Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/p27RsG95q9Rp1UvoYXLUTrdB0CM.roa
File: p27RsG95q9Rp1UvoYXLUTrdB0CM.roa (raw, json)
Hash identifier: Dbb8W8eHFOuwm/6t66sdu8l6INr3fov9u7+C6SX/mVg=
Subject key identifier: A7:6E:D1:B0:6F:79:AB:D4:69:D5:4B:E8:61:72:D4:4E:B7:41:D0:23
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 018CC9BCBE4365F9DBD0C369961503CC0C22
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/p27RsG95q9Rp1UvoYXLUTrdB0CM.roa
Signing time: Tue 02 Jan 2024 10:33:58 +0000
ROA not before: Tue 02 Jan 2024 10:33:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59711
IP address blocks: 185.80.54.0/23 maxlen: 23
185.174.133.0/24 maxlen: 24
185.80.52.0/23 maxlen: 23
185.174.135.0/24 maxlen: 24
91.193.18.0/24 maxlen: 24
185.117.88.0/23 maxlen: 23
185.117.90.0/23 maxlen: 23
77.83.197.0/24 maxlen: 24
77.83.196.0/24 maxlen: 24
77.83.198.0/24 maxlen: 24
195.95.155.0/24 maxlen: 24
185.235.137.0/24 maxlen: 24
185.235.138.0/24 maxlen: 24
79.141.174.0/23 maxlen: 23
89.150.57.0/24 maxlen: 24
185.104.192.0/24 maxlen: 24
185.104.194.0/24 maxlen: 24
185.104.193.0/24 maxlen: 24
193.42.36.0/24 maxlen: 24
193.42.39.0/24 maxlen: 24
5.149.248.0/23 maxlen: 23
5.149.254.0/23 maxlen: 23
79.141.164.0/23 maxlen: 23
79.141.172.0/24 maxlen: 24
185.81.114.0/23 maxlen: 23
185.81.114.0/24 maxlen: 24
185.81.115.0/24 maxlen: 24
2a01:8640:12::/48 maxlen: 48
2a01:8640:6::/48 maxlen: 48
2a01:8640:f::/48 maxlen: 48
2a01:8640:a::/48 maxlen: 48
2a01:8640::/48 maxlen: 48
2a01:8640:14::/48 maxlen: 48
2a01:8640:2::/48 maxlen: 48
2a01:8640:11::/48 maxlen: 48
2a01:8640:13::/48 maxlen: 48
2a01:8640:9::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:be:43:65:f9:db:d0:c3:69:96:15:03:cc:0c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jan 2 10:33:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a76ed1b06f79abd469d54be86172d44eb741d023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bc:9f:66:7a:d4:04:7a:7f:59:ac:5a:b6:62:
24:cc:d9:57:c1:54:eb:02:c8:7d:1c:97:14:14:dd:
85:6a:58:0d:7a:9a:09:e7:57:90:25:84:dc:9b:21:
90:da:b6:37:1e:3c:0a:9a:f9:3c:30:ce:6a:5e:e5:
b0:57:29:28:3b:2f:30:80:e0:c0:e9:04:f6:35:ac:
8f:da:bb:c9:22:a3:6d:b1:17:94:8f:92:8d:a3:b8:
1a:bd:41:3a:b4:55:dc:1f:69:e2:93:90:fa:26:cd:
5c:b2:b9:67:96:e1:38:24:b1:61:92:20:c7:ac:e7:
a7:34:25:f6:36:a4:bc:64:0e:f3:2a:d3:60:f7:0f:
bb:64:ea:60:88:8c:6a:bd:f3:fa:b5:1b:03:d7:4e:
69:d5:9e:87:da:66:1b:e0:72:cf:7c:44:36:4e:e6:
a9:58:67:58:17:6d:20:af:3b:1a:89:0d:77:23:ee:
6c:ec:50:47:f4:da:7f:62:0d:d8:1b:87:d9:2d:82:
2c:57:67:6b:80:21:66:52:41:98:6a:01:57:99:24:
ec:fd:32:b1:12:39:08:6f:bd:0c:6a:fb:00:83:ab:
fb:9d:0d:31:fc:ac:3b:e0:26:5f:55:ce:d4:47:24:
30:98:e0:b1:c6:b1:75:60:ed:a5:b1:78:29:41:0d:
2d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6E:D1:B0:6F:79:AB:D4:69:D5:4B:E8:61:72:D4:4E:B7:41:D0:23
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/p27RsG95q9Rp1UvoYXLUTrdB0CM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.248.0/23
5.149.254.0/23
77.83.196.0-77.83.198.255
79.141.164.0/23
79.141.172.0/24
79.141.174.0/23
89.150.57.0/24
91.193.18.0/24
185.80.52.0/22
185.81.114.0/23
185.104.192.0-185.104.194.255
185.117.88.0/22
185.174.133.0/24
185.174.135.0/24
185.235.137.0-185.235.138.255
193.42.36.0/24
193.42.39.0/24
195.95.155.0/24
IPv6:
2a01:8640::/48
2a01:8640:2::/48
2a01:8640:6::/48
2a01:8640:9::-2a01:8640:a:ffff:ffff:ffff:ffff:ffff
2a01:8640:f::/48
2a01:8640:11::-2a01:8640:14:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
96:ea:a2:60:00:10:01:42:9f:f5:4f:1b:07:5e:49:16:f0:57:
b0:69:ab:b2:d3:39:84:29:70:e0:1d:aa:c2:b2:b4:b0:21:44:
0d:75:19:02:6e:33:dd:e4:d6:c3:11:03:db:7a:11:a2:ac:b8:
05:2f:a2:9f:6a:c0:00:ac:75:45:43:d3:67:63:8d:72:80:ff:
1e:18:47:9c:0e:22:8d:1d:42:50:6d:78:92:c2:d4:74:31:de:
2a:80:27:3c:b2:28:fc:f0:ba:24:b7:77:3c:d7:30:4b:f8:9e:
9e:57:6c:01:08:54:39:66:17:f1:ca:13:12:be:db:ea:28:20:
e3:02:4c:df:5b:44:b6:ef:a6:df:96:0a:3d:9f:c8:44:9e:a8:
24:43:3e:b9:e0:a1:7b:fe:c4:1f:92:82:3e:e6:3e:94:ae:95:
b1:90:bc:ed:81:88:6f:e9:72:ea:59:df:98:2c:94:35:26:fc:
c4:42:4c:94:be:2a:97:8c:53:dd:41:d2:a9:fd:71:e9:35:a6:
df:cc:2f:13:59:c3:56:76:eb:48:19:6d:92:6e:7b:38:5f:14:
dc:0c:0b:a0:21:62:41:49:ab:3d:60:df:59:04:51:b4:d8:59:
ad:e1:01:0d:a6:23:d0:23:96:65:86:4f:c2:55:84:d5:29:d9:
23:8b:d9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:27 2025 by rpki-client