Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/5qzC1E_LWaS-kBTA8DZpnRBl9ic.roa
File: 5qzC1E_LWaS-kBTA8DZpnRBl9ic.roa (raw, json)
Hash identifier: nJyvoqFIqaqV38NwOACLBOMqULqHdf3e3gURQxJGDAE=
Subject key identifier: E6:AC:C2:D4:4F:CB:59:A4:BE:90:14:C0:F0:36:69:9D:10:65:F6:27
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 0183C94F8B247CADB846A3C8106B8E30D5C8
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/5qzC1E_LWaS-kBTA8DZpnRBl9ic.roa
Signing time: Tue 11 Oct 2022 23:09:36 +0000
ROA not before: Tue 11 Oct 2022 23:09:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 109.94.144.0/20 maxlen: 24
84.247.4.0/22 maxlen: 24
192.109.205.0/24 maxlen: 24
213.159.136.0/21 maxlen: 24
185.200.204.0/22 maxlen: 24
193.17.225.0/24 maxlen: 24
84.247.40.0/22 maxlen: 24
89.40.220.0/23 maxlen: 24
86.106.152.0/22 maxlen: 24
86.104.20.0/22 maxlen: 24
176.223.172.0/22 maxlen: 24
94.24.24.0/22 maxlen: 24
195.128.136.0/24 maxlen: 24
86.104.248.0/22 maxlen: 24
91.227.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c9:4f:8b:24:7c:ad:b8:46:a3:c8:10:6b:8e:30:d5:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: Oct 11 23:09:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6acc2d44fcb59a4be9014c0f036699d1065f627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6a:67:68:b9:79:87:4a:67:70:0b:d5:7c:fd:
5a:d1:3a:2d:a4:3b:4f:8b:c4:48:1f:07:45:f7:4a:
94:a9:aa:c2:4d:c7:78:5b:5c:7e:6f:33:4a:c0:6e:
9b:5f:c3:9b:5b:a9:db:58:8f:4a:6f:c8:7e:a3:3c:
54:f9:cc:48:6f:2e:c1:4d:b3:d5:4d:fc:3c:cc:03:
00:7d:d5:4b:c4:89:2f:19:42:c6:84:f3:0f:79:29:
f8:55:6e:9a:3f:eb:d6:80:f5:10:80:9b:d2:77:cf:
39:e4:37:d4:cb:95:21:01:00:ed:1a:c1:97:5b:b1:
fe:64:8b:6a:7d:17:63:9c:b9:b0:3d:18:20:ae:e4:
06:23:3c:62:80:65:7f:0c:d0:b5:65:3d:52:a1:14:
bc:05:e0:c4:4d:48:8b:a8:98:81:98:12:d1:28:29:
66:b8:b5:fa:c9:59:b2:5f:fd:c4:5b:cc:67:80:62:
0b:db:82:55:e7:72:28:19:6f:f2:86:68:e2:b3:48:
96:ca:67:1f:3f:bf:ce:08:5f:9a:da:d5:a0:42:6a:
12:ee:58:ce:3f:b4:2f:d2:78:33:67:82:50:b6:da:
c7:94:f7:fa:8e:d3:ca:37:be:77:9c:3f:1a:61:9f:
19:8a:e9:a6:af:f3:84:31:63:45:d7:43:ad:0e:4f:
1d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:AC:C2:D4:4F:CB:59:A4:BE:90:14:C0:F0:36:69:9D:10:65:F6:27
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/5qzC1E_LWaS-kBTA8DZpnRBl9ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.4.0/22
84.247.40.0/22
86.104.20.0/22
86.104.248.0/22
86.106.152.0/22
89.40.220.0/23
91.227.240.0/23
94.24.24.0/22
109.94.144.0/20
176.223.172.0/22
185.200.204.0/22
192.109.205.0/24
193.17.225.0/24
195.128.136.0/24
213.159.136.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:f2:59:59:2f:05:c4:33:58:39:a8:ca:df:ee:17:f7:31:6f:
c8:b6:cd:0f:0f:38:c7:77:0c:1f:c5:34:bb:29:70:8c:6c:fe:
8a:da:6c:f5:ae:86:de:54:e3:de:f4:a6:6f:6e:7a:35:7a:24:
03:9d:f3:f8:e1:72:35:4a:1d:3d:09:fa:58:3d:b8:e1:f8:14:
a3:8e:8e:3b:ed:b6:7a:91:c0:5d:97:2a:8c:a5:81:f5:96:72:
f2:c7:11:85:8b:8b:00:f0:db:11:44:f9:fb:6e:08:af:24:3c:
84:e9:f4:f6:63:48:c1:48:5f:88:ac:b6:5c:03:8e:1e:bc:f3:
16:ab:ad:4d:76:56:e9:26:3c:b1:df:35:40:7d:85:ed:82:4c:
63:69:4f:c3:07:5c:d2:3a:66:cf:85:12:c4:a6:75:2e:ff:b5:
28:6a:f4:3c:d5:b3:5b:51:45:7f:03:20:f0:04:e8:13:81:41:
1f:d9:c7:c7:f1:9b:7f:2d:10:cb:ad:1f:d8:1a:62:30:c7:32:
48:72:f7:5d:d0:fb:1f:20:6e:1e:4d:39:0d:66:5a:09:85:30:
04:f0:50:95:35:78:78:e6:5f:48:26:19:28:3d:ba:e7:d2:0e:
39:bc:41:0d:b1:cb:cb:73:6b:11:84:98:ef:f7:b2:34:14:85:
ed:91:f0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 06:39:41 2025 by rpki-client