Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/FudSdcNFqNrlpR2d8ZeHkmA6nDg.roa
File: FudSdcNFqNrlpR2d8ZeHkmA6nDg.roa (raw, json)
Hash identifier: EPQlzRwnqvDB4gMmdoxbxrIAZsOoJr6Q0T5dL8V0KaE=
Subject key identifier: 16:E7:52:75:C3:45:A8:DA:E5:A5:1D:9D:F1:97:87:92:60:3A:9C:38
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0194846772472F5235DD7C2CD1B10F4DFFEB
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/FudSdcNFqNrlpR2d8ZeHkmA6nDg.roa
Signing time: Mon 20 Jan 2025 15:49:19 +0000
ROA not before: Mon 20 Jan 2025 15:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215727
IP address blocks: 45.136.0.0/24 maxlen: 32
45.136.1.0/24 maxlen: 32
45.136.2.0/24 maxlen: 32
45.136.3.0/24 maxlen: 32
128.0.119.0/24 maxlen: 32
185.117.20.0/24 maxlen: 32
185.117.21.0/24 maxlen: 32
185.117.22.0/24 maxlen: 32
185.117.23.0/24 maxlen: 32
185.211.48.0/24 maxlen: 32
185.211.49.0/24 maxlen: 32
185.211.50.0/24 maxlen: 32
193.201.208.0/24 maxlen: 32
193.201.209.0/24 maxlen: 32
194.36.100.0/24 maxlen: 32
194.36.101.0/24 maxlen: 32
194.36.102.0/24 maxlen: 32
194.36.103.0/24 maxlen: 32
194.124.64.0/24 maxlen: 32
194.124.65.0/24 maxlen: 32
194.124.66.0/24 maxlen: 32
194.124.67.0/24 maxlen: 32
195.85.68.0/24 maxlen: 32
195.85.69.0/24 maxlen: 32
195.85.70.0/24 maxlen: 32
195.85.71.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:84:67:72:47:2f:52:35:dd:7c:2c:d1:b1:0f:4d:ff:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 20 15:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16e75275c345a8dae5a51d9df1978792603a9c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5b:8c:02:f6:32:12:c3:12:09:33:58:9d:04:
e2:dd:ed:fa:32:48:d0:67:b8:d5:c1:63:71:d3:c4:
24:95:9f:15:70:95:f1:98:62:83:b6:1c:87:15:06:
6b:dc:f4:ef:af:4a:b0:f3:b9:f3:9b:ea:4c:20:f2:
8d:41:38:46:85:42:6c:04:ef:07:3c:7d:99:8a:b7:
be:4a:0c:8a:d2:72:7d:d3:d5:db:d5:7a:5a:35:1b:
18:58:fb:e7:d6:7a:fb:68:cb:63:8e:d0:f1:4f:b0:
60:ea:7f:13:01:a4:cf:bf:56:85:a9:9a:76:14:7a:
a0:44:fe:7f:c3:e7:2e:f9:7a:6e:ce:55:13:54:1e:
28:01:33:35:20:f3:44:ef:78:cb:c0:18:7b:54:2d:
bd:64:61:d6:87:10:19:95:e8:f2:74:6f:f1:f2:60:
88:d0:f2:19:03:66:90:2f:ea:5d:37:f8:17:d4:eb:
5f:e7:43:e8:ad:5d:7b:1d:2b:eb:fe:61:4d:ac:96:
08:6b:8b:c9:71:c5:28:db:6c:a6:24:a0:c3:0e:35:
2c:da:ba:fa:e9:2f:07:40:6c:03:25:9c:96:9d:5d:
90:35:77:d3:09:6b:1b:f4:7f:6c:07:60:06:b4:db:
b1:1f:a6:78:5b:89:9d:cb:3a:b3:4c:00:0c:2b:1b:
9f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E7:52:75:C3:45:A8:DA:E5:A5:1D:9D:F1:97:87:92:60:3A:9C:38
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/FudSdcNFqNrlpR2d8ZeHkmA6nDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.0.0/22
128.0.119.0/24
185.117.20.0/22
185.211.48.0-185.211.50.255
193.201.208.0/23
194.36.100.0/22
194.124.64.0/22
195.85.68.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:1d:49:d9:f5:f7:ba:b1:31:f9:31:85:3a:19:44:6a:1d:fa:
14:6b:db:30:56:81:30:98:1f:14:5f:b8:62:37:15:ab:46:15:
54:60:0f:be:74:cd:80:bc:bd:47:5d:82:48:79:8b:14:f5:e4:
0a:0f:b1:d0:cc:a3:17:3c:ab:c5:16:23:50:20:62:59:88:89:
d1:4d:97:78:bc:d8:32:f4:13:15:43:94:10:e9:7a:08:35:66:
97:66:fc:6c:fd:d1:76:11:a6:ce:fb:af:22:0c:6e:88:1d:f7:
63:81:c5:0d:95:e3:68:de:16:d9:25:05:b5:d4:b6:8f:3e:29:
d2:5e:b7:19:2f:d5:b0:53:a2:1c:e9:e3:87:61:b2:20:71:b5:
99:f9:24:ef:40:3e:15:17:2a:bc:d9:23:21:cf:ea:00:cb:a3:
c1:7b:e8:f7:24:01:a1:4c:72:55:60:15:b9:a5:5e:74:11:c8:
ed:3b:4e:ae:b5:41:d3:ea:b0:c2:f8:8f:aa:fe:8d:d1:3c:68:
ec:05:95:ba:00:4c:76:de:32:8a:9c:ab:39:7b:5d:76:2f:f2:
b4:f2:6a:8c:53:5b:61:57:e7:02:98:1f:e2:e1:1f:83:7b:35:
6b:00:0b:df:16:97:59:15:8f:33:65:27:4b:42:e0:b5:69:e4:
17:89:ed:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:38:14 2025 by rpki-client