/24
117.55.202.0/23
185.53.91.0/24
185.209.15.0/24
212.237.231.0/24
IPv6:
2a13:adc0::-2a13:adc0:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
93:b9:36:e5:85:f7:b7:fb:14:de:2e:b4:bc:19:33:c4:1b:11:
67:21:3f:8d:6e:42:4a:3f:ad:11:55:64:8f:67:b4:18:e3:b3:
d8:5b:c3:7f:37:de:76:dc:7c:68:b8:4d:de:52:9c:b9:12:99:
69:79:29:24:ce:b8:aa:22:4b:19:7f:c3:8a:cd:2e:ef:36:ce:
b2:ff:a3:43:5c:be:db:b1:b5:62:c1:6d:80:c1:b4:b6:4c:ab:
9c:f0:c4:db:77:fe:e6:72:01:65:86:fa:fb:35:02:30:25:2f:
9f:17:59:3a:cd:ec:3f:2c:f9:4d:4c:46:b4:83:92:5c:70:4f:
f1:c4:45:e1:48:02:55:f6:3f:3e:2b:b1:6f:3b:47:00:b9:16:
e9:f8:d2:a3:29:b4:f7:d4:ec:00:4c:aa:fa:a3:52:ae:e1:21:
34:e9:98:8c:63:eb:c9:43:ca:10:c4:b6:99:4b:15:23:1e:f5:
fb:a8:ea:96:f9:1d:44:32:26:c5:18:42:c5:62:86:6e:39:b8:
26:f4:10:9c:dc:09:79:86:80:07:ed:94:9e:c9:87:54:db:cd:
67:a3:ab:e4:8f:f0:4f:85:a6:d2:fa:2c:82:87:f4:49:df:9e:
7a:f2:52:3d:43:3c:95:c8:0e:0e:85:55:49:d7:7c:8c:75:b1:
a5:13:87:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:14 2025 by rpki-client