Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/T_7VSYnKOSjvnuTWwmwff3kfcxo.roa
File: T_7VSYnKOSjvnuTWwmwff3kfcxo.roa (raw, json)
Hash identifier: DlCYGU13et9ewOw+1fpUIgR8MXw03I1FUpNIzAaiNtk=
Subject key identifier: 4F:FE:D5:49:89:CA:39:28:EF:9E:E4:D6:C2:6C:1F:7F:79:1F:73:1A
Certificate issuer: /CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Certificate serial: 01948294BC2E6EF042694AD8D85838692970
Authority key identifier: 07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/T_7VSYnKOSjvnuTWwmwff3kfcxo.roa
Signing time: Mon 20 Jan 2025 07:19:33 +0000
ROA not before: Mon 20 Jan 2025 07:19:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208425
IP address blocks: 185.1.132.0/24 maxlen: 24
185.50.68.0/24 maxlen: 24
185.50.69.0/24 maxlen: 24
185.50.70.0/24 maxlen: 24
185.50.71.0/24 maxlen: 24
185.114.20.0/24 maxlen: 24
185.114.21.0/24 maxlen: 24
185.114.22.0/24 maxlen: 24
185.114.23.0/24 maxlen: 24
185.146.88.0/24 maxlen: 24
185.146.89.0/24 maxlen: 24
185.146.90.0/24 maxlen: 24
185.146.91.0/24 maxlen: 24
185.169.52.0/24 maxlen: 24
185.169.53.0/24 maxlen: 24
185.169.54.0/24 maxlen: 24
185.169.55.0/24 maxlen: 24
194.61.116.0/24 maxlen: 24
194.61.117.0/24 maxlen: 24
194.61.118.0/24 maxlen: 24
194.61.119.0/24 maxlen: 24
217.28.139.0/24 maxlen: 24
2a01:a420::/29 maxlen: 29
2a0a:3900::/29 maxlen: 29
2a0f:d500::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:82:94:bc:2e:6e:f0:42:69:4a:d8:d8:58:38:69:29:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Validity
Not Before: Jan 20 07:19:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4ffed54989ca3928ef9ee4d6c26c1f7f791f731a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:db:80:e2:e6:6d:cd:f1:89:1a:1b:11:c0:5d:
55:d4:fc:eb:76:e5:df:24:d1:87:1f:ea:1c:94:65:
71:99:ae:75:5d:7c:20:33:65:08:9a:4e:93:42:39:
25:e0:7f:fd:01:0e:dc:29:99:69:ab:69:ed:eb:64:
73:11:b3:c8:6f:2f:f1:0e:cf:04:7f:02:5d:35:ab:
52:7f:7d:b0:47:47:32:13:dd:62:fa:b1:db:c8:da:
f8:55:1d:54:f4:4c:4f:c6:1e:68:0a:fa:35:f4:39:
28:f6:65:11:a5:31:38:68:21:09:3f:7b:0e:31:4b:
4b:0c:39:27:17:8c:67:29:77:c3:79:f0:93:20:32:
38:90:f4:10:6a:87:46:54:fb:01:80:19:d5:3a:9c:
45:6d:2e:35:6b:c9:0d:14:02:79:59:90:42:a9:85:
64:4e:52:b3:14:da:0f:08:78:8f:c5:f8:c4:0f:1e:
85:a5:32:34:52:f4:68:91:2f:56:77:f2:7f:3c:08:
b1:e4:01:88:7c:36:f8:bf:fb:76:94:68:fa:6e:f5:
64:e5:cc:d1:50:cc:e8:4a:32:ae:23:8c:e6:2c:9e:
fb:3d:22:11:ab:98:3e:a2:03:0c:1e:12:49:e4:2a:
91:22:08:24:3e:d3:c0:62:1e:da:36:0e:1d:ff:f6:
f3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FE:D5:49:89:CA:39:28:EF:9E:E4:D6:C2:6C:1F:7F:79:1F:73:1A
X509v3 Authority Key Identifier:
keyid:07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/T_7VSYnKOSjvnuTWwmwff3kfcxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.132.0/24
185.50.68.0/22
185.114.20.0/22
185.146.88.0/22
185.169.52.0/22
194.61.116.0/22
217.28.139.0/24
IPv6:
2a01:a420::/29
2a0a:3900::/29
2a0f:d500::/29
Signature Algorithm: sha256WithRSAEncryption
6a:1d:09:54:73:b5:61:8e:24:33:13:94:71:d6:61:59:a6:d5:
35:09:e2:d0:6f:53:7b:e6:32:66:5f:f0:f9:10:5b:5f:42:33:
2e:12:22:8f:f6:99:6e:ee:e9:21:d4:55:9d:40:51:53:76:fc:
84:34:83:95:04:19:8c:d1:fb:d6:88:9f:7e:35:24:77:a1:62:
b1:2b:98:a3:26:03:6e:a0:f5:8e:1b:c0:21:48:39:80:87:41:
6f:95:f5:75:44:e5:9b:9b:74:de:1b:e8:54:8d:16:11:90:c1:
36:56:6e:0e:89:41:e3:40:b0:4a:fc:59:71:41:72:86:97:34:
22:4a:12:e1:5c:9e:99:da:c5:e6:db:21:55:d9:96:8a:ae:94:
0d:17:f1:e7:7b:dd:d1:b5:b5:7a:2a:b1:e6:66:8a:24:7b:4c:
60:39:1b:78:ff:49:49:6c:ab:0f:6a:e9:6d:ff:c4:a2:30:2e:
73:9d:29:3e:97:b8:66:ee:e7:36:7c:97:e0:2a:f1:d7:77:25:
12:4c:c5:b2:5a:45:41:15:fc:6f:86:65:f3:e0:55:18:80:9b:
7d:2a:a6:67:7b:17:f5:5a:09:dc:1a:b6:05:0f:f4:87:34:d3:
ae:45:5e:f9:75:1e:68:a2:60:73:07:d4:83:be:a6:c4:b0:a8:
cf:0d:ea:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:03:58 2025 by rpki-client