Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/36c2aa-2e24-44fb-9e0a-b72398070823/1/ev2WSyViLs_4S1tUPVrDBxIhRNA.roa
File: ev2WSyViLs_4S1tUPVrDBxIhRNA.roa (raw, json)
Hash identifier: 76S9MUck64w/+vCaPMsorT6TPB6jZWIo5BognypKoJ8=
Subject key identifier: 7A:FD:96:4B:25:62:2E:CF:F8:4B:5B:54:3D:5A:C3:07:12:21:44:D0
Certificate issuer: /CN=dab1c03088ebfe553812b31547c03c90a25d8771
Certificate serial: 0194637BE4D77DEA984EEE455786354E27C2
Authority key identifier: DA:B1:C0:30:88:EB:FE:55:38:12:B3:15:47:C0:3C:90:A2:5D:87:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rHAMIjr_lU4ErMVR8A8kKJdh3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/36c2aa-2e24-44fb-9e0a-b72398070823/1/ev2WSyViLs_4S1tUPVrDBxIhRNA.roa
Signing time: Tue 14 Jan 2025 06:24:11 +0000
ROA not before: Tue 14 Jan 2025 06:24:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58130
IP address blocks: 176.116.96.0/20 maxlen: 20
176.116.96.0/24 maxlen: 24
176.116.101.0/24 maxlen: 24
176.116.104.0/24 maxlen: 24
176.116.105.0/24 maxlen: 24
176.116.106.0/24 maxlen: 24
176.116.107.0/24 maxlen: 24
176.116.108.0/24 maxlen: 24
176.116.111.0/24 maxlen: 24
176.116.112.0/22 maxlen: 22
185.165.140.0/23 maxlen: 23
185.165.142.0/23 maxlen: 23
2001:67c:1050::/48 maxlen: 48
2a0a:1a00::/29 maxlen: 29
2a0a:1a00::/30 maxlen: 30
2a0a:1a00:f000:9000::/56 maxlen: 56
2a0a:1a04::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:63:7b:e4:d7:7d:ea:98:4e:ee:45:57:86:35:4e:27:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dab1c03088ebfe553812b31547c03c90a25d8771
Validity
Not Before: Jan 14 06:24:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7afd964b25622ecff84b5b543d5ac307122144d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d9:bb:30:cc:c5:b0:07:ac:a1:bb:b1:f8:8f:
af:4d:28:41:b3:c0:00:35:c9:da:e1:87:4e:64:e6:
bc:34:e4:f1:9c:59:9b:57:ed:4b:48:e4:3e:99:d3:
2c:71:f5:0d:d3:ba:f0:fc:8c:6a:b9:43:7c:d5:6f:
af:0f:7d:1c:af:82:18:0a:a5:95:87:cb:2b:6b:d0:
06:42:ed:a9:bd:6b:d6:50:0f:9a:d3:08:e1:62:21:
10:23:af:0b:5a:a1:a7:b1:dc:a8:6d:37:68:d7:ff:
2b:ef:9b:a0:e1:ac:e6:1c:75:41:c4:f4:54:c5:f3:
d0:f3:93:d1:bc:1a:42:e1:19:23:10:cd:02:40:80:
c4:0d:e4:03:e7:61:be:33:34:94:0b:b5:50:3b:f6:
63:ae:bb:a2:cd:13:a4:48:89:1d:a1:24:e8:ee:87:
8f:e0:b6:86:56:fe:40:7f:f0:93:f8:f6:9d:4c:c3:
78:a1:ac:03:02:52:55:f3:60:19:3c:3e:4f:96:8e:
ba:00:c4:21:94:36:2c:83:63:e8:c7:83:21:8e:b0:
3b:9d:af:b9:1b:0d:a3:70:80:f3:9e:52:2d:2f:8a:
53:9e:64:6b:87:20:16:25:59:0f:07:a0:2f:ae:6f:
b1:c0:02:8d:76:f1:42:89:ee:4d:a0:ca:1a:c3:a6:
7b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:FD:96:4B:25:62:2E:CF:F8:4B:5B:54:3D:5A:C3:07:12:21:44:D0
X509v3 Authority Key Identifier:
keyid:DA:B1:C0:30:88:EB:FE:55:38:12:B3:15:47:C0:3C:90:A2:5D:87:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rHAMIjr_lU4ErMVR8A8kKJdh3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/36c2aa-2e24-44fb-9e0a-b72398070823/1/ev2WSyViLs_4S1tUPVrDBxIhRNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/36c2aa-2e24-44fb-9e0a-b72398070823/1/2rHAMIjr_lU4ErMVR8A8kKJdh3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.96.0-176.116.115.255
185.165.140.0/22
IPv6:
2001:67c:1050::/48
2a0a:1a00::/29
Signature Algorithm: sha256WithRSAEncryption
b6:74:30:86:e2:e2:1e:f1:de:29:a2:41:63:ec:d5:1e:ea:12:
da:49:c2:2e:5e:c9:bb:2f:c0:d4:28:ad:d2:a0:36:9c:86:76:
f2:e0:1b:1a:f0:5d:e8:1e:5b:f3:ee:3e:bd:15:bc:5e:48:ca:
c7:7c:cd:e8:33:8e:e9:66:eb:f4:71:c6:e0:db:e0:83:23:ad:
a6:ee:26:fe:54:d1:e6:37:7a:10:53:52:73:d6:5d:72:1f:ed:
8e:3c:17:d1:78:1b:3f:ff:4c:66:89:97:4a:e0:c8:c6:31:b3:
fc:ab:4b:8c:37:77:7d:50:eb:08:5e:f0:5e:89:a2:73:3d:8e:
c9:8c:95:73:cb:6f:ec:06:55:83:70:c1:96:3d:02:7b:6d:cb:
a2:03:8d:44:76:9c:79:19:c7:93:eb:b9:13:54:af:68:1b:44:
cb:a6:1f:d7:e0:49:8b:ef:1e:76:b6:77:43:cb:4c:6b:c2:4e:
6a:be:ee:10:9a:7f:34:49:9a:95:55:b1:94:06:ff:84:48:49:
d8:28:8c:8f:e1:99:89:cd:5b:57:1d:d1:01:fc:9d:99:28:05:
ad:8d:e9:5a:16:52:41:ab:89:f6:8f:af:56:ff:d4:d9:19:4b:
ef:2e:7b:09:c1:d9:da:6d:8d:c5:5d:d4:c1:dd:0e:f4:83:de:
11:d2:9a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:59:53 2025 by rpki-client