Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/EFQvVvsmK2CnxaFWECLQzIRuaoA.roa
File: EFQvVvsmK2CnxaFWECLQzIRuaoA.roa (raw, json)
Hash identifier: z5MySgQN1+YGDxUko6xG8KGFZh9NwMFl3FNcAcreE/w=
Subject key identifier: 10:54:2F:56:FB:26:2B:60:A7:C5:A1:56:10:22:D0:CC:84:6E:6A:80
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 01941F8C947A2F15A11F6431F0B123EFAB13
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/EFQvVvsmK2CnxaFWECLQzIRuaoA.roa
Signing time: Wed 01 Jan 2025 01:48:14 +0000
ROA not before: Wed 01 Jan 2025 01:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28917
IP address blocks: 46.44.0.0/18 maxlen: 18
46.44.0.0/20 maxlen: 20
46.44.32.0/19 maxlen: 19
62.140.224.0/19 maxlen: 19
62.140.233.0/24 maxlen: 24
62.140.234.0/23 maxlen: 23
62.140.250.0/24 maxlen: 24
62.140.252.0/23 maxlen: 23
62.140.255.0/24 maxlen: 24
80.77.160.0/20 maxlen: 24
80.77.162.0/23 maxlen: 23
80.77.169.0/24 maxlen: 24
80.77.172.0/22 maxlen: 22
93.191.8.0/21 maxlen: 21
93.191.11.0/24 maxlen: 24
93.191.12.0/23 maxlen: 23
93.191.14.0/24 maxlen: 24
185.221.44.0/22 maxlen: 22
2a02:2518::/29 maxlen: 29
2a02:2518::/32 maxlen: 32
2a02:2518:11::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:94:7a:2f:15:a1:1f:64:31:f0:b1:23:ef:ab:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 1 01:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=10542f56fb262b60a7c5a1561022d0cc846e6a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0e:f5:36:a2:31:8f:ee:a9:ad:b2:a2:9e:8d:
93:5b:22:74:9b:2c:3e:77:a0:b6:a6:d5:4c:42:39:
7b:94:e0:ee:17:47:ef:bc:8a:8e:73:3a:fa:c1:f2:
c8:3c:e4:c1:81:f3:79:e5:c1:01:a0:ae:93:c2:f2:
17:e6:ee:d3:4a:ba:7f:52:64:88:c5:47:1a:9a:85:
81:c5:18:83:e6:1e:9d:4b:e9:89:08:bc:2b:a5:ee:
95:44:0e:79:5b:cf:b0:e9:7e:96:84:74:51:c2:ba:
80:63:54:8a:b6:dd:a5:d0:08:98:48:7d:e5:58:11:
54:91:9d:79:74:2d:3b:af:00:b4:a9:21:41:63:f6:
b8:fb:cb:d5:97:d1:da:de:92:7a:9e:11:cf:dd:22:
4e:a9:0b:92:62:14:cb:8c:85:da:95:69:b3:a8:a9:
8e:8b:4f:3b:8d:3c:58:d7:76:06:33:f3:7c:1a:8b:
48:27:90:f9:ec:56:52:a3:52:d7:2f:01:91:69:a3:
d3:6b:24:48:71:0a:3a:2b:65:0d:46:ac:77:8c:6c:
b9:bc:55:8f:2c:70:da:d1:fc:9b:13:2a:59:3b:d6:
04:51:48:3b:13:d3:bc:d2:9e:f7:61:bb:4c:7e:f4:
69:ac:0b:64:f6:a0:e7:d2:ae:40:6a:16:6b:59:33:
67:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:54:2F:56:FB:26:2B:60:A7:C5:A1:56:10:22:D0:CC:84:6E:6A:80
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/EFQvVvsmK2CnxaFWECLQzIRuaoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.44.0.0/18
62.140.224.0/19
80.77.160.0/20
93.191.8.0/21
185.221.44.0/22
IPv6:
2a02:2518::/29
Signature Algorithm: sha256WithRSAEncryption
8e:ac:29:e7:24:0c:02:95:74:45:ce:58:b6:00:40:8b:71:8a:
05:ab:76:df:7c:28:58:62:0f:a2:86:ba:42:34:06:0f:ec:f5:
86:05:5c:ba:f4:c6:1a:3e:4c:d8:59:fd:0b:ba:c1:9e:34:09:
38:39:20:74:6c:1e:e1:c6:d5:43:d5:2a:3d:df:de:32:71:58:
8e:a7:15:6d:29:11:28:9b:f3:b6:cc:15:d7:84:fd:c8:94:3a:
b9:c1:d5:6d:fd:f8:90:21:a8:19:31:1b:ee:5a:8e:a4:ce:19:
aa:fb:7d:ee:28:fd:3e:1b:de:b1:a1:38:d2:0e:3d:9f:4a:4e:
fc:7d:b3:d6:ee:c3:74:45:03:62:b6:8b:3c:bb:c9:07:6f:b2:
d8:24:41:95:e6:5c:cd:a7:f0:0d:d8:54:6e:b4:b1:9b:74:74:
cf:e9:67:4c:66:19:05:28:14:c4:4a:d9:d9:86:64:6b:83:35:
48:c0:a7:5e:59:8b:70:05:a3:08:30:7d:c2:e2:3a:74:ef:57:
62:f4:23:73:f7:c0:77:c3:52:01:fc:cf:c6:d2:90:93:44:24:
6e:51:63:5e:42:ac:ed:5f:2f:2f:bc:dc:18:5c:6e:7b:9b:ff:
aa:c7:0b:60:f4:be:63:50:4c:c1:2f:b9:31:7b:7c:6f:1e:5c:
fe:46:32:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:55:20 2025 by rpki-client