Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/DrLtDC-VBnvcGuPTgEHwIfkxX8M.roa
File: DrLtDC-VBnvcGuPTgEHwIfkxX8M.roa (raw, json)
Hash identifier: iUMTsijKum84879TuxzFL/n7amFqxysuVe8gSik5z2A=
Subject key identifier: 0E:B2:ED:0C:2F:95:06:7B:DC:1A:E3:D3:80:41:F0:21:F9:31:5F:C3
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 0193DA66160C0C0D2A7C5C0B7DC7A911644B
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/DrLtDC-VBnvcGuPTgEHwIfkxX8M.roa
Signing time: Wed 18 Dec 2024 15:32:23 +0000
ROA not before: Wed 18 Dec 2024 15:32:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35831
IP address blocks: 83.245.79.0/24 maxlen: 24
89.167.181.0/24 maxlen: 24
89.167.228.0/24 maxlen: 24
89.167.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:da:66:16:0c:0c:0d:2a:7c:5c:0b:7d:c7:a9:11:64:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Dec 18 15:32:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0eb2ed0c2f95067bdc1ae3d38041f021f9315fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3c:a6:7a:99:98:ab:01:25:e8:98:1e:ed:95:
7f:1c:a8:b5:63:8b:3e:b2:d1:c0:56:d2:fd:05:71:
d9:56:bb:b0:57:12:d5:e1:12:eb:fa:1d:d4:5d:78:
b7:9b:90:7e:e4:7f:79:b6:fd:26:b0:8d:ae:f8:a2:
ee:5e:d9:23:d0:53:13:c3:9d:19:22:e7:9d:68:ac:
73:24:36:db:0e:62:e2:36:fb:a3:4f:93:2f:e8:99:
bc:11:bc:b1:58:3b:6a:46:cb:28:18:02:66:b1:a2:
57:df:15:7a:75:0e:72:5d:46:02:24:6c:f1:8d:a3:
4d:8d:3f:0f:0b:84:a2:27:9d:27:e3:ec:11:d9:bc:
0b:56:8c:0b:0d:54:7d:22:89:35:08:c5:99:29:50:
30:0d:18:72:39:03:d8:ae:8f:f1:ad:a8:83:d6:16:
7f:37:b0:7e:d5:9a:6a:37:cf:64:62:c3:20:22:a2:
8c:98:33:6c:c7:94:a0:7b:2b:67:02:b1:46:b2:35:
4c:73:58:ee:b6:27:e5:74:47:a3:ca:29:2c:37:54:
2b:a5:24:cc:5c:43:f3:c0:d5:97:53:97:c3:92:8d:
ef:26:9e:1c:46:1a:1c:ec:f4:bd:95:83:6c:18:11:
32:a1:fc:74:a1:ee:24:45:2e:95:0b:63:aa:03:fa:
8a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B2:ED:0C:2F:95:06:7B:DC:1A:E3:D3:80:41:F0:21:F9:31:5F:C3
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/DrLtDC-VBnvcGuPTgEHwIfkxX8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.245.79.0/24
89.167.181.0/24
89.167.228.0/23
Signature Algorithm: sha256WithRSAEncryption
26:cf:46:25:23:3a:03:b2:d0:2f:8e:c1:c7:9b:04:10:7c:da:
c5:ad:02:b7:ff:d6:40:7c:bc:fc:40:44:fc:81:3c:8e:8b:d8:
00:e2:d6:3d:93:58:9e:48:b0:10:67:25:2b:32:47:a1:02:77:
b9:70:e2:90:41:a0:87:04:9d:3f:6e:5f:2f:ef:e1:96:ad:6c:
08:80:76:fa:e7:8c:98:c4:4e:18:62:de:53:8b:8a:9a:4d:93:
a6:c6:00:a8:88:75:a6:c1:53:03:7b:71:3c:36:ee:30:78:e4:
8c:4a:63:74:2b:2f:6e:52:6f:a7:3c:78:7f:a6:0a:60:58:7a:
82:3f:10:e4:62:f5:57:b2:a5:2b:aa:c6:45:05:85:69:3f:95:
fd:39:7e:88:3e:a5:e4:f9:f7:80:10:d7:5c:a8:50:2c:6d:77:
6c:44:52:b7:9f:11:3c:29:5a:2f:4b:2e:7f:05:b6:cd:9d:4c:
6e:44:2c:bd:16:87:c9:2e:84:90:90:b7:63:d6:73:fa:2f:71:
e3:f6:dd:5e:ad:b2:f1:13:7b:46:94:08:84:65:61:9b:15:a8:
d7:ba:63:e6:1f:8d:a9:dd:72:5c:e0:5d:53:ac:73:21:c9:d5:
ba:61:ca:82:fe:e3:54:1e:27:57:f5:6a:0e:07:58:40:bc:ef:
d4:dd:13:d6
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZPaZhYMDA0qfFwLfcepEWRLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZjNlMTYwMTcyZWNjNzVjOGNhYjFiYWUyNzFiZTNlYmY0
MDdhODAwHhcNMjQxMjE4MTUzMjIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWIyZWQwYzJmOTUwNjdiZGMxYWUzZDM4MDQxZjAyMWY5MzE1ZmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6zymepmYqwEl6Jge7ZV/HKi1Y4s+
stHAVtL9BXHZVruwVxLV4RLr+h3UXXi3m5B+5H95tv0msI2u+KLuXtkj0FMTw50Z
IuedaKxzJDbbDmLiNvujT5Mv6Jm8EbyxWDtqRssoGAJmsaJX3xV6dQ5yXUYCJGzx
jaNNjT8PC4SiJ50n4+wR2bwLVowLDVR9Iok1CMWZKVAwDRhyOQPYro/xraiD1hZ/
N7B+1ZpqN89kYsMgIqKMmDNsx5SgeytnArFGsjVMc1jutifldEejyiksN1QrpSTM
XEPzwNWXU5fDko3vJp4cRhoc7PS9lYNsGBEyofx0oe4kRS6VC2OqA/qKgQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFA6y7QwvlQZ73Brj04BB8CH5MV/DMB8GA1UdIwQY
MBaAFAXz4WAXLsx1yMqxuuJxvj6/QHqAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmZQaFlCY3V6SFhJeXJHNjRuRy1QcjlBZW9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9hYThiNDYtOTY0NS00NjIwLTg0Nzkt
NWQ1NjA5ODljZjdiLzEvRHJMdERDLVZCbnZjR3VQVGdFSHdJZmt4WDhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9hYThiNDYtOTY0NS00NjIwLTg0NzktNWQ1NjA5ODljZjdi
LzEvQmZQaFlCY3V6SFhJeXJHNjRuRy1QcjlBZW9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAU/VPAwQA
Wae1AwQBWafkMA0GCSqGSIb3DQEBCwUAA4IBAQAmz0YlIzoDstAvjsHHmwQQfNrF
rQK3/9ZAfLz8QET8gTyOi9gA4tY9k1ieSLAQZyUrMkehAne5cOKQQaCHBJ0/bl8v
7+GWrWwIgHb654yYxE4YYt5Ti4qaTZOmxgCoiHWmwVMDe3E8Nu4weOSMSmN0Ky9u
Um+nPHh/pgpgWHqCPxDkYvVXsqUrqsZFBYVpP5X9OX6IPqXk+feAENdcqFAsbXds
RFK3nxE8KVovSy5/BbbNnUxuRCy9FofJLoSQkLdj1nP6L3Hj9t1erbLxE3tGlAiE
ZWGbFajXumPmH42p3XJc4F1TrHMhydW6YcqC/uNUHidX9WoOB1hAvO/U3RPW
-----END CERTIFICATE-----
Generated at Wed Apr 9 05:40:28 2025 by rpki-client