Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/rR7e6tE06KcBWfsjzLe78QyM4IQ.roa
File: rR7e6tE06KcBWfsjzLe78QyM4IQ.roa (raw, json)
Hash identifier: TxuaPPwDJ6vsjxHXNH+0e0QSDrbx8BN4ZFwBQrdzYcM=
Subject key identifier: AD:1E:DE:EA:D1:34:E8:A7:01:59:FB:23:CC:B7:BB:F1:0C:8C:E0:84
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0191FCCD750A53C44E6AD1D5782B469B4321
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/rR7e6tE06KcBWfsjzLe78QyM4IQ.roa
Signing time: Mon 16 Sep 2024 21:46:48 +0000
ROA not before: Mon 16 Sep 2024 21:46:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 5.180.32.0/22 maxlen: 24
5.180.50.0/24 maxlen: 24
5.180.51.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.253.39.0/24 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.203.0/24 maxlen: 24
45.8.255.0/24 maxlen: 24
45.9.0.0/24 maxlen: 24
45.9.1.0/24 maxlen: 24
85.208.107.0/24 maxlen: 24
85.208.113.0/24 maxlen: 24
85.208.115.0/24 maxlen: 24
85.209.160.0/24 maxlen: 24
85.209.162.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fc:cd:75:0a:53:c4:4e:6a:d1:d5:78:2b:46:9b:43:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 16 21:46:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad1edeead134e8a70159fb23ccb7bbf10c8ce084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:65:69:b1:68:1b:a9:d2:04:9e:92:d2:8d:b1:
ef:b4:00:71:75:bf:84:b4:1e:0c:82:dc:6e:2a:a7:
58:92:51:9b:fd:ed:70:fc:18:10:97:5d:f7:7c:f1:
33:2a:10:8e:ad:40:b2:ef:4e:df:d2:e0:28:e8:1c:
fd:99:9c:aa:d9:fb:8a:10:fb:da:d6:82:e1:13:ab:
25:34:09:9c:3e:2f:61:3b:34:b1:f0:7c:7c:b9:d6:
09:0a:5c:0f:34:dd:67:20:5b:fe:7f:21:73:6d:1f:
33:9c:71:b7:7a:a8:17:47:38:f1:0e:80:74:f9:b9:
b0:6c:a0:17:73:71:85:0b:34:e0:10:42:81:fa:98:
d4:ff:fc:74:16:7b:59:27:92:4c:a2:8c:19:cc:f7:
d7:98:fa:c4:16:b7:12:53:03:71:d1:01:d4:e9:34:
30:23:34:de:ef:5c:c4:6a:a5:e0:ba:f1:c7:50:21:
f0:c7:f2:40:01:f3:9e:51:27:78:55:83:81:0c:2b:
a2:44:57:2e:99:12:27:e9:8c:b3:60:08:cc:00:00:
a9:4c:f7:10:c2:29:fb:3b:2c:46:b0:65:0b:09:95:
04:f9:1f:4b:9c:fe:05:de:f6:35:0e:20:f8:25:57:
25:50:ab:b1:65:11:41:ac:a7:e7:02:44:f1:c9:bc:
50:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1E:DE:EA:D1:34:E8:A7:01:59:FB:23:CC:B7:BB:F1:0C:8C:E0:84
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/rR7e6tE06KcBWfsjzLe78QyM4IQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.50.0/23
5.180.80.0/24
5.253.39.0/24
45.8.188.0-45.8.195.255
45.8.199.0/24
45.8.203.0/24
45.8.255.0-45.9.1.255
85.208.107.0/24
85.208.113.0/24
85.208.115.0/24
85.209.160.0/24
85.209.162.0/24
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:5a:0e:11:75:1f:29:92:7d:c1:3e:61:cd:3f:71:28:d2:4c:
e1:db:d5:0f:01:56:fe:89:7a:4c:9e:54:a1:b0:35:da:b6:ad:
ba:46:70:19:56:93:3c:ce:bc:2a:95:2c:3f:8a:c7:99:1e:25:
68:42:e6:48:27:c7:05:25:93:63:aa:9e:2a:c5:76:26:8e:ff:
f9:e0:75:9c:fe:12:80:88:ac:ff:a1:e9:a3:f1:e9:f9:9e:76:
87:3a:22:e1:3b:ab:ae:ec:a2:aa:f6:0c:57:6f:5d:13:69:40:
84:52:f9:b7:48:5f:e7:c6:e8:86:44:a2:9e:61:4f:69:00:51:
9d:a3:60:c6:f2:4a:cb:c4:b3:eb:1a:25:c9:d2:2d:5b:f9:6a:
3a:0f:62:fd:09:c5:83:cb:7e:c4:8d:ef:f8:fc:90:f4:49:87:
ee:e0:d0:c9:dc:91:8d:6b:92:ed:ef:e8:2a:37:cf:f0:af:15:
e3:18:f7:dc:ec:07:8d:c5:64:71:1a:71:8c:61:72:cc:dd:7c:
36:3a:f8:fd:84:44:0e:95:8d:c8:59:b0:e1:e1:32:97:97:c8:
58:44:39:8d:bb:8b:b3:03:ea:ca:73:d8:32:70:c1:ea:d3:06:
8e:2d:b5:2f:b5:c1:94:7b:01:da:64:34:0b:57:a7:48:3c:6c:
ac:72:da:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:46:28 2025 by rpki-client