Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Mc0oHXNsE7dHd5dXrDVqbz1nnug.roa
File: Mc0oHXNsE7dHd5dXrDVqbz1nnug.roa (raw, json)
Hash identifier: US5CTfFaPrxrtlTxUlrXcOOZoG8vBAx1zm/cAFPQ2sY=
Subject key identifier: 31:CD:28:1D:73:6C:13:B7:47:77:97:57:AC:35:6A:6F:3D:67:9E:E8
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01947D89B9BD4D12CA94FF08768EA8145912
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Mc0oHXNsE7dHd5dXrDVqbz1nnug.roa
Signing time: Sun 19 Jan 2025 07:49:25 +0000
ROA not before: Sun 19 Jan 2025 07:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 89.34.224.0/23 maxlen: 24
89.34.228.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
89.38.228.0/24 maxlen: 24
89.38.229.0/24 maxlen: 24
89.40.82.0/24 maxlen: 24
89.42.80.0/24 maxlen: 24
89.42.81.0/24 maxlen: 24
89.42.82.0/24 maxlen: 24
89.42.86.0/24 maxlen: 24
89.42.95.0/24 maxlen: 24
89.42.143.0/24 maxlen: 24
89.43.140.0/24 maxlen: 24
89.43.143.0/24 maxlen: 24
89.46.0.0/24 maxlen: 24
89.46.3.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.117.0/24 maxlen: 24
89.47.118.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.126.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
93.113.181.0/24 maxlen: 24
93.114.74.0/24 maxlen: 24
93.114.75.0/24 maxlen: 24
93.114.76.0/24 maxlen: 24
93.114.77.0/24 maxlen: 24
93.114.78.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
185.101.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:7d:89:b9:bd:4d:12:ca:94:ff:08:76:8e:a8:14:59:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 19 07:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=31cd281d736c13b747779757ac356a6f3d679ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:40:f2:77:a0:b9:99:27:86:c2:bc:ea:ac:1c:
53:4e:d2:0b:55:6d:b5:df:ca:97:af:41:f2:93:4a:
58:3e:30:fb:6e:74:4c:68:fa:30:2f:97:8d:e2:3c:
75:2b:f1:e2:4b:49:9f:d0:73:e3:00:ee:bd:71:bc:
e0:9a:28:bd:23:81:3e:77:98:30:78:20:2f:63:a1:
ef:7a:04:ce:2c:13:cf:c3:6a:c3:4e:54:1b:ea:a9:
a0:d7:8e:63:f5:99:37:41:01:ea:10:20:37:49:42:
aa:53:12:a7:4e:eb:d1:85:fa:3f:1f:60:99:9e:63:
3e:d4:78:5d:ee:b5:b2:2c:85:00:c1:36:5f:a1:9c:
fe:4c:99:14:18:07:f9:be:9c:35:01:48:d9:a0:cd:
22:aa:c1:35:8e:02:77:fe:38:39:89:16:ec:8d:d8:
c3:16:33:72:00:19:0b:90:1d:04:ae:15:45:1c:e6:
d5:f6:12:67:25:59:64:de:e5:64:a7:11:5a:39:e8:
1c:68:7f:31:e2:19:e7:f7:91:3b:b0:9c:d4:36:38:
ac:72:a5:7e:1e:27:8b:66:62:a5:19:86:63:08:78:
7e:c2:c8:5c:07:6f:7f:cf:62:ba:fc:93:66:c6:5d:
11:0b:3b:a0:bb:7d:3b:28:25:ea:3f:e4:99:cc:b7:
fc:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CD:28:1D:73:6C:13:B7:47:77:97:57:AC:35:6A:6F:3D:67:9E:E8
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Mc0oHXNsE7dHd5dXrDVqbz1nnug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.224.0/23
89.34.228.0/24
89.34.231.0/24
89.38.228.0/23
89.40.82.0/24
89.42.80.0-89.42.82.255
89.42.86.0/24
89.42.95.0/24
89.42.143.0/24
89.43.140.0/24
89.43.143.0/24
89.46.0.0/24
89.46.3.0/24
89.47.99.0/24
89.47.115.0/24
89.47.117.0-89.47.119.255
89.47.125.0-89.47.127.255
93.113.181.0/24
93.114.74.0-93.114.79.255
185.101.105.0/24
Signature Algorithm: sha256WithRSAEncryption
01:9e:6a:93:3c:fe:69:53:f0:63:89:76:7c:8f:f5:49:ad:41:
49:3c:f9:f7:de:f8:88:a1:71:f8:96:33:b7:71:57:da:54:96:
39:c2:bd:9e:bf:23:bf:50:d4:e8:b6:6a:bc:65:c7:0f:dc:a2:
bc:cf:03:a2:06:0f:46:3e:48:e5:a1:55:ce:31:20:3e:97:15:
0c:6c:43:32:5b:e0:69:8a:52:cc:51:04:75:d6:7b:bf:01:f8:
cb:aa:88:92:88:6b:1c:9e:24:83:4f:97:f4:cc:37:34:bf:10:
68:ff:89:22:53:49:bb:92:c8:27:8d:83:8e:cc:5b:5e:53:d0:
fc:d9:bf:d4:ef:e1:81:69:e8:6b:3a:73:80:a7:64:92:95:50:
fd:46:66:ae:f0:94:33:d3:93:39:16:75:ee:70:58:b3:f6:61:
0d:70:c0:4c:e6:9c:40:c2:e4:38:17:1b:96:84:7e:74:1c:7b:
b3:5b:09:fc:2a:bf:49:44:35:f2:1c:a4:b6:3d:a5:a2:7e:c3:
a9:a4:81:9d:83:e9:cf:3d:e8:99:8c:c7:dc:76:57:d2:1e:09:
6c:f0:50:ee:15:68:cf:2c:8e:b9:ab:1c:6a:48:b7:9d:2b:e0:
66:02:b7:f1:f5:c3:1e:be:52:ad:86:dd:ab:d2:ef:7d:47:e8:
7d:b4:3a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:49:39 2025 by rpki-client