Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/wAWGCgOGn42x04btliaEqSWrIic.roa
File: wAWGCgOGn42x04btliaEqSWrIic.roa (raw, json)
Hash identifier: HtjSL8DOFr1dgUUl5P8YVKdjHXwplmqEt7oA7RSDJWk=
Subject key identifier: C0:05:86:0A:03:86:9F:8D:B1:D3:86:ED:96:26:84:A9:25:AB:22:27
Certificate issuer: /CN=01bfe882d13e803fc194373ea40d8a5a9e69f304
Certificate serial: 018CC7270ABB3217777D8E8574DDD20BAB22
Authority key identifier: 01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/wAWGCgOGn42x04btliaEqSWrIic.roa
Signing time: Mon 01 Jan 2024 22:31:13 +0000
ROA not before: Mon 01 Jan 2024 22:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50785
IP address blocks: 185.128.172.0/22 maxlen: 22
81.18.16.0/20 maxlen: 21
185.152.224.0/22 maxlen: 22
5.144.40.0/21 maxlen: 21
2a06:d040::/29 maxlen: 29
2a02:d38::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:0a:bb:32:17:77:7d:8e:85:74:dd:d2:0b:ab:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01bfe882d13e803fc194373ea40d8a5a9e69f304
Validity
Not Before: Jan 1 22:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c005860a03869f8db1d386ed962684a925ab2227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:02:a6:17:43:e3:73:ae:a0:91:ad:cb:b7:5a:
83:c5:07:2c:08:32:ae:5f:82:f1:fb:2f:38:68:ea:
27:98:9b:b6:1c:cd:19:b1:a8:fe:c3:20:9a:e9:17:
92:c9:b9:69:dd:37:84:3f:17:65:a6:8f:c5:08:48:
f7:c9:2c:12:cc:be:30:96:0b:26:62:0a:06:d9:48:
d7:b0:35:ce:2c:51:1d:06:72:a9:ab:88:c2:31:b1:
94:65:9b:2e:ec:c6:2e:10:b2:30:4a:f5:58:31:bf:
29:07:e8:19:e9:d1:a8:d0:c8:b2:e2:74:40:03:a3:
14:16:c5:59:ab:be:fe:d7:f5:28:17:97:94:09:b7:
96:34:67:da:d2:8f:f5:0d:31:67:e2:2e:ab:fd:4e:
01:3f:7f:30:9b:34:3f:fa:a3:0d:2f:d6:d0:ce:b7:
72:4e:e3:df:4c:4c:bd:6c:3e:7a:f4:51:b9:2a:70:
be:97:d8:cf:cd:29:44:99:96:3c:ae:4c:a1:38:6e:
08:e6:2c:bf:a3:08:af:f8:5d:c8:04:39:ee:a3:ff:
db:f1:f8:a2:82:32:f9:eb:52:38:af:72:9d:db:b8:
1d:9e:d6:4e:67:e2:9f:aa:f9:a6:11:06:7c:bd:51:
d0:01:e3:d2:81:69:ac:0b:04:bf:90:bb:ca:4b:9c:
95:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:05:86:0A:03:86:9F:8D:B1:D3:86:ED:96:26:84:A9:25:AB:22:27
X509v3 Authority Key Identifier:
keyid:01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/wAWGCgOGn42x04btliaEqSWrIic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.40.0/21
81.18.16.0/20
185.128.172.0/22
185.152.224.0/22
IPv6:
2a02:d38::/29
2a06:d040::/29
Signature Algorithm: sha256WithRSAEncryption
0d:66:0c:c8:76:9f:63:1f:63:9f:c3:c7:ef:45:8c:ae:a6:61:
0d:54:fd:43:ff:57:4a:73:8d:f0:44:48:16:d2:7b:52:4b:29:
12:7c:bd:ca:51:c3:cc:2a:49:aa:0e:de:fa:fe:54:74:41:8a:
c4:3d:e6:bb:73:df:de:fb:dc:3b:c0:b3:1d:11:87:58:76:9c:
1e:62:1c:14:b7:f1:62:d1:91:b9:cb:b4:cf:52:9f:b1:44:1a:
e7:14:ae:f7:52:41:79:13:8e:92:72:3a:fe:df:44:32:15:be:
58:b7:e6:d7:b5:07:00:7a:bc:ec:2b:12:dc:85:f3:d4:3a:68:
ba:ad:01:e5:6f:aa:3c:6d:f6:d6:f3:d1:1e:3f:ee:c4:ac:df:
4c:f7:e0:7c:77:a3:fd:54:b3:75:33:53:f6:c4:04:f7:13:76:
28:1e:f0:0d:f0:7e:63:ec:54:7b:5c:92:5a:12:07:24:30:16:
12:54:8d:e8:50:69:bd:c2:a6:4d:dd:2c:ea:9f:14:5f:43:e5:
a0:1b:72:90:e3:8f:7e:2a:18:6a:57:dd:6b:5d:46:09:8b:a1:
a6:f8:6f:e0:44:10:2c:60:ac:d0:66:3b:d0:9f:17:98:d5:fb:
9b:f3:0b:07:5a:f5:11:61:d3:79:34:79:87:a0:9e:63:cc:06:
1e:33:da:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:56:02 2025 by rpki-client