Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/2B7MnuDjNrm2In1jcsBF1xD0-AM.roa
File: 2B7MnuDjNrm2In1jcsBF1xD0-AM.roa (raw, json)
Hash identifier: G/gtEG5thlF3vwwdGqqs/sJfMlxuJ4nRPhQUQLgg814=
Subject key identifier: D8:1E:CC:9E:E0:E3:36:B9:B6:22:7D:63:72:C0:45:D7:10:F4:F8:03
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 06B90004
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/2B7MnuDjNrm2In1jcsBF1xD0-AM.roa
Signing time: Tue 28 Jun 2022 13:57:31 +0000
ROA not before: Tue 28 Jun 2022 13:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59711
IP address blocks: 185.80.54.0/23 maxlen: 23
185.174.133.0/24 maxlen: 24
185.80.52.0/23 maxlen: 23
185.174.135.0/24 maxlen: 24
91.193.18.0/24 maxlen: 24
185.117.90.0/23 maxlen: 23
185.104.194.0/24 maxlen: 24
185.104.193.0/24 maxlen: 24
77.83.196.0/24 maxlen: 24
77.83.198.0/24 maxlen: 24
193.42.36.0/24 maxlen: 24
5.149.248.0/23 maxlen: 23
5.149.254.0/23 maxlen: 23
79.141.164.0/23 maxlen: 23
79.141.172.0/24 maxlen: 24
185.81.114.0/23 maxlen: 23
185.81.114.0/24 maxlen: 24
185.81.115.0/24 maxlen: 24
2a01:8640:2::/48 maxlen: 48
2a01:8640:12::/48 maxlen: 48
2a01:8640:11::/48 maxlen: 48
2a01:8640:f::/48 maxlen: 48
2a01:8640:a::/48 maxlen: 48
2a01:8640::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112787460 (0x6b90004)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jun 28 13:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d81ecc9ee0e336b9b6227d6372c045d710f4f803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cb:0c:ac:7a:c6:00:b7:3a:5c:71:1f:d3:dc:
b9:2f:15:0a:7e:64:59:e2:a7:3d:ab:85:32:18:1b:
a7:22:20:e6:18:c7:73:cd:d2:34:75:99:4c:43:18:
66:34:f9:e3:4a:93:1f:e7:37:15:b5:8f:3c:e3:24:
11:e5:86:e1:12:87:e5:f6:72:88:71:86:56:23:ed:
37:56:d3:f9:10:1e:5d:5d:ea:4b:6a:6b:a9:c8:4b:
b7:71:75:7f:24:45:ea:f1:36:02:56:c2:9b:8c:91:
9b:b6:a8:96:c7:0e:7d:4e:65:44:2d:d5:3d:8a:b0:
83:06:26:0d:a3:fa:3d:1e:ac:96:47:51:a2:95:b9:
fc:d2:76:02:98:94:81:13:94:e8:c2:62:bf:46:05:
9e:5b:a0:a3:24:7e:78:87:64:3c:f3:7c:74:ca:f5:
c7:d7:a4:60:19:a0:13:d0:04:80:9b:11:d5:ac:0e:
06:39:1b:28:38:04:c8:aa:b3:ee:1a:9f:8d:a0:f9:
01:2a:3f:87:d0:9d:ed:cd:c6:17:db:c0:7b:93:90:
b8:b2:5f:9d:b2:af:44:00:4b:58:29:85:8e:f9:6a:
6a:05:e6:24:5a:fc:11:e7:da:fc:fa:63:05:d1:91:
d9:fe:c4:71:47:71:e9:e5:b5:ba:fa:9b:15:71:21:
ae:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1E:CC:9E:E0:E3:36:B9:B6:22:7D:63:72:C0:45:D7:10:F4:F8:03
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/2B7MnuDjNrm2In1jcsBF1xD0-AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.248.0/23
5.149.254.0/23
77.83.196.0/24
77.83.198.0/24
79.141.164.0/23
79.141.172.0/24
91.193.18.0/24
185.80.52.0/22
185.81.114.0/23
185.104.193.0-185.104.194.255
185.117.90.0/23
185.174.133.0/24
185.174.135.0/24
193.42.36.0/24
IPv6:
2a01:8640::/48
2a01:8640:2::/48
2a01:8640:a::/48
2a01:8640:f::/48
2a01:8640:11::-2a01:8640:12:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
89:7f:f1:88:d0:fb:c0:80:fd:ea:b8:3d:22:77:25:95:f2:34:
9b:95:1b:0a:a7:a7:0d:28:d0:5d:38:1b:c5:f0:d1:a4:42:05:
02:4a:80:42:96:fc:4e:4b:89:0b:34:2c:da:a5:d2:06:bf:22:
c0:c8:93:43:e6:73:6b:da:7f:5e:2d:83:ac:fb:20:f7:32:ff:
ef:1f:18:e6:b5:8a:aa:94:0f:d6:c4:4e:bc:94:1b:3e:c3:95:
7a:6e:70:0f:94:a7:b7:eb:4d:55:c8:68:26:27:27:82:d8:8d:
aa:5a:78:57:ca:b0:44:a2:2d:94:ec:3d:8f:d3:e0:85:8c:79:
52:f1:92:e9:d8:7f:25:80:e7:35:2a:b0:dd:d3:e1:48:ec:e0:
53:65:99:bf:04:2c:03:6d:95:c7:8f:65:cf:2f:c6:e2:f6:8f:
b9:2f:3d:e5:b2:c7:40:99:46:39:47:fa:8c:af:a8:c2:b3:77:
66:9e:c7:09:78:aa:e0:01:11:28:72:19:59:de:d7:a6:62:f6:
40:48:c1:3b:c8:68:6e:58:41:e3:05:b3:b2:44:30:45:a6:86:
cb:f0:a9:28:e5:91:1b:44:a7:fc:89:5f:87:f7:ab:0a:26:c6:
77:75:99:f0:75:ba:6b:ee:f5:96:b7:59:42:e3:b7:65:64:5f:
e1:68:53:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:14 2025 by rpki-client