Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/Ja6ihx4I8eDr14qfO5JOyiPfwvw.roa
File: Ja6ihx4I8eDr14qfO5JOyiPfwvw.roa (raw, json)
Hash identifier: P1U1RYHrEZPnYh/bunqOMBxeYqfO0Ny+3h37F78B5FU=
Subject key identifier: 25:AE:A2:87:1E:08:F1:E0:EB:D7:8A:9F:3B:92:4E:CA:23:DF:C2:FC
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 01856F0B57394A3515CE52ED76998E032E2D
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/Ja6ihx4I8eDr14qfO5JOyiPfwvw.roa
Signing time: Sun 01 Jan 2023 20:34:52 +0000
ROA not before: Sun 01 Jan 2023 20:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59711
IP address blocks: 185.80.54.0/23 maxlen: 23
185.174.133.0/24 maxlen: 24
185.80.52.0/23 maxlen: 23
185.174.135.0/24 maxlen: 24
91.193.18.0/24 maxlen: 24
185.117.90.0/23 maxlen: 23
77.83.196.0/24 maxlen: 24
77.83.198.0/24 maxlen: 24
185.104.194.0/24 maxlen: 24
185.104.193.0/24 maxlen: 24
193.42.36.0/24 maxlen: 24
5.149.248.0/23 maxlen: 23
5.149.254.0/23 maxlen: 23
79.141.164.0/23 maxlen: 23
79.141.172.0/24 maxlen: 24
185.81.114.0/23 maxlen: 23
185.81.114.0/24 maxlen: 24
185.81.115.0/24 maxlen: 24
2a01:8640:12::/48 maxlen: 48
2a01:8640:f::/48 maxlen: 48
2a01:8640:a::/48 maxlen: 48
2a01:8640::/48 maxlen: 48
2a01:8640:2::/48 maxlen: 48
2a01:8640:11::/48 maxlen: 48
2a01:8640:13::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:57:39:4a:35:15:ce:52:ed:76:99:8e:03:2e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jan 1 20:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25aea2871e08f1e0ebd78a9f3b924eca23dfc2fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:19:47:57:0f:f7:4d:58:aa:10:88:cb:a4:79:
32:a8:06:a5:84:f4:8e:2c:7b:29:ad:9f:05:6d:a8:
78:53:21:e0:e8:07:8d:41:be:1e:17:88:b0:1c:34:
80:f8:b2:e5:e9:b4:e7:4c:e8:9a:ae:e3:c0:82:93:
79:e9:b9:ad:a1:e8:68:75:dc:a2:8b:df:68:90:bc:
e3:53:f4:95:da:03:a6:30:32:e3:3e:44:e5:5d:69:
f0:cb:b4:8a:0a:8f:33:33:d9:aa:69:df:0b:02:a5:
be:c8:ef:7a:2e:74:78:f2:70:9f:b5:b9:3a:a9:fd:
0f:77:f1:ba:3b:e4:1d:09:d2:d0:a1:cc:45:94:51:
b8:d6:96:81:49:7c:49:78:04:61:ee:f9:eb:a0:0e:
8f:c3:ba:45:e9:7d:5b:36:09:7f:f4:af:b4:e2:da:
e1:fd:fd:b5:34:66:b9:fd:ff:83:bd:ef:dd:5e:a1:
ce:cd:d3:3a:a8:2f:69:c5:de:7a:b5:fb:cc:41:b1:
36:da:7e:55:18:aa:fb:1b:5b:36:1b:05:24:00:ac:
4b:25:c1:e8:f7:95:63:dc:26:c1:c8:9a:a8:78:a3:
cf:54:77:3a:e1:6c:73:92:a0:32:cd:9e:28:f2:48:
ad:11:08:de:34:82:55:28:d1:de:d1:ac:72:ad:4e:
36:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AE:A2:87:1E:08:F1:E0:EB:D7:8A:9F:3B:92:4E:CA:23:DF:C2:FC
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/Ja6ihx4I8eDr14qfO5JOyiPfwvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.248.0/23
5.149.254.0/23
77.83.196.0/24
77.83.198.0/24
79.141.164.0/23
79.141.172.0/24
91.193.18.0/24
185.80.52.0/22
185.81.114.0/23
185.104.193.0-185.104.194.255
185.117.90.0/23
185.174.133.0/24
185.174.135.0/24
193.42.36.0/24
IPv6:
2a01:8640::/48
2a01:8640:2::/48
2a01:8640:a::/48
2a01:8640:f::/48
2a01:8640:11::-2a01:8640:13:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
91:96:b3:73:b6:db:56:1d:ce:d1:19:c3:29:b0:fd:38:d9:d9:
da:c9:16:03:be:ec:ac:74:3e:39:dd:58:c3:90:5f:66:b7:ab:
83:a0:d3:a3:5a:8e:4f:16:52:53:96:ab:ad:46:92:51:d2:12:
2b:9a:e2:fd:bd:bd:44:fd:21:d4:13:0c:ad:57:c8:d3:bf:4d:
65:83:35:c0:b9:b4:06:b5:5e:05:70:07:24:52:6f:60:b3:9d:
f9:4c:a6:6e:cb:fe:7a:7a:03:e8:6c:3a:4d:90:46:88:51:3d:
5e:18:7b:a9:83:86:ae:e0:3e:07:5d:ff:fd:75:ed:cd:27:45:
93:ca:07:ff:04:4b:41:4b:0f:27:19:10:84:01:5e:4e:39:78:
43:2e:7f:42:e0:f6:3c:90:f5:5d:e1:e4:a5:64:b1:08:cc:bb:
53:aa:5e:f3:b2:a9:d9:ba:77:e6:e4:cc:fa:cf:12:7a:0f:d2:
0c:0f:c6:33:96:05:1f:33:4b:64:82:79:92:a4:ea:d3:08:0e:
ad:56:02:05:85:4f:2a:83:82:e4:22:ca:d2:3a:f5:4e:39:ff:
f7:37:07:29:cd:03:54:06:cc:67:3e:d6:df:d2:89:d0:50:69:
92:6b:b4:d8:6e:83:36:00:3b:d4:d1:9f:57:c6:db:bc:f2:c0:
c1:b5:ab:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:13 2025 by rpki-client