Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/xLEN3d2v1xeal7c6vkGtgu1vFXk.roa
File: xLEN3d2v1xeal7c6vkGtgu1vFXk.roa (raw, json)
Hash identifier: zQO4bR+7KxhNRgyuafK1x2w4ebnFmqPhNablaYNW1xA=
Subject key identifier: C4:B1:0D:DD:DD:AF:D7:17:9A:97:B7:3A:BE:41:AD:82:ED:6F:15:79
Certificate issuer: /CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Certificate serial: 0190DFE6BCD4046A6E5EED5C56F56BC82616
Authority key identifier: 13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/xLEN3d2v1xeal7c6vkGtgu1vFXk.roa
Signing time: Tue 23 Jul 2024 14:02:39 +0000
ROA not before: Tue 23 Jul 2024 14:02:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50889
IP address blocks: 77.111.248.0/24 maxlen: 24
77.111.249.0/24 maxlen: 24
77.111.250.0/24 maxlen: 24
77.111.251.0/24 maxlen: 24
80.84.160.0/24 maxlen: 24
80.84.161.0/24 maxlen: 24
80.84.162.0/24 maxlen: 24
80.84.163.0/24 maxlen: 24
80.84.164.0/24 maxlen: 24
80.84.165.0/24 maxlen: 24
80.84.166.0/24 maxlen: 24
80.84.167.0/24 maxlen: 24
80.84.168.0/24 maxlen: 24
80.84.169.0/24 maxlen: 24
80.84.170.0/24 maxlen: 24
80.84.171.0/24 maxlen: 24
80.84.172.0/24 maxlen: 24
80.84.173.0/24 maxlen: 24
80.84.174.0/24 maxlen: 24
80.84.175.0/24 maxlen: 24
80.250.96.0/24 maxlen: 24
80.250.97.0/24 maxlen: 24
80.250.98.0/24 maxlen: 24
185.136.69.0/24 maxlen: 24
185.136.70.0/24 maxlen: 24
185.136.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:df:e6:bc:d4:04:6a:6e:5e:ed:5c:56:f5:6b:c8:26:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Validity
Not Before: Jul 23 14:02:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4b10dddddafd7179a97b73abe41ad82ed6f1579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:51:ce:69:56:fc:e3:81:e3:15:48:bf:9e:50:
41:fb:ba:e1:df:51:29:0c:3a:f3:4a:8f:8b:a9:2f:
ee:0b:d8:0a:3f:a0:0c:f2:6b:25:08:6b:da:91:12:
19:04:bc:e2:79:ef:2f:e7:71:e2:4d:90:82:cd:6f:
ce:b0:4a:13:a8:4b:4d:d5:7e:52:8a:fe:54:84:98:
5c:a4:84:83:9e:c6:05:76:48:9c:ac:5f:9a:49:57:
a0:6f:e5:3c:15:23:1f:1a:11:d5:bd:0d:70:df:02:
3e:3b:e2:b6:01:a0:da:7a:0d:20:a3:2d:99:1f:09:
a2:40:aa:32:75:38:52:c9:4d:51:0e:3d:a2:dc:83:
c2:25:0b:de:33:53:97:88:8b:4a:8f:63:af:a0:20:
c2:50:ce:5b:ed:61:69:1c:76:17:d2:29:ff:f6:6d:
96:24:a3:32:74:71:b1:03:05:5f:4b:1b:47:09:b3:
94:d8:b8:7a:cb:fe:cc:e9:c1:da:60:4d:5f:b3:98:
1f:63:6f:64:40:62:07:3b:cf:b8:0f:82:2c:13:97:
1d:1c:79:35:22:3b:26:56:6f:0c:0d:10:d5:74:9f:
eb:e3:af:8b:17:72:33:98:39:e7:6a:95:f9:ed:5a:
30:45:c8:3b:4f:e7:d0:45:45:ca:10:fc:00:b4:50:
3f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B1:0D:DD:DD:AF:D7:17:9A:97:B7:3A:BE:41:AD:82:ED:6F:15:79
X509v3 Authority Key Identifier:
keyid:13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/xLEN3d2v1xeal7c6vkGtgu1vFXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/E6D3FD_6IhE0QtyFie4TUuvj2qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.248.0/22
80.84.160.0/20
80.250.96.0-80.250.98.255
185.136.69.0-185.136.71.255
Signature Algorithm: sha256WithRSAEncryption
01:cf:7c:c3:bc:d9:cd:fe:69:d5:b4:61:a5:58:cd:ca:f3:15:
d0:3f:ff:82:53:58:c6:e5:4a:c3:d9:ca:f2:1a:8e:a1:15:39:
16:03:1d:a7:52:a6:d1:5a:28:b3:ba:57:05:a9:c8:36:19:0f:
32:19:f5:bc:62:85:66:60:9a:b9:3d:97:bf:98:24:bc:e4:1e:
39:3a:c2:40:01:da:da:ec:dd:a2:21:da:ec:5f:d4:c6:86:b7:
b2:3e:b8:dc:04:6a:5c:7f:3c:dd:ba:37:61:af:8e:8a:fa:5f:
92:50:4f:01:32:3e:f3:99:e4:03:a7:61:de:af:9f:4d:21:1a:
92:f9:7d:a7:70:8f:27:68:7b:93:c2:41:f6:b5:59:28:df:14:
e0:1c:6f:75:88:80:2c:2c:11:33:3e:24:1f:dc:6a:7b:10:62:
58:b4:44:75:c3:ba:2a:91:04:e7:4f:b7:ea:70:5e:6e:da:20:
01:8d:f2:62:af:23:ac:5a:fb:72:49:b1:80:b8:6c:19:2e:70:
ac:68:02:1b:d3:8e:de:30:66:73:42:fe:bd:bd:92:3d:b1:88:
a1:2c:70:ef:c7:2a:02:12:5f:fb:c1:08:52:da:bf:c8:3c:58:
3c:a9:88:e4:7a:31:9b:a2:e2:ab:a7:ea:23:e4:2b:0f:59:8f:
ec:ce:f2:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:48:16 2025 by rpki-client