Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/WfSIoxcGiNbq5oGvcE0eiwRzwaI.roa
File: WfSIoxcGiNbq5oGvcE0eiwRzwaI.roa (raw, json)
Hash identifier: 4+ITlETEk/svEAAS/Kisuuoh14YPCP7V8PSGJ6x5Okw=
Subject key identifier: 59:F4:88:A3:17:06:88:D6:EA:E6:81:AF:70:4D:1E:8B:04:73:C1:A2
Certificate issuer: /CN=10543a5197eb2544447e9d36b3ebf14452c777eb
Certificate serial: 0194258FC2B10EA7E9C36E02FAC8840F94FC
Authority key identifier: 10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/WfSIoxcGiNbq5oGvcE0eiwRzwaI.roa
Signing time: Thu 02 Jan 2025 05:49:25 +0000
ROA not before: Thu 02 Jan 2025 05:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2110
IP address blocks: 78.16.0.0/14 maxlen: 14
185.146.180.0/22 maxlen: 22
185.146.180.0/24 maxlen: 24
192.111.39.0/24 maxlen: 24
193.95.128.0/18 maxlen: 24
193.120.0.0/16 maxlen: 16
193.120.52.0/24 maxlen: 24
193.120.216.0/24 maxlen: 24
193.203.128.0/19 maxlen: 19
194.46.192.0/18 maxlen: 18
194.125.0.0/17 maxlen: 17
194.145.128.0/21 maxlen: 21
194.165.160.0/19 maxlen: 19
212.2.160.0/19 maxlen: 19
213.202.128.0/18 maxlen: 18
2001:7c8::/29 maxlen: 29
2001:7c8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:c2:b1:0e:a7:e9:c3:6e:02:fa:c8:84:0f:94:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10543a5197eb2544447e9d36b3ebf14452c777eb
Validity
Not Before: Jan 2 05:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=59f488a3170688d6eae681af704d1e8b0473c1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0b:a1:83:cc:14:de:ee:87:02:d8:ca:2f:3a:
df:63:bc:22:98:ba:63:51:c9:11:78:e9:d3:b4:22:
5e:c3:b1:61:b2:12:f2:92:7c:e3:ff:b6:26:86:1c:
2d:1e:fc:94:3a:03:04:28:9a:a6:01:76:a5:9e:38:
49:06:b4:b8:52:4b:98:86:1e:07:bc:de:c4:52:98:
84:0a:a6:91:5b:bc:80:92:82:65:a0:4a:d6:22:96:
2b:29:81:cd:6e:5c:df:51:0b:e2:3b:15:8e:9a:a4:
c4:09:23:7a:38:7d:21:12:ca:2d:4c:ab:b1:5b:42:
5b:b9:9c:7a:35:c3:25:70:bc:43:33:b0:20:7a:41:
d5:6f:ff:aa:b9:d3:4d:39:d2:cf:ad:f2:68:0e:24:
1e:e4:9b:d0:dc:d6:d9:85:e2:28:1d:65:3a:5c:e4:
43:76:77:c0:72:53:d9:fa:43:aa:3c:8b:0f:68:39:
92:5f:fa:70:5f:c0:a2:6a:78:c3:c7:ee:68:42:7a:
64:78:53:89:f6:52:98:2f:ac:e3:01:55:5f:5b:57:
94:37:ae:d7:0b:7f:38:ad:89:ee:a6:ae:2e:40:21:
09:00:d6:f8:dc:2e:fe:d0:2f:20:b8:79:5c:9a:c5:
26:1c:72:b5:c0:4e:d0:05:ca:be:f7:e6:22:7a:de:
ba:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F4:88:A3:17:06:88:D6:EA:E6:81:AF:70:4D:1E:8B:04:73:C1:A2
X509v3 Authority Key Identifier:
keyid:10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/WfSIoxcGiNbq5oGvcE0eiwRzwaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/EFQ6UZfrJUREfp02s-vxRFLHd-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.16.0.0/14
185.146.180.0/22
192.111.39.0/24
193.95.128.0/18
193.120.0.0/16
193.203.128.0/19
194.46.192.0/18
194.125.0.0/17
194.145.128.0/21
194.165.160.0/19
212.2.160.0/19
213.202.128.0/18
IPv6:
2001:7c8::/29
Signature Algorithm: sha256WithRSAEncryption
79:c3:0c:74:0f:d2:28:77:72:77:88:cd:2e:18:67:6f:88:92:
aa:bc:13:e7:eb:ec:48:50:fe:0c:6e:21:bb:21:dc:67:61:ef:
90:b6:14:22:ff:12:44:27:c5:7c:da:de:58:ed:2d:4a:32:69:
7a:c8:c1:06:89:b1:42:5d:2b:29:af:f4:d6:c5:2d:a6:e5:e8:
38:07:d1:27:ce:a2:52:f7:79:ba:63:71:5a:55:4d:9e:56:fe:
6d:65:e2:af:5e:10:58:d7:61:35:34:93:fb:44:a9:55:99:bf:
14:ee:7c:59:2c:87:7a:ac:fe:a9:24:ae:5d:06:30:83:e4:14:
76:8b:59:b5:67:4d:b3:8c:6a:26:7b:6b:99:2d:29:d8:0d:83:
b9:ad:0a:6d:f5:e8:7d:b1:27:bb:e5:07:de:bd:e4:3c:4c:5e:
d8:96:6a:18:44:ab:70:c6:8e:df:1f:42:1d:9e:b4:c4:92:6a:
83:69:09:03:98:fc:60:65:81:0b:f7:61:58:37:15:70:1a:1c:
1b:0b:b2:cc:e5:92:27:e3:be:1c:e5:37:d5:bd:5d:2f:53:35:
98:b8:17:ba:83:97:40:1b:ef:a2:75:e7:6a:be:4e:71:2d:dc:
fb:4a:2c:9c:c2:98:de:96:13:da:a5:b7:e9:65:53:04:b3:31:
7c:06:5c:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:40:25 2025 by rpki-client